On March 22, 2024, the centralized regulator of cyber and data security, the Cybersecurity Administration of China (CAC), published the Provisions on Promoting and Regulating the Cross-border Flow of Data (New Provisions), relaxing the existing requirements relating to cross-border data transfers. The New Provisions took immediate effect on March 22, 2024.
George Qi
George Qi is the Co-Managing Shareholder in the firm's Shanghai office and Co-Chair of the firm's China Practice. He practices primarily in China-related cross- border mergers and acquisitions, foreign direct investment and general corporate matters. He also has wide- ranging experience advising both U.S. and non-U.S. companies relating to internal investigations of FCPA or other regulatory violations.
China Promulgates Personal Information Protection Law
On Aug. 20, 2021, after two rounds of public comments on China’s draft Personal Information Protection Law (PIPL), China promulgated the final version of the PIPL, which takes effect Nov. 1, 2021. Together, the PIPL, Cybersecurity Law (which came into force June 1, 2017) and Data Security Law (which came into…
China Finalizes Data Security Law
On June 10, 2021, the final version of Data Security Law (DSL) of the People’s Republic of China was published, and the DSL will take effect Sept. 1, 2021. Prior to the issuance of the final version, two drafts of the DSL were released to the public seeking comments, in July 2020 and…