New Chinese Rules Significantly Heighten Personal Data Protection Requirements
- Published on Thursday, February 28, 2013
- Written by Web Editor
On December 28, 2012, China’s legislative body issued a decision that lays out the basic framework for protection of electronic personal data, which took immediate effect. On November 15, 2012, China’s standard-setting authority issued a non-binding national standard on personal information protection in information systems, which became effective on February 1, 2013. Together, these new rules have provided some additional clarity on personal data protection requirements in China, including personal data collection, processing and transfer, and companies operating in China should carefully review the new requirements to ensure compliance.