Why China's New Data Security Law Is a Warning for the Future of Data Governance - Foreign Policy

Stricter data privacy guidelines present new challenges for businesses operating in the world’s second largest economy.

BUDRUL CHUKRUT/LIGHTROCKET VIA GETTY IMAGES

China’s two newest data security laws—the “Data Security Law” (DSL) and the “Personal Information Protection Law” (PIPL)—came into effect at the end of 2021. Building on the 2017 Cybersecurity Law, they include new guidelines for handling data, updated enforcement measures, and additional restrictions on the transfer of data outside of China. Notably, the DSL broadly expands the extraterritorial reach of China’s existing data rules, creating a critical new set of guidelines for companies doing business with Chinese citizens—both within and outside the country’s borders—to navigate.

These new restrictions paint a complicated picture for the future of data governance, continuing a trend toward more complex regulatory regimes, competing legal frameworks, and increased restrictions on international data flows. Governments continual adoption of similar measures will increasingly disrupt an era of relatively restriction-free cross-border data flows that has been critical to the growth and expansion of many international businesses. The key points and implications from each law are broken down below.

This report is a preview of research exclusively available for FP Insiders. Complete this brief form to continue reading.

Are you interested in this report for personal or professional use?

source: https://foreignpolicy.com/2022/01/28/china-data-governance-security-law-privacy/

Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.