In China, there are increasing legal requirements in the field of cybersecurity, data security and personal information protection. The following laws constitute the three pillars of such legal system.
- The Cybersecurity Law, effective on June 2017, as the first law in this field, is the significant mark for China to be in line with the world on the regulatory framework for cybersecurity and data protection
- The Data Security Law, which came into forth on September 1, 2021, formally put forward a number of systems aimed at ensuring data security, and set up a basic framework for the establishment and improvement of our data security legal system.
- The Personal Information Protection Law ( “PIPL”) came into force on 1 November 2021. Any activities of processing personal information within the territory of China and certain activities, outside the territory of China, of processing personal information of natural persons who are within the territory of China shall be regulated under PIPL.
We leverage our comprehensive experience in technology law across sectors, including manufacturing, retail, tech companies, cloud computing, IT, biopharma, finance and investment, e-commerce and the internet of things (IoT), to address and assist our clients with the challenges in the global digital world. We assist our clients in their assessment of data compliance and the relative risk identification, and provide guidance to our clients on their data processing activities.
Our services include:
- Advising on a wide range of cybersecurity, privacy, and data protection issues
- Assessing and analyzing risks in data processing, compliance and management
- Providing strategy and principles on cross-border data transfer
- Assisting with ICP recordal and relative matters
- Drafting and reviewing general contracts
- Software licensing and transactions
- Online electronic transactions
- Electronic signature
- Dispute resolution