Photo of Scott Warren

Scott Warren

Scott Warren (Japan/China) and Charmian Aw (Singapore) will be speaking in Singapore at the Global Legal ConfEx full day conference.  Scott will be moderating two panels, one entitled Breach Notification: A Deep Dive Into What, When and Who to Notify, and the other Strategies for Managing Risks and Ensuring Compliance with Anti-Bribery and Anti-Corruption

Whether to and how to integrate AI into business operations remains a real challenge for companies considering the adoption of the technology. We have released “Ten Things About Artificial Intelligence (AI) for GCs in 2024” providing 10 key insights as a helpful guide on the issues around AI. Our global team stands ready

The Association of Southeast Asian Nations (ASEAN) has issued a practical guide[1] for AI design, development and deployment by organizations, as well as for policy formulation by governments in the region. The guide focuses on “traditional AI technologies” that exclude generative AI.Continue Reading ASEAN Publishes Multipurpose AI Governance Guide

Scott Warren, Partner, Tokyo/Shanghai, has been busy this week at various speaking events in Tokyo.  On 25 October 2023, he spoke at two events:

  • 9th International Arbitration, Corporate Crime and Anti-Trust Summit, moderating and presenting a panel entitles “Digital Crimes, AI and Cyber Incidents: What You Need To Know for Compliance”. The

On September 28, 2023, the Cyberspace Administration of China proposed draft regulations, the Regulations on Regulating and Facilitating Cross-border Data Flow (Draft Regulations), seeking public comment. If adopted, it will significantly reduce the restrictions on cross-border data transfers from China. This is a material effort by China to improve free data flows and an implementation of the “whitelist” mentioned under the 24 provisions for attracting foreign investment published in August 2023.Continue Reading China Releases Draft Regulation to Significantly Ease Cross-border Data Transfers

Recently, the Cyberspace Administration of China issued new comprehensive provisional measures, which went into effect on August 15, 2023, and govern the development and use of generative AI (GAI) in China. The measures cover “GAI services” (including foreign-invested GAI services) provided within the PRC, including the text, pictures, audios, videos and other content they generate.

Our global data team has prepared a practical guide that compares three standard contracts, as a means of facilitating international data transfers, namely:

  • The EU’s standard contractual clauses (effective since June 2021)
  • The People’s Republic of China’s (PRC) standard contract (issued in March 2023)
  • The Association of Southeast Asian Nations’ (ASEAN) model contractual clauses (published in January 2021).

Continue Reading A Guide Comparing EU, China, ASEAN Standard Contracts for Data Transfers

On May 30th, the Cybersecurity Administration of China (CAC) issued details of the format for filing with the government the documentation necessary for the export of Personal Information collected in China.  This guide acts to supplement the requirements set forth in the February 24, 2023 regulations, which came into effect on June 1, 2023 (though there is a 6-month extension allowed for existing data transfers).
Continue Reading China Issues Guidelines for Submitting the Personal Information Protection Impact Assessment for Data Exports

The Philippines’ National Privacy Commission (NPC) has released for public comment two sets of draft guidelines on:

  • Consent as a basis for processing personal data (Consent Guidelines)[1]
  • The issuance and use of identification cards by private organizations (ID Cards Guidelines)[2]

Consent Guidelines

Consent is acknowledged as the most common criterion for processing personal