Chinese GDPR: On the Safe Side

China has taken another step toward data protection with the release of the second draft revision of the Personal Information Protection Law (PIPL). Although not the final law, it appears that personal data protection legislation has entered the final stages, and it is believed that the PIPL will soon be formally enacted. It is not… Continue reading Chinese GDPR: On the Safe Side

The Obligation to Localize Data Affects More Companies

When it comes to data protection in China, data localization is inevitable for foreign companies. The basic requirements are currently mainly set out in the Cyber Security Law, and many service providers such as the financial sector, providers of public health information, and online cab booking services have issued their own data localization requirements. The… Continue reading The Obligation to Localize Data Affects More Companies

The Export Control Law Requires Export Compliance

China’s new export control law is more comprehensive than many companies doing business in China believe. It targets not only the cross-border transfer of controlled items, but also the act of a Chinese subject providing controlled items to a foreign subject within or outside its territory. The controlled items include not only goods, technology and… Continue reading The Export Control Law Requires Export Compliance

China Wants to Open its Cloud Services Market to EU Companies

China’s opening to European investment, the Investment Agreement between China and the EU promises, includes market access in many sectors – including cloud services and other online services. China has agreed to open its cloud services sector to EU investment up to a 50% cap. The entry into force of the CAI may thus create… Continue reading China Wants to Open its Cloud Services Market to EU Companies

China’s National Security Law: Restrictions on Data and Technology

The National Security Law (NSL), which came into force in June 2020, has implications for Hong Kong-based businesses in terms of technology and data. For example, Internet service providers must now grant the authorities access to user data and review their cross-border data flows. Technology companies must restructure their business activities if Western export bans… Continue reading China’s National Security Law: Restrictions on Data and Technology