[Hybrid Workshop] Cybersecurity, Data, and Personal Information Compliance for EU SMEs in China
Data security and cross-border transfers of data are essential for of business activities and encourage innovation. Companies constantly use data generated from R&D or collected from customers in different locations to improve their products or develop new ones, often relying on teams based across the world.
Over the past years, China has considerably strengthened cybersecurity, data, and personal information protection governance. In 2017, the Cybersecurity Law (CSL) came to force outlining various obligations to network operators and internet service providers. In 2021, the CSL was complemented by Data Security Law (DSL) and the Personal Information Protection Law (PIPL), stipulating a series of obligations not only for actors based in China but also for those based elsewhere yet processing data or personal information generated in China. When doing business in China, SMEs need to be aware of the regulations they must follow to be compliant with cybersecurity and data protection system.