The Cyberspace Administration of China (“CAC”) on September 28, 2023 issued the draft Provisions on the Regulation and Promotion of Cross-Border Data Flows (“draft Provisions”), just one year after China’s data export...more
10/13/2023
/ China ,
Corporate Counsel ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Popular ,
Standard Contractual Clauses
The Cyberspace Administration of China (“CAC”) on August 3, 2023 published the draft Administrative Measures for Personal Information Protection Compliance Audits (“draft Measures”) for public comment through September 2,...more
On February 24, 2023, the Cyberspace Administration of China (“CAC”) officially promulgated the Standard Contract Measures for the Export of Personal Information (the “SCC Measures”), which will come into effect on June 1,...more
On December 16, 2022 – less than six months after the initial version (“V1.0”) was released in June 2022, and within six weeks after the draft revision was issued on November 8 – the National Information Security...more
Outbound Data Transfer Security Review Measures -
On July 7, 2022, the Cybersecurity Administration of China (“CAC”) issued the Outbound Data Transfer Security Assessment Measures (“Security Assessment Measures”) effective...more
7/27/2022
/ China ,
Contract Terms ,
Cybersecurity ,
Data Protection ,
Data Security ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Popular ,
Public Comment ,
Sensitive Personal Information ,
Standard Contractual Clauses
The Cyberspace Administration of China (“CAC”) on November 14, 2021 published the draft Regulations on the Administration of Network Data Security (“Draft Regulations”) for comment through December 13, 2021.1 The Draft...more
12/7/2021
/ China ,
Cybersecurity ,
Data Privacy ,
Data Processors ,
Data Protection ,
Data Security ,
Extraterritoriality Rules ,
International Data Transfers ,
National Security ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Proposed Regulation ,
Regulatory Requirements
China’s Personal Information Protection Law (PIPL or the final version), following the first two readings in October 2020 and April 2021, was adopted on August 20, 2021 and will become effective on November 1, 2021. The final...more
8/31/2021
/ China ,
Consumer Privacy Rights ,
Data Controller ,
Data Privacy ,
Data Processors ,
Data Protection ,
Employee Privacy Rights ,
Extraterritoriality Rules ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
International Treaties ,
New Legislation ,
Personal Data
China’s State Council on August 17 released the Critical Information Infrastructure Security Protection Regulations (“Regulations”) effective September 1, a key administrative regulation in the implementation of the 2016...more
On July 6, the General Office of the Central Committee of China’s Communist Party and the General Office of the State Council jointly issued the Opinions on Strictly Cracking Down on Illegal Securities-related Activity in...more
7/12/2021
/ China ,
Comment Period ,
Corporate Counsel ,
Data Protection ,
Data Security ,
Data Storage ,
Foreign Corporations ,
Foreign Exchanges ,
Listing Rules ,
Offshore Listings ,
Online Platforms ,
Personal Data ,
Personal Information ,
Proposed Regulation ,
Securities
The Cyberspace Administration of China (CAC) on May 12 issued the Draft Provisions on the Management of Automobile Data Security (Draft Provisions) for public comment through June 11. The Draft Provisions aim to regulate the...more
On April 26, the second draft of the Data Security Law was submitted to the Standing Committee of the National People’s Congress for deliberation through May 28, 2021. Compared to the first draft submitted in July last year,...more
5/10/2021
/ China ,
Corporate Counsel ,
Data Protection ,
Data Security ,
Document Productions ,
International Data Transfers ,
Legislative Agendas ,
Multinationals ,
Personally Identifiable Information ,
Regulatory Agencies ,
Regulatory Agenda