On April 29, 2021, China issued a second draft version of the Data Security Law (“Draft DSL”). The Draft DSL will be open for public comments until May 28, 2021.

While the framework of this version of the Draft DSL is the same as the prior version issued on July 3, 2020, below we summarize the material changes in the second version of the Draft DSL.
Continue Reading China Issues the Second Version of the Draft of Data Security Law

The National Information Security Standardization Technical Committee of China has published a draft standard on Security Requirements of Facial Recognition Data. The Standard, which is non-mandatory, details requirements for collecting, processing, sharing and transferring data used for facial recognition.
Continue Reading China Publishes Draft Security Standard on Facial Recognition

China’s State Administration for Market Regulation has recently issued Measures for the Supervision and Administration of Online Transactions. The Measures implement rules for the E-commerce Law of China and provide the specific rules for addressing registration of an online operation entity, supervision of new business models (such as social e-commerce and livestreaming), platform operators’ responsibilities, protection of consumers’ rights and protection of personal information.
Continue Reading China Issues the Measures for the Supervision and Administration of Online Transactions

The Cyberspace Administration of China has released Provisions on the “Scope of Necessary Personal Information Required for Common Types of Mobile Internet Applications.” The Provisions generally are consistent with the draft version previously issued for public comments on December 1, 2020 and include additional details, as well as new provisions relating to ticketing applications (e.g., those for purchasing seats at performances).
Continue Reading China Issues Provisions on the “Scope of Necessary Personal Information Required for Common Types of Mobile Internet Applications”

In the February 2021 issue of the “Data Protection Leader,” Hunton partner Dora Luo discusses China’s draft Personal Information Protection Law in the context of other comprehensive data protection frameworks, such as the EU General Data Protection Regulation. This post includes a link to download the full article.
Continue Reading Hunton Partner Dora Luo Publishes “China: The Draft PIPL and the GDPR – A Comparative Perspective”

On November 6, 2020, Hunton attorneys Dora Luo and Yanchen Wang published a new Guidance Note for OneTrust DataGuidance on China’s data protection laws. The Guidance Note examines recent changes to China’s emerging cybersecurity and personal information protection framework.
Continue Reading Hunton Attorneys Publish Guidance Note on Changes to China’s Data Protection Laws

On December 1, 2020, the Cyberspace Administration of China released draft rules on the “Scope of Necessary Personal Information Required for Common Types of Mobile Internet Applications” (the “Draft Rules”) (in Chinese).

Continue Reading China Issues Draft Rules on the “Scope of Necessary Personal Information Required for Common Types of Mobile Internet Applications”

On November 18, 2020, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted its response to the Standing Committee of the National People’s Congress of the People’s Republic of China on the Draft Personal Information Protection Law.
Continue Reading CIPL Submits Response to China’s Personal Information Protection Law