A data controller that is not a critical information infrastructure operator that cumulatively exports personal information (excluding any sensitive personal information) of less than 100,000 individuals since January 1 of...more
The Regulation on Management of Automobile Data Security (Trial) (Regulation) was passed on the 101st meeting of Cyberspace Administration of China (CAC), approved by four other Chinese ministries and officially published on...more
On August 20, 2021, the Standing Committee of the National People’s Congress (NPC) of the People’s Republic of China (PRC or China) enacted the Personal Information Protection Law (PIP Law), which will come into effect on...more
Recent U.S. IPOs of Chinese companies prompt data security concerns among government authorities, leading to a tightening of cyber regulations.
Cybersecurity review will be mandatory for (i) purchase of network products and...more
The new Data Security Law, together with the Cybersecurity Law (effective since June 1, 2017) and the Personal Information Protection Law (which is expected to be formally published later this year) will serve as the three...more
Based on China’s Cybersecurity Law (effective from June 1, 2017), the latest draft of Personal Information Protection Law and draft of Data Security Law, the new draft regulations would apply not only to automobile producers...more
5/20/2021
/ Automotive Industry ,
China ,
Cross-Border ,
Cybersecurity ,
Data Privacy ,
Data Security ,
Motor Vehicles ,
New Regulations ,
Personal Information ,
Popular ,
Reporting Requirements ,
Sensitive Personal Information
On October 21, 2020, the Standing Committee of the National People’s Congress (NPC) of the People’s Republic of China (PRC) released the draft PIP Law for public comment.
With the big data industry rapidly growing in China...more
11/5/2020
/ California Consumer Privacy Act (CCPA) ,
China ,
Coronavirus/COVID-19 ,
Cross-Border Transactions ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Protection ,
General Data Protection Regulation (GDPR) ,
Popular ,
Public Comment ,
Sensitive Personal Information ,
Third-Party Service Provider
On November 7, 2016, the Standing Committee of the National People’s Congress (NPC) of the People’s Republic of China (PRC) passed the final Cybersecurity Law (CSL) after three rounds of review by the NPC since June 2015....more
12/15/2016
/ China ,
Confidentiality Policies ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Foreign Investment Entities (FIEs) ,
International Data Transfers ,
Networks ,
Personal Data ,
Popular ,
Private Sector ,
Publicly-Traded Companies
The Ministry of Industry and Information Technology Issues the First Value-Added Telecom Services License to an E-Commerce Wholly Foreign Owned Enterprise.
Background -
Historically, foreign investors were...more
China’s current leadership has attached significant attention to network security, which is deemed to be a core aspect of national security. In early 2014, China’s President, Xi Jinping, who is also the head of the Office for...more
Further to the early 2014 policy that relaxed the restrictions on the foreign equity ratio in value-added telecommunications business in the Shanghai Free Trade Zone (“Shanghai FTZ”), on January 15, 2015, the Ministry of...more