China regulates the reporting of cyber security incidents in a new law, which is now available in draft form. A key aspect is the reporting obligation for companies that set up or operate networks in China or provide services via networks. Particular attention is paid to the different reporting channels for central bodies, critical infrastructures… Continue reading Reporting of cyber security incidents
Tag: security incident
Data Compliance Can Prevent Penalties
Due to the three laws in the field of data – the Cyber Security Law, the Data Security Law and the Personal Information Protection Law – companies in China must set up a complete system to comply with data protection and security regulations. A good data compliance system can avoid warnings from administrative authorities during… Continue reading Data Compliance Can Prevent Penalties
The PIPL Requires Data Mapping of Personal Information
With the new Personal Information Protection Law (PIPL), the assessment of the impact on data subjects through the Personal Information Security Impact Assessment (PISIA) becomes the center of attention. PISIA assesses the legal compliance of current personal data processing, identifies the risks to data subjects, and evaluates the effectiveness of the data protection measures taken.… Continue reading The PIPL Requires Data Mapping of Personal Information
China Intellectual Property Blog 