Skip to Content

IAPP Asia Forum 2026

Privacy | AI governance | Cybersecurity law

Singapore

21-23 July

Conference

22-23 July

Training

21 July

Back to conference agenda

Data Protection Updates in Hong Kong and Mainland China

Thursday, 23 July

14:15 - 15:15 SGT

Orchid Ballroom 4305, Level 4

Intermediate level

BREAKOUT SESSIONPRIVACYDATA SECURITYINCIDENT MANAGEMENTLAW AND REGULATIONLITIGATION AND CASE LAWTECHNOLOGYLEGAL

As cross-border digital integration accelerates, navigating the evolving regulatory landscapes of Hong Kong and Mainland China is critical for compliance and risk management. This seminar provides a comprehensive analysis of the latest enforcement trends and legislative shifts in the region.

We will examine the territorial scope of Hong Kong’s Personal Data (Privacy) Ordinance, addressing practical challenges in cross-border data transfers and recent anti-doxxing measures. Crucially, the session will demystify the latest enforcement trends regarding outbound data flows under China’s Personal Information Protection Law.

Attendees will also gain vital insights into the upcoming Hong Kong Critical Infrastructure Ordinance and proposed amendments to the PRC Cybersecurity Law. This session is designed to equip professionals with a complete, actionable overview of the dual regulatory frameworks governing the Greater China region, ensuring they remain ahead of the compliance curve.

What you will learn:

  • Review a case study in Hong Kong on territorial scope of the PDPO, data transfer and doxing.
  • Review a case study in Mainland China on cross-border data transfer under the PIPL.
  • Other key updates (Critical Infrastructure Ordinance and amendment of PRC Cybersecurity Law).

Featured in this session

headshot of Eliza Siew

Eliza Siew

Partner

Deacons