Category: cybersecurity

Fundamentals for managing employees’ personal information in China

Personal Information Protection Law (PIPL) was adopted on 1 November last year and applies to all individuals and organisation handling personal data. Since the adoption, regulators have been actively investigating suspected violations and issuing fines. For employers, implementing PIPL compliance measures when processing employees’ personal information reduces legal risks. In the below, we provide the…

Read more

Transferring technology in China – understand your obligations and reduce legal risks

Cross-border technology transfers can be challenging to navigate in China. As China categorizes technology transfers into three groups (prohibited, restricted, and free), the transfer can be subject to certain limitations or requirements. For foreign companies transferring technology in or out of China, it is crucial to understand obligations and reduce legal risks.   In China,…

Read more

Going Live from 1 September: Measures for the Security Assessment of Outbound Data Transfers

Released on the 7 July 2022, the Measures for the Security Assessment of Outbound Data Transfers becomes effective from 1 September (‘Measures’). The Measures published by the Cyberspace Administration of China supplements the Data Security Law and Personal Information Protection Law adopted in 2021 by setting forth the security assessment obligations for companies in China…

Read more

The Dos and Don’ts of Processing Employee Data under Personal Information Protection Law in China

Personal Information Protection Law ('PIPL'), effective from 1 November 2021, regulates those collecting and handling personal information. For companies processing employee data, a robust data security system should be integrated into the IT infrastructure and in line with PIPL.  Whilst PIPL largely affects companies handling consumer data, employers are not immune from PIPL and should…

Read more

Q&A with Dr Roberto Gilardino on the Revised Measures for Cybersecurity Reviews in China

The Measures for Cybersecurity Reviews "("Measures"") was revised by 12 Ministries on 28 December 2021 and comes into effect on 15 February 2022. The Square speaks with Dr Roberto Gilardino, Regional Partner for Asia and Additional Countries, on the implications of revised Measures and application for companies in China. The Square: The Measures focus on…

Read more