Original broadcast date: September 1, 2021

The Cybersecurity Law (CSL), the Personal Information Protection Law (PIPL) and the Data Security Law (DSL), form the fundamental framework for cross-border data transfer mechanisms in China. There are also sectorial regulations all which contain cross-border transfer requirements for different types of data from various data exporters. Meanwhile, these requirements are not entirely consistent and could be overlapping. With these important new developments in mind, it is important for companies doing business in China to understand the complicated regulatory framework and comply with the rapidly evolving requirements. This session will explain how the cross-border data transfer framework will be shaping up in China, introduce the most recent key regulations, and share lessons learned from in-house experts on how to comply with the new rules.

• Mark Luo, Associate Director, Information Security, Information and Digital Solutions, Lilly China
• Yan Luo, Partner, Covington & Burling
• Stacey Steele, CIPP/E, Interim CPO, S&P

What you will learn:

• The cross-border data transfer framework in China.
• Recent regulations that contain cross-border data transfer requirements, such as the draft Personal Information Protection Law, the Data Security Law, the Regulation on Security Management of Automotive Data, etc.
• Approaches and strategies to comply with current data transfer requirements.