The guidance encourages organisations to formulate a data breach response plan, and outlines recommendations for handling an increasing number of data breach incidents.
On 30 June 2023, the Office of the Privacy...more
7/21/2023
/ Breach Notification Rule ,
Cybersecurity ,
Data Breach ,
Data Breach Plans ,
Data Protection ,
Data Security ,
Guidance Update ,
Hong Kong ,
Personal Data ,
Risk Assessment ,
Security Risk Assessments
Cybersecurity incidents pose legal challenges for in-house counsel, alongside their technical implications. This overview highlights key aspects that legal departments must know when reacting to data breaches.
...more
The Privacy Commissioner for Personal Data reminds organisations to review and implement appropriate data security measures amidst more data breaches.
On 13 February 2023, the Privacy Commissioner for Personal Data of...more
3/16/2023
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection Commissioner ,
Data Security ,
Hong Kong ,
Personal Data ,
Policies and Procedures ,
Privacy Laws ,
Risk Mitigation
The reforms aim to address the rise in cybercrime and cyberattacks in an age of rapid digital developments.
The Law Reform Commission of Hong Kong (the LRC), via its Sub-committee on Cybercrime, issued a consultation...more
China’s CAC publishes guidance on cross-border data transfers, including draft standard contractual clauses and regulatory guidance on certification and security assessment.
Key Points:
..Security Assessment:...more
8/9/2022
/ Certification Requirements ,
China ,
Cybersecurity ,
Data Privacy ,
Data Processors ,
Data Security ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Standard Contractual Clauses
Under the new rules Chinese NPOs holding more than 1 million individuals’ personal information must apply for a cybersecurity review prior to listing abroad.
Key Points:
..Chinese network platform operators (NPOs) holding...more
The regulations aim to protect the security of the CII and impose more compliance obligations in support of the Network Security Law.
Key Points:
The regulations are designed to provide clarification and guidance on:...more
The Data Security Law will enhance an increasingly comprehensive legal framework for information and data security in the PRC.
Key Points:
Notably, the DSL:
..Applies to a wide range of data and data activities, with...more
7/22/2021
/ China ,
Compliance ,
Countermeasures ,
Cybersecurity ,
Data Security ,
International Data Transfers ,
Jurisdiction ,
New Legislation ,
Popular ,
Regulatory Oversight ,
Statutory Penalties