With China’s PIPL (Personal Information Protection Law), restrictions on cross-border data transfers have been tightened. They remain authorized but are very supervised, with some stricter data localization rules. There are three main mechanisms to export data: security assessment, certification and standard contractual clauses.
[Read more…] about PIPL, Data Transfer in China & Data LocalizationChina
China’s Personal Information Protection Law (PIPL): Comparison with the EU and U.S. Approaches
China data privacy law is often mentioned in discussions on state surveillance and the legitimate concerns it raises. But the obligations weighing on private actors, like those under GDPR in Europe, are much more detailed. This post focuses on their evolution until 2023, culminating with the Personal Information Protection Law (PIPL) and its guidelines, and the comparison with data privacy rules in the U.S. and the EU.
[This article is being updated] This post summarizes my law review article “China’s Approach on Data Privacy Law: A Third Way Between the U.S. and the EU?” published in the Penn State Journal of Law and International Affairs, vol. 8.1, augmented with the most recent changes. It comprehensively details the results of a research that is part of my Ph.D at Shanghai Jiao Tong University. The present blog post only aims at “briefly” presenting the main findings in a more casual fashion.
[Read more…] about China’s Personal Information Protection Law (PIPL): Comparison with the EU and U.S. ApproachesAll Data Protection Laws in China (2023 List)
In this post, I try to keep track of all data privacy laws in China available in English. If no full translation is available, I do my best to link to some relevant comments published by observers. I find it convenient to have all of them gathered in one place, and I hope it can be helpful to you as well.
[Read more…] about All Data Protection Laws in China (2023 List)