Law.com Subscribers SAVE 30%

Call 855-808-4530 or email [email protected] to receive your discount on a new subscription.

China's Second Draft Cybersecurity Law's Expanded Data Localization Requirement

By Tiana Zhang, Jodi Wu, Sally Han and Mike He
October 14, 2016

Cybersecurity has remained a priority for the Chinese government in 2016. Following closely on the heels of the enactment of the National Security Law and the Anti-Terrorism Law, the second draft of the Cybersecurity Law was released for public comment on July 5, 2016. Although still in draft form, when it is adopted, the Cybersecurity Law will impose a number of requirements on companies with business operations within the territory of China that have been subject to heated discussions among multinational companies (MNCs). This article provides a review of a significant amendment in the second draft of the Cybersecurity Law that could have a substantial impact on MNCs' China operations ' the expansion of the law to require the storage of a broad array of personal and business information within China.

The Expanded Data Localization Requirement

The first draft of the Cybersecurity Law included a data localization requirement that was relatively limited in scope with respect to both the type of the companies that would be subject to the requirement and the type of data had to be stored within China. Despite these limitations, private industry, including the MNCs, expressed concerns about the lack of clarity regarding the scope of the requirement. Instead of paring back the data localization requirement or clarifying its scope, as hoped for by MNCs, the second draft Cybersecurity Law goes even further than the original proposal, expanding the data localization requirement to an even broader set of companies and data.

This premium content is locked for Entertainment Law & Finance subscribers only

  • Stay current on the latest information, rulings, regulations, and trends
  • Includes practical, must-have information on copyrights, royalties, AI, and more
  • Tap into expert guidance from top entertainment lawyers and experts

For enterprise-wide or corporate acess, please contact Customer Service at [email protected] or 877-256-2473

Read These Next
Major Differences In UK, U.S. Copyright Laws Image

This article highlights how copyright law in the United Kingdom differs from U.S. copyright law, and points out differences that may be crucial to entertainment and media businesses familiar with U.S law that are interested in operating in the United Kingdom or under UK law. The article also briefly addresses contrasts in UK and U.S. trademark law.

Strategy vs. Tactics: Two Sides of a Difficult Coin Image

With each successive large-scale cyber attack, it is slowly becoming clear that ransomware attacks are targeting the critical infrastructure of the most powerful country on the planet. Understanding the strategy, and tactics of our opponents, as well as the strategy and the tactics we implement as a response are vital to victory.

The Article 8 Opt In Image

The Article 8 opt-in election adds an additional layer of complexity to the already labyrinthine rules governing perfection of security interests under the UCC. A lender that is unaware of the nuances created by the opt in (may find its security interest vulnerable to being primed by another party that has taken steps to perfect in a superior manner under the circumstances.

Removing Restrictive Covenants In New York Image

In Rockwell v. Despart, the New York Supreme Court, Third Department, recently revisited a recurring question: When may a landowner seek judicial removal of a covenant restricting use of her land?

Fresh Filings Image

Notable recent court filings in entertainment law.