China proposes to allow businesses to transfer certain types of data overseas without restrictions; IBM's former IT services arm Kyndryl plans to split its China business over data security rules and tech restrictions; and Shenzhen's government introduces initiatives to raise funding for local tech companies amidst U.S. tech restrictions
China's cybersecurity laws are heavily enforced for businesses of all sizes; Chinese Gotion receives CFIUS approval to build an EV battery facility in Illinois; and Former SEC Chair proposes large public companies disclose their exposure to China
China meets executives of international firms in order to reassure them over data security regulations; CSRC seeks regulatory opinion for the frist time for overseas listing; and Chinese automobile parts included in U.S. import detention over Xinjiang concerns
New draft measures on personal information protection compliance audits have been released for public comment. Jianwei (Jerry) Fang and Chuchen (Julie) Hou of Zhong Lun Law Firm analyze the legislative basis and specific requirements of the new draft, and provide some practical recommendations for PI processors who are planning for an upcoming compliance audit.
Companies that collect a large amount of personal information are required to conduct a compliance audit of its protection of personal information annually
