On 1 June 2023, new measures explaining the requirements for using the standard contract (China Standard Contract) mechanism to legally export personal information from China as well as the form of the “standard contract”...more
In our previous posts, we discussed what data export activities are subject to scrutiny assessment (CAC Assessment) conducted by the Cyberspace Administration of China (CAC) (see Part 1) and examined what companies must do...more
In a recent alert, we painted the big picture of the security assessment conducted by the Cyberspace Administration of China (CAC) to data exporting activities from China (CAC Assessment), highlighting what data export...more
With the rapid development of the global digital economy, multinational companies (MNCs) have been forced to find legally compliant ways to transfer data across borders. In the past, many MNCs relied on data transfer...more
As China enhances its cybersecurity and data protection regime, the processing of personal information, and in particular the information of customers and employees, has come into focus under the Personal Information...more
On 30 July 2021, the State Council promulgated the Regulations on the Security Protection of Critical Information Infrastructure (the Regulation), which took effect on 1 September 2021. This Regulation dovetails with the...more
On 24 July 2021, the State Administration for Market Regulation (SAMR) of the People’s Republic of China (PRC) made and announced an administrative penalty decision in the case concerning the illegal concentration of...more
Background - The Chinese government’s approval of the Sinopharm and Sinovac vaccines have paved the way for the general public in China to get vaccinated. As a result, some companies are questioning the benefits and legality...more
On 19 December 2020, the National Development and Reform Commission (NDRC) and the Ministry of Commerce (MOFCOM) have jointly issued the Measures for the Security Review of Foreign Investment (Measures), with effect from 18...more