On March 22, 2024, the centralized regulator of cyber and data security, the Cybersecurity Administration of China (CAC), published the Provisions on Promoting and Regulating the Cross-border Flow of Data (New Provisions), relaxing the existing requirements relating to cross-border data transfers. The New Provisions took immediate effect on March 22, 2024.

Continue reading the full GT Alert.

Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of George Qi George Qi

George Qi is the Co-Managing Shareholder in the firm’s Shanghai office and Co-Chair of the firm’s China Practice. He practices primarily in China-related cross- border mergers and acquisitions, foreign direct investment and general corporate matters. He also has wide- ranging experience advising both…

George Qi is the Co-Managing Shareholder in the firm’s Shanghai office and Co-Chair of the firm’s China Practice. He practices primarily in China-related cross- border mergers and acquisitions, foreign direct investment and general corporate matters. He also has wide- ranging experience advising both U.S. and non-U.S. companies relating to internal investigations of FCPA or other regulatory violations.

Photo of Philip Ruan Philip Ruan

Philip Ruan is a member of GT’s Corporate & Securities Practice, focusing on China-related transactions including venture capital, M&A and collaborative deals, with a focus on the life science industry. Philip also advises clients over China-related regulatory matters regarding foreign exchange, data, anti-bribery…

Philip Ruan is a member of GT’s Corporate & Securities Practice, focusing on China-related transactions including venture capital, M&A and collaborative deals, with a focus on the life science industry. Philip also advises clients over China-related regulatory matters regarding foreign exchange, data, anti-bribery, etc.

Photo of Andrea C. Maciejewski Andrea C. Maciejewski

Andrea C. Maciejewski designs and implements privacy and security programs for clients of all sizes – from Fortune 500s to start ups – and in all sectors, including digital entertainment, marketing, online education, retail, and consumer goods. Andrea helps companies navigate the intricacies

Andrea C. Maciejewski designs and implements privacy and security programs for clients of all sizes – from Fortune 500s to start ups – and in all sectors, including digital entertainment, marketing, online education, retail, and consumer goods. Andrea helps companies navigate the intricacies of multi-jurisdictional compliance programs as well as compliance with sector-specific data privacy and security laws. Andrea offers clients practical legal counsel, striving to understand the underlying business model and provide strategies that manage costs and risks, while attempting to maintain the businesses operations.

Her practice includes international data privacy laws and regulations, including the General Data Protection Regulation (“GDPR”) and China’s Personal Information Protection Law (“PIPL”), as well as U.S. federal and state data privacy laws, such as the Children’s Online Privacy Protection Act (“COPPA”), the Family Educational Rights and Privacy Act (“FERPA”), and the California Consumer Privacy Act (“CCPA”). Some of the specialized documents Andrea drafts include data processing addendums, intracompany agreements, cross-border transfer mechanisms, privacy policies, privacy impact assessments, and data inventories. She has experience in U.S. and multi-national record retention practices, and frequently counsels on updating those practices for compliance with new privacy laws.

Additionally, Andrea provides expert counsel on data concerns unique to video games, eSports, and mobile gaming.