On August 3, Cyberspace Administration of China (CAC) issued draft administrative guidelines for privacy-compliant reviews of personal information and related reference points for public expression. The goal of the documents is to provide regulatory oversight of data privacy compliance. However, data processors are also expected to self-regulate and increase their awareness of the need to… Continue reading Verification of the processing personal information
Category: Data Protection
China discloses algorithms
Deep synthesis service providers that have an influence on public opinion or social mobilization capabilities must register and implement procedures to modify and cancel registration. This also applies to technical supporters of deep synthesis services. Deep synthesis technology refers to the use of deep learning, virtual reality and other synthesis algorithms to create text, images,… Continue reading China discloses algorithms
Standard contract for data export
On May 30, 2023, the Cyberspace Administration of China (CAC) published a guide for the registration of the Standard Contract for Personal Data Export, which explains the process, materials and results of the registration of the Standard Contract for Personal Data Export and provides some template for the registration of materials. The Standard Contract Measures… Continue reading Standard contract for data export
China regulates generative AI
In April 2023, China published a discussion draft of the “Regulations for the Administration of Generative Artificial Intelligence Services.” The aim of the document is to ensure content security, compliant operation, and protection of user rights when using generative AI. The regulations emphasize the legality and ethical obligations of generative AI services. During the content… Continue reading China regulates generative AI
China’s Twenty Data Measures Promotes Data Governance
China’s data production reached 6.6 Zettabytes (ZB) in 2021, accounting for 9.9% of total global data production. This puts China second only to the United States (16 ZB). In order to further enhance digital productivity, the Opinions on Building a Basic Data System to Better Fulfill the Role of Data Elements (Twenty Data Measures) were… Continue reading China’s Twenty Data Measures Promotes Data Governance
Export of Personal Data
The Chinese Cyberspace Administration has announced the Standard Contractual Measures for the Export of Personal Data. The purpose of these measures, which will take effect on June 1, 2023, is to protect the interests and rights of individuals regarding their data and to regulate the export of personal data. The Measures set out the scope,… Continue reading Export of Personal Data
Beijing relies on data-driven growth
The Chinese Government has issued guidelines for the development of the data security sector. The goal is to increase the use of data for economic growth and improve control over data access and storage. The ultimate goal is to economically harness the potential of the vast amounts of data generated by the digital economy while… Continue reading Beijing relies on data-driven growth
Cross-Border Data Sovereignty through Key Management
Controlling cross-border data flows is part of China’s decoupling. Beijing wants to avoid losing control over data in the digital world and thus forfeiting digital sovereignty, i.e. strategic autonomy and room to maneuver. Innovative Western companies are also hesitant when it comes to cross-border digital networking with Chinese companies – for example, in the internationalization… Continue reading Cross-Border Data Sovereignty through Key Management
New measures for Data Security Management
China continues to regulate data security. The Data Security Management Measures in the Field of Industry and Information Technology, which took effect on January 1, 2023, further specify the management of the entire life cycle of data. Companies should primarily pay attention to the following four requirements: Data localization: It is not explicitly required that… Continue reading New measures for Data Security Management
Cybersecurity Law: Fines Significantly Increased
The Cybersecurity Law (CSL), China’s first fundamental law to comprehensively regulate cybersecurity issues, is about to undergo its first revision. A key feature of the proposed amendments is a significant increase in penalties for network operators and critical infrastructure operators that fail to comply with relevant cybersecurity protection obligations. For example, the fine range for… Continue reading Cybersecurity Law: Fines Significantly Increased
China Intellectual Property Blog 