The Office of the Privacy Commissioner for Personal Data in Hong Kong released guidance on requirements for cross-border data transfers under China's Personal Information Protection Law. The guidance discusses processors' obligations to collect consent and perform data protection impact assessments. Additionally, processors will either use an authorized transfer mechanism or have government clearance before executing a transfer, meeting Article 38 of the PIPL. Editor's note: The IAPP's Jennifer Bryant discussed PIPL compliance with a range of privacy professionals.
21 Dec. 2021
PCPD outlines PIPL's transfer requirements
RELATED STORIES
Privacy in Arkansas: Is Arkansas ready for a consumer privacy law?
A view from DC: CFPB calls for states to regulate financial privacy
Notes from the IAPP Canada: OPC's WADA investigation 'raises some interesting issues'
A view from Brussels: European Commission's new tech policy center of gravity
First fine imposed under Thailand's Personal Data Protection Act
