China

China Publishes New Measures and Draft Standard Contract on Data Export

By Lindsay Zhu & Katherine Fan on July 11, 2022

Posted in China, Data Export, Data Privacy, Personal Information Protection Law

The past week witnessed two major developments relating to data export from China. On one hand, the data export-related regulation was officially adopted which expands the scope of government assessment. On the other hand, the long-awaited draft personal data export standard contract and the rules relating to the application of the contract were released for…

APAC Partner Scott Warren Featured in New Multi-Part Global Privacy Podcast Series

By Kristin Bryan on April 28, 2022

Posted in Asia, Data Privacy

Tune in today! Hear CPW’s APAC Partner Scott Warren discuss the latest data privacy and cybersecurity issues in Asia as part of Global Privacy Podcast’s four-part series hosted by Nadia Ishaq. Episode 1 is available now and covers what Scott has coined, ‘The Data Privacy Continuum.’ Here he provides ways to break down data…

Scott Warren to Speak at PrivSec Global on China’s Data Privacy Law

By Squire Patton Boggs on February 1, 2022

Posted in China, Events, Team News

We are pleased to announce that Scott Warren has joined the faculty of PrivSec Global, which brings together leading experts from around the world for a two-day livestream event covering the latest information, guidance and advice on data protection, privacy and security.
Continue Reading Scott Warren to Speak at PrivSec Global on China’s Data Privacy Law

New PRC Personal Information Protection Law Passed: A Deeper Dive into the Provisions

By Scott Warren, Lindsay Zhu & Katherine Fan on September 9, 2021

Posted in China, Personal Information Protection Law

As reported in our recent post, on August 20, 2021, the National People’s Congress Standing Committee of the People’s Republic of China passed the Personal Information Protection Law (the “PIPL”). The implementation date is set for November 1, 2021, though we await some additional detail via promulgation orders on a number of important provisions, as set forth below, from the regulatory authorities.
Continue Reading New PRC Personal Information Protection Law Passed: A Deeper Dive into the Provisions

NEW: China’s Personal Information Protection Law

By Scott Warren & Lindsay Zhu on August 25, 2021

Posted in China, Data Privacy

After three rounds of revisions, on August 20, 2021, the National People’s Congress Standing Committee of the People’s Republic of China officially passed the Personal Information Protection Law (the “PIPL”).

Fundamental Principle. The fundamental principles under the PIPL is that collection and processing PI should be limited only the minimum level as necessary to fulfill the specific purpose of PI processing; or the so-called “as minimum and as necessary” principle. PI processing beyond the level of minimum and necessity may be found a violation of the PIPL, even if individual consent is obtained or other formality is fulfilled. PI processing and compliance program should be set up always with the fundamental principles in mind.

Continue Reading NEW: China’s Personal Information Protection Law

China Passes New Data Privacy and Security Laws

By Lindsay Zhu & Katherine Fan on August 23, 2021

Posted in China, Data Privacy

The People’s Republic of China (China), has been active lately in passing several new laws and regulations relating to data privacy and security. Here are 2 of the recent laws which tend to focus more on those handling data national security and/or public interest (ala Critical Information Infrastructure or Important Data).
Continue Reading China Passes New Data Privacy and Security Laws

Privacy World