Global Privacy & Security Compliance Law Blog

Tag Archives: Developments Asia

Russia Introduces New Definition and Obligations for Audiovisual Service Owners

By Gail Crawford and Ksenia Koroleva The Federal Law No. 87-FZ of May 1, 2017, on Amendments to the Federal Law on Information, Information Technologies, and Information Protection (the Law) came into force on July 1, 2017. The Law introduces the definition of an audiovisual service owner and regulates their activities, including imposing ownership restrictions. The Notion of … Continue Reading

6 Key Requirements of China’s First Network Security Law

By Jennifer Archie, Gail Crawford, Serrin Turner, Hui Xu & Lex Kuo The Standing Committee of the National People’s Congress of the People’s Republic of China (PRC) has introduced China’s first and comprehensive Network Security Law (also referred to as Cybersecurity Law). The law will have far-reaching implications for parties that utilize the internet and … Continue Reading

Enforcement of the Personal Data Protection Act in Singapore

By Chei-Liang Sin, Luke Grubb & Sally Murphy The Personal Data Protection Commission (the Commission) was established in January 2013 to implement and enforce The Personal Data Protection Act 2012 (PDPA). The PDPA fully came into force on 2 July 2014. So far, the Commission has mainly used its investigation and enforcement powers to take … Continue Reading

Singapore’s first data breach?

The Straits Times reported on 14 August that Singapore’s Personal Data Protection Commission (the “Commission”) is investigating a complaint from a user that Xiaomi has breached the Personal Data Protection Act 2012 (“PDPA”). This is believed to be the first investigation under the main PDPA rules unrelated to the Do Not Call registry which came … Continue Reading

Malaysian Personal Data Protection Act Comes Into Force

Guest Blogger Jillian Chia from Skrine, Kuala Lumpur, Malaysia & Gail Crawford With the Malaysian Personal Data Protection Act 2013 (“PDPA”) having come into force on 15 November 2013, Jillian Chia, Senior Associate at Skrine, provides an overview of the salient provisions in the Regulations and Orders. She notes that that there is a grace period for … Continue Reading

Regulatory requirements for use of personal data for direct marketing in Hong Kong: An Update

By Simon Berry and Carmen Guo In recent weeks, many Hong Kong businesses have circulated emails to contacts in their customer databases, offering recipients the ability to “opt out” of future direct marketing. This is in response to the introduction of a new Part VI A (effective as of 1 April 2013) into Hong Kong’s … Continue Reading

China’s Legislature Adopts Decision on Strengthening the Protection of Online Information

By Li Jie Han On December 28, 2012, the Standing Committee of the National People’s Congress (“NPC”) of the People’s Republic of China adopted the Decision on Strengthening the Protection of Online Information (“Decision”). The Decision contains twelve (12) clauses, which are applicable to entities in both the public and private sectors in respect of … Continue Reading

Hong Kong Personal Data (Privacy) (Amendment) Ordinance Now in Effect

By Simon Berry and Daisy Shen The Personal Data (Privacy) (Amendment) Ordinance (Amendment Ordinance) came into operation on 1 October 2012, with the exception of those provisions relating to direct marketing and legal assistance which will take effect on a further date to be announced. The Amendment Ordinance introduces various amendments to the Personal Data … Continue Reading

Cookie Compliance Check Results Announced by Hong Kong Data Privacy Commissioner

The Office of Hong Kong’s Privacy Commissioner for Personal Data (PCPD) recently announced the results of compliance checks on the collection of “cookies” by local banks in response to earlier media reports and a survey by the Hong Kong Monetary Authority (HKMA). According to media reports from September 2010, some local banks in Hong Kong … Continue Reading

Hong Kong Privacy Commissioner Offers Guidance on Handling of Data Access Requests

By Simon Berry and Daisy Shen Questions often arise about the scope of a data user’s obligations to respond to data subject access requests.  Hong Kong’s Privacy Commissioner for Personal Data offers some guidance in a recently issued Guidance Note (Guidance on Proper Handling of Data Access Request and Charging of Data Access Request Fee … Continue Reading

Chinese Regulator Proposes New Rules Prohibiting Unauthorized Use of Personal Data by Internet Content Providers, Mobile Device Manufacturers

By Lijie Han China’s internet and telecoms industry regulator, the Ministry of Industry and Information Technology (MIIT), recently released two draft regulations for public comment, namely, the amended Measures on the Administration of Internet Information Services (IIS Measures) and the Notice Regarding Strengthening the Administration of Network Access for Smart Mobile Devices (Smart Mobile Notice). … Continue Reading

Update on India’s New Data Privacy Rules

Our 27 June post on the new Indian data privacy regime discussed the key provision of the Information Technology (Amendment) Act 2008 and its implementing regulations, the new Rules.  It also considered some of the questions left unanswered by the Rules.  What categories of personal data do the Rules apply to?  How is the required … Continue Reading

India’s Comprehensive New Data Rules

Kevin Boyle and Amy Taylor contributed to this post. Vast amounts of global personal data flow through India, including as a result of its major outsourced services industry.  For that reason, India’s recently adopted data privacy regulations, which implement the Information Technology (Amendment) Act 2008, have the potential for a profound impact on global businesses … Continue Reading