On September 24, 2024, the State Council released the Regulations on the Management of Network Data Security (《网络数据安全管理条例》) (“Regulations”). The Regulations focus on prominent issues related to Personal Information (PI),...more
10/14/2024
/ China ,
Consent ,
Data Collection ,
Data Privacy ,
Data Processors ,
Data Protection ,
Data Security ,
International Data Transfers ,
Notice Requirements ,
Personal Data ,
Personal Information ,
Sensitive Personal Information
The Cyberspace Administration of China (“CAC”) on September 28, 2023 issued the draft Provisions on the Regulation and Promotion of Cross-Border Data Flows (“draft Provisions”), just one year after China’s data export...more
10/13/2023
/ China ,
Corporate Counsel ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Popular ,
Standard Contractual Clauses
The Cyberspace Administration of China (“CAC”) on August 3, 2023 published the draft Administrative Measures for Personal Information Protection Compliance Audits (“draft Measures”) for public comment through September 2,...more
Article 38 of China’s Personal Information Protection Law (“PIPL”) enacted in 2021, which is more demanding than GDPR in Europe, provides three channels to conduct the outbound transfer or export of personal information...more
2/24/2023
/ Certification Requirements ,
China ,
Cybersecurity ,
Data Privacy ,
Data Processors ,
Data Security ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Standard Contractual Clauses
Outbound Data Transfer Security Review Measures -
On July 7, 2022, the Cybersecurity Administration of China (“CAC”) issued the Outbound Data Transfer Security Assessment Measures (“Security Assessment Measures”) effective...more
7/27/2022
/ China ,
Contract Terms ,
Cybersecurity ,
Data Protection ,
Data Security ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Popular ,
Public Comment ,
Sensitive Personal Information ,
Standard Contractual Clauses
The Ministry of Industry and Information Technology (“MIIT”), following the first round of public comments which concluded on October 30, 2021, published a new draft of the Administrative Measures on Data Security in the...more
On December 27, 2021, the National Development and Reform Commission (“NDRC”) and the Ministry of Commerce jointly issued the Special Administrative Measures (Negative List) for Foreign Investment Access (2021 Edition)...more
1/11/2022
/ China ,
Comment Period ,
Critical Infrastructure Sectors ,
Data Security ,
Foreign Direct Investment ,
Foreign Investment ,
Free Trade Zone ,
Initial Public Offering (IPO) ,
National Security ,
Proposed Rules ,
Securities Regulation ,
Variable Interest Entities
The Cyberspace Administration of China (“CAC”) on November 14, 2021 published the draft Regulations on the Administration of Network Data Security (“Draft Regulations”) for comment through December 13, 2021.1 The Draft...more
12/7/2021
/ China ,
Cybersecurity ,
Data Privacy ,
Data Processors ,
Data Protection ,
Data Security ,
Extraterritoriality Rules ,
International Data Transfers ,
National Security ,
Personal Information ,
Personal Information Protection Law (PIPL) ,
Proposed Regulation ,
Regulatory Requirements
The Cyberspace Administration of China (“CAC”) on October 29, 2021 published the draft Measures on Security Assessment of Cross-Border Data Transfer (“Draft Measures”) for comment through November 28, 2021. The Draft Measures...more
11/3/2021
/ China ,
Cross-Border ,
Cybersecurity ,
Data Security ,
Data Transfers ,
International Data Transfers ,
Personal Information ,
PIPA ,
Popular ,
Proposed Regulation ,
Regulatory Authority
China’s State Council on August 17 released the Critical Information Infrastructure Security Protection Regulations (“Regulations”) effective September 1, a key administrative regulation in the implementation of the 2016...more
On July 6, the General Office of the Central Committee of China’s Communist Party and the General Office of the State Council jointly issued the Opinions on Strictly Cracking Down on Illegal Securities-related Activity in...more
7/12/2021
/ China ,
Comment Period ,
Corporate Counsel ,
Data Protection ,
Data Security ,
Data Storage ,
Foreign Corporations ,
Foreign Exchanges ,
Listing Rules ,
Offshore Listings ,
Online Platforms ,
Personal Data ,
Personal Information ,
Proposed Regulation ,
Securities
The Standing Committee of China's National People’s Congress (NPC) on June 10 enacted the Data Security Law (DSL) which will come into effect on September 1. The NPC reviewed two earlier drafts of the DSL in July 2020 and...more
6/16/2021
/ Blocking Statutes ,
China ,
Countermeasures ,
Cybersecurity ,
Data Security ,
Extraterritoriality Rules ,
International Data Transfers ,
Multinationals ,
National Security ,
New Legislation ,
Personal Information ,
Proposed Legislation
The Cyberspace Administration of China (CAC) on May 12 issued the Draft Provisions on the Management of Automobile Data Security (Draft Provisions) for public comment through June 11. The Draft Provisions aim to regulate the...more
On April 26, the second draft of the Data Security Law was submitted to the Standing Committee of the National People’s Congress for deliberation through May 28, 2021. Compared to the first draft submitted in July last year,...more
5/10/2021
/ China ,
Corporate Counsel ,
Data Protection ,
Data Security ,
Document Productions ,
International Data Transfers ,
Legislative Agendas ,
Multinationals ,
Personally Identifiable Information ,
Regulatory Agencies ,
Regulatory Agenda
On July 3, 2020, the Standing Committee of the National People’s Congress (NPC) published the draft Data Security Law (Draft Law) for public comment through August 16, 2020. The Draft Law constitutes a further step in the...more