Chinese internet regulator seeks security review for cross-border data transfers

Written by Luna Lin Published on 

The Cyberspace Administration of China is soliciting public feedback until July 13.

China’s internet regulator issued draft guidelines for cross-border data transfers yesterday, requiring companies to undergo compulsory security reviews before transferring data containing personal information—including ID numbers, addresses, and phone numbers—to overseas servers.

Network operators are required to report to provincial-level internet regulators and apply for security reviews every two years. They must also keep a record of cross-border data transfers for at least five years.

The security review will look at whether cross-board data transfers that are taking place are in accordance with relevant laws and regulations, and whether the the rights of individuals using these services are protected. Regulators will also weigh whether the contracts can be effectively enforced, the integrity of the data collection process, as well as each network operator’s history in terms of cybersecurity and privacy violations.

The evaluation process is expected to take 15 working days upon receiving company applications.

The Cyberspace Administration of China, China’s internet regulator, is soliciting public feedback on the draft until July 13.


You might like these

  • News

    Disney+ Hotstar pulls in 2.5 million subscribers in Indonesia, surpassing Netflix


    Tech in Asia

    22 Jan 2021    12:00 PM

KrASIA InsightsKrASIA Insights

  • A growing presence of digital banks in Indonesia will encourage innovation and digitalization of financial services, expert say.


    Digital banking to gain a foothold in Indonesia in 2021

    By Khamila Mulia

    20 Jan 202101:05 AM

Most PopularMost Popular

See All