On December 13, 2023, the Cyberspace Administration of China (“CAC”) and the Innovation, Technology and Industry Bureau of the Hong Kong Special Administrative Region (“Hong Kong”) Government (“HK ITIB”) jointly released the...more
On 28 September, 2023, the Cyberspace Administration of China (“CAC”) released draft Provisions on Regulating and Promoting Cross-Border Data Transfers (the “Draft Provisions”) for public consultation. The consultation...more
On 30 May 2023, the Cyberspace Administration of China (the “CAC”) published guidance for the use of the Standard Contractual Clauses applicable to international transfers of personal information from mainland China (the...more
On 31 August 2022, the Cyberspace Administration of China (CAC) finalized the security assessment application guidelines and template application form (Security Assessment Application Guideline) under the Measures for...more
On 6 July 2021, the Standing Committee of People’s Congress in Shenzhen released the Data Regulations of Shenzhen Special Economic Zone (the Shenzhen Data Regulation), which will come into force as of 1 January 2022. The...more
On 29 April, China’s National People’s Congress released the second consultation draft of the Personal Information Protection Law (New PIPL Draft). Public comments are open through 28 May 2021. The first draft of the Personal...more
6/3/2021
/ China ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
International Data Transfers ,
Legislative Agendas ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Regulatory Agenda ,
Standard Contractual Clauses
The unprecedented challenges of the COVID‑19 pandemic are still with us, not only in terms of the grim toll the virus has taken on individuals and families, but also in terms of wider implications for how people and societies...more
4/14/2021
/ Asia Pacific ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Information Governance ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Regulatory Agenda
The General Data Protection Regulation 2016/679 (GDPR) provides means to enforce provisions related to personal data processing by you as a data controller or data processor. It introduces collective actions everywhere in...more
What is Living Mobility? It is easier to say what it is not. The automotive industry is no longer focused on the traditional vehicle. Not only are the vehicles changing but we are now focused on mobility: different modes of...more
2/11/2021
/ 5G Network ,
Artificial Intelligence ,
Automation Systems ,
Automotive Industry ,
Blockchain ,
Climate Change ,
Connected Cars ,
Data Privacy ,
Drones ,
Integrated Accessibility Standards ,
Motor Vehicles ,
Personal Data ,
Unmanned Aircraft Systems
On 22 January 2021 the Association of Southeast Asian Nations (ASEAN) Digital Ministers' Meeting approved the ASEAN Data Management Framework (the DMF) and the Model Contractual Clauses for Cross Border Data Flows (the MCCs)....more
More than one year after the release of a draft amended version of the GB/T 35273-2017 Information Security Technology – Personal Information Security Specification (the 2017 Specification) for public comments in January...more
On Monday 20 January, the Constitutional and Mainland Affairs Bureau (“CMAB”), jointly with the Privacy Commissioner for Personal Data (“PCPD”), presented a paper outlining topics for review of the PDPO to the members of the...more
1/23/2020
/ Asia ,
Breach Notification Rule ,
Cross Border Privacy Rules (CBPR) ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Management ,
Data Protection ,
Hong Kong ,
International Standards ,
PCPD ,
Personal Data ,
Proposed Amendments
The General Data Protection Regulation 2016/679 (GDPR) provides means to enforce provisions related to personal data processing by you as a data controller or data processor. It introduces collective actions everywhere in...more
11/22/2019
/ Burden of Proof ,
Class Action ,
Cybersecurity ,
Data Breach ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
European Commission ,
Evidence ,
Forum Shopping ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Litigation Strategies ,
Personal Data ,
Personally Identifiable Information ,
Private Right of Action ,
Risk Management ,
Russia
On 6 June, 2019, the Privacy Commissioner for Personal Data (the “PCPD“) issued an enforcement notice against Cathay Pacific Airways (and its affiliate Hong Kong Dragon Airlines) (together, “Cathay Pacific“) in respect of a...more
On 28 May 2019, the Cyberspace Administration of China (CAC) released the draft Measures on the Administration of Data Security (Data Security Measures, see our in-house English translation here) for public...more
On 1 February, 2019, the National Information Security Standardization Technical Committee issued an amended version of the GB/T 35372-2017 Information Technology – Personal Information Security Specification for public...more
In this edition we survey the latest legal and regulatory developments across the global media and communications industry. We have a particular focus on new privacy laws.
...more
Increasing numbers of initiatives, devices, and solutions related to the Internet of Things (IoT) are substantially impacting the development of cybersecurity and data privacy regulations throughout Asia. ...more
1/15/2019
/ Asia ,
Asia Pacific ,
China ,
Consumer Privacy Rights ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Protection ,
Driverless Cars ,
Drones ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Internet of Things ,
Personal Data ,
Popular
On December 29, 2017, the Standardization Administration of China, jointly with the PRC General Administration of Quality Supervision, Inspection and Quarantine, issued the Information Security Technology – Personal...more
11/14/2018
/ China ,
Consumer Protection Laws ,
Cooperative Compliance Regime ,
Cybersecurity ,
Data Collection ,
Data-Sharing ,
General Data Protection Regulation (GDPR) ,
Information Technology ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Regulatory Oversight ,
Regulatory Requirements
India's Committee of Experts, under the chairmanship of Justice B.N. Srikrishna (the Srikrishna Committee), has submitted a draft Data Protection Bill (the Bill) for review by the Ministry of Electronics and Information...more
As global focus on data protection and cyber security law and regulation continues to increase, the Asia-Pacific region is increasingly an area of concern for global compliance programs.
...more
4/23/2018
/ APEC ,
Asia Pacific ,
Cross Border Privacy Rules (CBPR) ,
Cross-Border ,
Cybersecurity ,
Data Protection ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Popular ,
Regulatory Standards ,
Risk Management
On 19 May 2017, the Cyberspace Administration of China (the “CAC“) released a revised draft of its Security Assessment for Personal Information and Important Data Transmitted Outside of the People’s Republic of China Measures...more
Malaysia's Personal Data Protection Commissioner (the "Commissioner") has issued a Public Consultation Paper (PCP) No. 1/2017 entitled Personal Data Protection (Transfer Of Personal Data To Places Outside Malaysia) Order 2017...more
On 11 April 2017 the Cyberspace Administration of China published a circular calling for comments on its draft Security Assessment for Personal Information and Important Data Transmitted Outside of the People’s Republic of...more
4/21/2017
/ Critical Infrastructure Sectors ,
Cross-Border ,
Cybersecurity ,
Data Protection ,
International Data Transfers ,
MOFCOM ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Public Comment ,
Telecommunications
2016 was an eventful year in the Asia-Pacific region, as data protection and cyber security issues increasingly feature in the news headlines in the Asia-Pacific region as they do elsewhere, our annual publication, the 2017...more
4/12/2017
/ APEC ,
Asia ,
Cross Border Privacy Rules (CBPR) ,
Cybersecurity ,
Cybersecurity Framework ,
Data Collection ,
Data Protection ,
E-Commerce ,
General Data Protection Regulation (GDPR) ,
Hong Kong ,
International Data Transfers ,
PCPD ,
Personal Data ,
Popular