Dear COCHE Researchers,
Please be aware that the Cyberspace Adminstration of China (CAC) has implemented Security Measures on Cross-border Transfers of Data.
Data processors (including enterprises or organisations) which effect cross-border transfers of data shall in the following situations, carry out their own security assessments and report such security assessment to the CAC through local cyberspace administration authorities at the provincial level:
• where the data processor transfers important data across the border;
• where the data processor which transfers personal information across the border processes personal information of over 1 million persons;
• where the data processor which transfers personal infromation across the border has cumulatively made outbound transfers of personal information of over 100,000 persons, or sensitive personal information of over 10,000 persons since 1 January of the preceding year; and
• in other situations as prescribed by the CAC where a report on security assessment is required.
Please find the following press release from the PCPD on the Cross-border Transfers of Data:
Please find the Mainland's Personal Information Protection Law in Chinese:
In the event of any discrepancy or inconsistency between the Chinese version and the English translation, the Chinese version (attached) shall prevail.