Security Assessment for Cross-Border Data Transfer
On July 7, 2022, the Cyberspace Administration of China (国家互联网信息办公室)(“CAC”) released the final version of the Cross-Border Data Transfer Security Assessment Measures (数据出境安全评估办法) (the “Security Assessment Measures”). The Security Assessment Measures set forth requirements for...
Read More
Standard Contract for Cross-Border Transfers of Personal Information
On June 30, 2022, the Cyberspace Administration of China (国家互联网信息办公室)(“CAC”) released draft Personal Information Cross-Border Transfer Standard Contract Provisions (个人信息出境标准合同规定) (the “Draft Standard Contract Provisions”) together with the form standard contract (the “Standard Contract”) for...
Read More
Cross-Border Personal Information Processing Security Certification Specifications
On June 24, 2022, the Secretary of the National Information Security Standard Technology Committee (全国信息安全标准化技术委员会秘书处) issued Cross-Border Personal Information Processing Security Certification Specifications (个人信息跨境处理活动安全认证规范) (“Certification Specifications”), which provide practical guidance on professional agency certification approaches...
Read More
Implementing China’s Personal Information Protection Law
On August 20, 2021, the Standing Committee of the National People’s Congress (全国人大常务委员会) (the “Standing Committee”) issued the Personal Information Protection Law of the People’s Republic of China (个人信息保护法) (“PIPL”), which became effective on November...
Read More
China’s Evolving Personal Information Protection Rules
Since the issuance of the Cyber Security Law (网络安全法)[1] in November 2016, China’s legislature and various government departments have released numerous laws and regulations addressing the protection of personal information, many of which we have...
Read More
China Releases Proposed Guidelines for Cross-Border Data Transfer Security Assessment
On May 27, 2017, the National Information Security Standardization Technical Committee (全国信息安全标准化技术委员会) published for public comment a draft of the proposed Guidelines for Cross-Border Data Transfer Security Assessment (数据出境安全评估指南) (the “Draft Security Assessment Guidelines”). The...
Read More
China to Require Government Approval to Transfer User Data Overseas
On April 11, 2017, the Cyberspace Administration of China, also known as the State Internet Information Office (国家互联网信息办公室) (the “CAC”)[1], released for public comment a draft of the Measures for Security Assessment of Transferring Personal...
Read More