China data privacy law is often mentioned in discussions on state surveillance and the legitimate concerns it raises. But the obligations weighing on private actors, like those under GDPR in Europe, are much more detailed. This post focuses on their evolution until 2023, culminating with the Personal Information Protection Law (PIPL) and its guidelines, and the comparison with data privacy rules in the U.S. and the EU.
[This article is being updated] This post summarizes my law review article “China’s Approach on Data Privacy Law: A Third Way Between the U.S. and the EU?” published in the Penn State Journal of Law and International Affairs, vol. 8.1, augmented with the most recent changes. It comprehensively details the results of a research that is part of my Ph.D at Shanghai Jiao Tong University. The present blog post only aims at “briefly” presenting the main findings in a more casual fashion.[Read more…] about China’s Personal Information Protection Law (PIPL): Comparison with the EU and U.S. Approaches