China’s regulations aim to address risks related to artificial intelligence and introduce compliance obligations on entities engaged in AI-related business.
This Client Alert discusses what technologies and entities are...more
The guidance encourages organisations to formulate a data breach response plan, and outlines recommendations for handling an increasing number of data breach incidents.
On 30 June 2023, the Office of the Privacy...more
7/21/2023
/ Breach Notification Rule ,
Cybersecurity ,
Data Breach ,
Data Breach Plans ,
Data Protection ,
Data Security ,
Guidance Update ,
Hong Kong ,
Personal Data ,
Risk Assessment ,
Security Risk Assessments
Cybersecurity incidents pose legal challenges for in-house counsel, alongside their technical implications. This overview highlights key aspects that legal departments must know when reacting to data breaches.
...more
The Privacy Commissioner for Personal Data reminds organisations to review and implement appropriate data security measures amidst more data breaches.
On 13 February 2023, the Privacy Commissioner for Personal Data of...more
3/16/2023
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection Commissioner ,
Data Security ,
Hong Kong ,
Personal Data ,
Policies and Procedures ,
Privacy Laws ,
Risk Mitigation
On November 18, 2022, the State Administration for Market Regulation (SAMR) and the Cyberspace Administration of China (CAC) jointly released the Notice Regarding Personal Information Protection Certification attached with...more
A recent amendment addresses key loopholes and aims to align Hong Kong’s copyright regime with international standards.
On 16 December 2022, the Hong Kong Copyright (Amendment) Ordinance 2022 (Amendment) was finally...more
The Office of the Privacy Commissioner for Personal Data of Hong Kong summarised enforcement trends and plans to further amend the Personal Data (Privacy) Ordinance.
On 9 November 2022, the Office of the Privacy...more
Amended data privacy legislation enabled Hong Kong courts to convict doxxing offences, though their ability to enforce cessation notices remains unclear.
In October 2021, Hong Kong amended its data privacy law, the...more
The reforms aim to address the rise in cybercrime and cyberattacks in an age of rapid digital developments.
The Law Reform Commission of Hong Kong (the LRC), via its Sub-committee on Cybercrime, issued a consultation...more
The guidance outlines steps that organizations should take to enhance data security as hybrid working and learning introduce new risks.
On August 30, 2022, the Office of the Privacy Commissioner for Personal Data of Hong...more
China’s CAC publishes guidance on cross-border data transfers, including draft standard contractual clauses and regulatory guidance on certification and security assessment.
Key Points:
..Security Assessment:...more
8/9/2022
/ Certification Requirements ,
China ,
Cybersecurity ,
Data Privacy ,
Data Processors ,
Data Security ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Standard Contractual Clauses
Under the new rules Chinese NPOs holding more than 1 million individuals’ personal information must apply for a cybersecurity review prior to listing abroad.
Key Points:
..Chinese network platform operators (NPOs) holding...more
The Personal Information Protection Law, or PIPL, imposes stringent obligations of a similar standard to the GDPR and will take effect on November 1, 2021.
Key Points:
..Extraterritorial effect: PIPL applies to those who...more
The regulations aim to protect the security of the CII and impose more compliance obligations in support of the Network Security Law.
Key Points:
The regulations are designed to provide clarification and guidance on:...more
The Data Security Law will enhance an increasingly comprehensive legal framework for information and data security in the PRC.
Key Points:
Notably, the DSL:
..Applies to a wide range of data and data activities, with...more
7/22/2021
/ China ,
Compliance ,
Countermeasures ,
Cybersecurity ,
Data Security ,
International Data Transfers ,
Jurisdiction ,
New Legislation ,
Popular ,
Regulatory Oversight ,
Statutory Penalties
Hong Kong government issued a consultation to implement a new regulatory framework requiring virtual asset exchanges to be regulated by the SFC -
Key Points:
..The Hong Kong Financial Services and the Treasury Bureau...more
The HKMA introduces a new data sharing initiative, reported on the central bank digital currency initiative, and outlined regtech plans.
The fifth annual Hong Kong Fintech Week conference kicked off with speeches and panels...more
11/4/2020
/ Blockchain ,
Commercial Loans ,
Data-Sharing ,
Digital Currency ,
Exports ,
Financial Institutions ,
FinTech ,
Hong Kong ,
Imports ,
Open Banking ,
Popular ,
Regulatory Oversight ,
Small and Medium-Sized Enterprises (SMEs) ,
White Papers
Hong Kong’s Securities and Futures Commission’s introduces new licensing regime to regulate previously unregulated markets and restates expectations regarding security token offerings.
The second day of Hong Kong Fintech...more
The proposed Data Security Law has a broad jurisdictional scope and will expand the PRC’s regulatory framework for information and data.
On July 3, 2020, the Standing Committee of China’s National People’s Congress issued...more
New tracking and privacy-related features will apply to all iOS apps when iOS 14 is released in September 2020.
Key Points:
..During Apple’s WWDC 2020 keynote address on June 22, 2020, Apple announced two key privacy...more
Hong Kong regulator declares that the disclosure of personal data of potential COVID-19 carriers is permissible under law.
COVID-19 is having a profound impact not only on the way the world interacts socially, but also in...more
Potential amendments to the PDPO would impose much stricter controls on organisations that process personal data of individuals located in Hong Kong.
Key Points:
..On 20 January 2020 the Legislative Council debated...more
If adopted efficiently, the PDPC’s Ethical Accountability Framework should help organizations to demonstrate and enhance trust with individuals.
In October, 2018, Hong Kong’s Privacy Commissioner for Personal Data (PCPD)...more
8/14/2019
/ Artificial Intelligence ,
Data Privacy ,
Data Processors ,
Ethics ,
Financial Institutions ,
FinTech ,
Hong Kong ,
Hong Kong Monetary Authority (HKMA) ,
Personal Data ,
Popular ,
Privacy Comissioners