The TikTok ban is now a long story. Countless press articles relate the latest twists. But here, I focus on the actual national security rules that allow the US to force the Chinese company out. I’m not taking sides, but I’d like to bring attention on how privacy concerns can now trigger national security reviews and block foreign investors deemed suspicious. This is a defensive mechanism against the weaponization of personal data in the cyberwarfare playing out.[Read more…] about TikTok Ban: How Privacy Issues Can Block Foreign M&As in the Cyberwarfare
Governments around the world now use our personal information to pose threats over each other. The actual or potential control that a foreign country has over domestic personal data highly impact geopolitical relations, but also cross-border business flows and compliance requirements. What’s happening around Huawei, the TikTok ban or Wechat are the best known examples of the weaponization of personal data, that is unlikely to stop anytime soon.[Read more…] about The Weaponization of Personal Data: When National Security Meets Privacy (TikTok, Huawei, WeChat…)
In this post, I try to keep track of all data privacy laws in China available in English. If no full translation is available, I do my best to link to some relevant comments published by observers. I find it convenient to have all of them gathered in one place, and I hope it can be helpful to you as well.[Read more…] about All Data Protection Laws in China (2020 List)
Data Privacy in China is usually only mentioned in discussions on state surveillance, and the legitimate concerns it raises. A lesser known question is the development of obligations for companies towards consumers, i.e. consumer privacy rules. This post focuses on their evolution, culminating with China’s Cybersecurity Law and its guidelines, and their comparison with data privacy rules in the U.S. and the EU.
This post summarizes the main results of my law review article “China’s Approach on Data Privacy Law: A Third Way Between the U.S. and the EU?” to be published in the Penn State Journal of Law and International Affairs, vol. 8.1. It comprehensively details the results of a research that is part of my Ph.D earned from Shanghai Jiao Tong University. The present blog post only aims at “briefly” presenting the main findings in a more casual fashion.[Read more…] about Data Privacy Law in China: Comparison with the EU and U.S. Approaches
The U.S. data protection law landscape is moving fast since the GDPR arrived in the EU. This happens mostly at the state level so far, the CCPA being the best known of these new laws. The U.S. doesn’t yet have a nation-wide federal data privacy law, and relies on several sectoral laws. But this day will come, as the need to unify a patchwork of U.S. data privacy laws grows.[Read more…] about U.S. Data Privacy Laws: CCPA, HIPAA, COPPA… and soon a Federal Data Protection Act?
OPINION. In its fight against Covid-19, China makes intensive use of the personal data of its people, while the EU doesn’t – yet. Big data analytics “for the common good”, including large-scale monitoring of population movements and identification of potential cases is a significant innovation in the management of this epidemic. This should be done, but with privacy in mind.[Read more…] about We Should Weaponize Personal Data to Fight Covid-19, with Privacy in Mind