In the June edition of GC Agenda China (subscription required), Morrison & Foerster partner Paul McKenzie shared his opinions on the new draft Measures on the Administration of Data Security circulated by Cyberspace Administration of China (CAC).
According to Mr. McKenzie: “CAC and other Chinese regulators are demonstrating an accelerating pace of work putting in place the implementing regulations and standards needed to animate the 2016 CSL. These draft data security measures are notable not so much because they introduce new principles. To a significant extent, they adopt approaches embodied in the non-binding Personal Information Security Standard that took effect last year. But unlike the standard, these measures, when promulgated, will have direct legal enforceability and so are a significant piece of the overall regime for enforcing the 2016 CSL.”