The Data Security Law (DSL) requires companies to categorize their data as “general data,” “important data,” and “core data.” Which data falls into these categories varies from industry to industry. The definition of important data for the automotive industry has received the most attention so far, and also for the financial industry a detailed explanation… Continue reading Important Data in Industry and Information Technology
National Standard Provides Insight into Future Data Requirements
The requirements of the internationally widely discussed Data Security Law (DSL, effective since Sep 1, 2021) are a challenge for many companies operating in China. To establish a hierarchical protection system for data classification, China’s National Information Security Standardization Technical Committee has issued the National Standard – Guide for Important Data Identification (Draft, hereinafter referred… Continue reading National Standard Provides Insight into Future Data Requirements
Cyber Security and Data Protection: What’s in Store for 2022?
The year 2021 was – not only, but also – a turbulent year in the areas of cyber security and data protection in China. In addition to increased enforcement of the Multi-Level Protection Scheme (MLPS) in China, the implementation of which has been legally binding for companies in China since 2017 (see our webinars), many… Continue reading Cyber Security and Data Protection: What’s in Store for 2022?
Important Data: More Duties for Processing
China is fleshing out its data protection rules. The Network Data Security Management Regulation (Draft for Comments), published in November 2021, provides more detailed guidance regarding the obligations of processors of important data. Data is divided into general data, important data, and national core data. Important data refers to data that may jeopardize national security… Continue reading Important Data: More Duties for Processing
Information on Important Data in China
According to the Measures on Data Export Security Assessment (Draft for Comments) and Network Data Security Management Regulation (Draft for Comments), important data and the obligations of important data processors are explained as follows:China defines critical data very broadly. Important data is data that may jeopardise national security or the public interest if it is… Continue reading Information on Important Data in China
DSL: What is “Important Data”?
The Data Security Law (DSL), which further strengthens China’s regulation of data security, will come into effect on September 1, 2021. The critical question for foreign companies is to what extent they will be affected by the DSL. The crux of the matter here is the so-called “important data.” This special category of data is… Continue reading DSL: What is “Important Data”?
Automakers Must Implement the MLPS for Autonomous Vehicles
China has gradually lowered barriers to foreign investors entering the auto industry in recent years, but is now stepping up regulation and supervision of companies in the areas of cyber security and data protection. On April 7, 2021, the Ministry of Industry and Information Technology (MIIT) released draft “Guidelines for Approval of Manufacturers of Intelligent… Continue reading Automakers Must Implement the MLPS for Autonomous Vehicles
China Fights Misleading through Deepfakes
China is increasingly cracking down on illegal deepfakes – fake digital representations of people in image, video or audio formats created using artificial intelligence for the purpose of deception. The counterfeiter usually collects facial or body data of a person in the form of images and uploads them to an AI algorithm. This processes the… Continue reading China Fights Misleading through Deepfakes
MLPS 2.0: China Steps Up Its Cybersecurity Inspections
Implementation of the Cyber Security Law through the Multi Level Protection Scheme (MLPS 2.0) is mandatory for all companies established in China. Because implementation has been slow, the government has now stepped up cybersecurity monitoring and is urging companies to fulfill their MLPS obligations. The authorities are particularly targeting the industrially strong regions, where many… Continue reading MLPS 2.0: China Steps Up Its Cybersecurity Inspections
China Wants to Open its Cloud Services Market to EU Companies
China’s opening to European investment, the Investment Agreement between China and the EU promises, includes market access in many sectors – including cloud services and other online services. China has agreed to open its cloud services sector to EU investment up to a 50% cap. The entry into force of the CAI may thus create… Continue reading China Wants to Open its Cloud Services Market to EU Companies