On 22 March, 2024, the Cyberspace Administration of China (“CAC”) finalized its Provisions to Promote and Regulate Cross-Border Data Transfers (“Final Provisions”). The Final Provisions were long anticipated following a...more
On December 13, 2023, the Cyberspace Administration of China (“CAC”) and the Innovation, Technology and Industry Bureau of the Hong Kong Special Administrative Region (“Hong Kong”) Government (“HK ITIB”) jointly released the...more
On November 1, 2023, the National Information Security Standardization Technical Committee (全国信息安全标准化技术委员会) (“TC260”, a policy-making body under the Cyberspace Administration of China (“CAC”)) launched a public consultation...more
On 28 September, 2023, the Cyberspace Administration of China (“CAC”) released draft Provisions on Regulating and Promoting Cross-Border Data Transfers (the “Draft Provisions”) for public consultation. The consultation...more
On June 29, 2023, the Cyberspace Administration of China ("CAC") and the Innovation, Technology and Industry Bureau of the Hong Kong Special Administrative Region ("Hong Kong") Government ("HKITIB") signed the Memorandum of...more
On 30 May 2023, the Cyberspace Administration of China (the “CAC”) published guidance for the use of the Standard Contractual Clauses applicable to international transfers of personal information from mainland China (the...more
On April 11, 2023, the Cyberspace Administration of China (CAC) issued draft Administrative Measures for Generative Artificial Intelligence Services (“Draft AI Measures”)....more
On February 24, 2023, the Cyberspace Administration of China ("CAC") released the final version of the Measures on the Standard Contract for the Cross-border Transfer of Personal Information ("SCCs Measures") along with the...more
As part of a new Asia-Pacific (APAC) Life Sciences and Health Care webinar program designed both for companies with commercial interests in APAC and for companies based in the region, Hogan Lovells is hosting a special...more
9/23/2022
/ China ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Popular
On 31 August 2022, the Cyberspace Administration of China (CAC) finalized the security assessment application guidelines and template application form (Security Assessment Application Guideline) under the Measures for...more
Recent weeks have seen a flurry of activity in China’s regulation of international data transfers. Three principal data laws, the Cyber Security Law (“CSL”), the Data Security Law (“DSL”) and the Personal Information...more
China's Personal Information Protection Law (PIPL) took effect 1 November 2021, significantly raising the bar for data protection compliance in China. One of the key concerns is the regulation of international transfers of...more
On 20 August 2021, China’s National People’s Congress passed the Personal Information Protection Law (PIPL). The PIPL has a rapid timeframe for implementation, taking effect on 1 November 2021. The brief transition period...more
China’s National People’s Congress (NPC) promulgated the Data Security Law of the People’s Republic of China (DSL) on June 10, 2021. The DSL will take effect September 1, 2021, making for a very brief transition period...more
On 29 April, China’s National People’s Congress released the second consultation draft of the Personal Information Protection Law (New PIPL Draft). Public comments are open through 28 May 2021. The first draft of the Personal...more
6/3/2021
/ China ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
International Data Transfers ,
Legislative Agendas ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Regulatory Agenda ,
Standard Contractual Clauses
The General Data Protection Regulation 2016/679 (GDPR) provides means to enforce provisions related to personal data processing by you as a data controller or data processor. It introduces collective actions everywhere in...more
The General Data Protection Regulation 2016/679 (GDPR) provides means to enforce provisions related to personal data processing by you as a data controller or data processor. It introduces collective actions everywhere in...more
11/22/2019
/ Burden of Proof ,
Class Action ,
Cybersecurity ,
Data Breach ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
European Commission ,
Evidence ,
Forum Shopping ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Litigation Strategies ,
Personal Data ,
Personally Identifiable Information ,
Private Right of Action ,
Risk Management ,
Russia
Increasing numbers of initiatives, devices, and solutions related to the Internet of Things (IoT) are substantially impacting the development of cybersecurity and data privacy regulations throughout Asia. ...more
1/15/2019
/ Asia ,
Asia Pacific ,
China ,
Consumer Privacy Rights ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Protection ,
Driverless Cars ,
Drones ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Internet of Things ,
Personal Data ,
Popular
As global focus on data protection and cyber security law and regulation continues to increase, the Asia-Pacific region is increasingly an area of concern for global compliance programs.
...more
4/23/2018
/ APEC ,
Asia Pacific ,
Cross Border Privacy Rules (CBPR) ,
Cross-Border ,
Cybersecurity ,
Data Protection ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Popular ,
Regulatory Standards ,
Risk Management
On 19 May 2017, the Cyberspace Administration of China (the “CAC“) released a revised draft of its Security Assessment for Personal Information and Important Data Transmitted Outside of the People’s Republic of China Measures...more
Malaysia's Personal Data Protection Commissioner (the "Commissioner") has issued a Public Consultation Paper (PCP) No. 1/2017 entitled Personal Data Protection (Transfer Of Personal Data To Places Outside Malaysia) Order 2017...more
On 11 April 2017 the Cyberspace Administration of China published a circular calling for comments on its draft Security Assessment for Personal Information and Important Data Transmitted Outside of the People’s Republic of...more
4/21/2017
/ Critical Infrastructure Sectors ,
Cross-Border ,
Cybersecurity ,
Data Protection ,
International Data Transfers ,
MOFCOM ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Public Comment ,
Telecommunications
2016 was an eventful year in the Asia-Pacific region, as data protection and cyber security issues increasingly feature in the news headlines in the Asia-Pacific region as they do elsewhere, our annual publication, the 2017...more
4/12/2017
/ APEC ,
Asia ,
Cross Border Privacy Rules (CBPR) ,
Cybersecurity ,
Cybersecurity Framework ,
Data Collection ,
Data Protection ,
E-Commerce ,
General Data Protection Regulation (GDPR) ,
Hong Kong ,
International Data Transfers ,
PCPD ,
Personal Data ,
Popular
Recent changes to Japan’s Act on the Protection of Personal Information and the establishment of a new Personal Information Protection Commission have raised questions about how the world’s third-largest economy plans to...more