BritCham China’s latest policy briefing provides companies with an update in regards to recent changes to China’s cyber and data security regulatory landscape.
Our briefing summarises the recent changes in regards to cross-border data transfers, provides companies with an overview of the scope of application, and the relevant processes required under those regulations.
China’s cybersecurity and IT regulations ranked as one of the top 3 cross-cutting challenges faced by British business over the past 12 months. Ensuring that foreign businesses can continue to navigate and comply with China’s changing regulatory framework remains at the core of our policy work.
Executive Summary:
China’s cybersecurity and IT landscape is governed by three major laws and regulations being the:
- Cybersecurity Law (“CSL”);
- Data Security Law (“DSL”); and
- Personal Information Protection Law (“PIPL”).
Over the past month, the various regulatory bodies in China have circulated further measures and guidelines in regards to the cross-border transfer of data, handling of data, and the definition of “important data”.
Navigating China’s cybersecurity and IT regulations ranked as one of the top 3 cross-cutting challenges faced by British business over the past 12 months. These further guidelines and measures provide some welcome clarity in this area, but also place additional burdens on companies with regards to compliance and businesses need to be ready for when these come into force.
The British Chamber of Commerce in China would like to thank PwC China and Tiang & Partners for their contribution to the article.
Click here to download the policy briefing.