Presentation by Control Risks:
The new cybersecurity law comes into force on June 1, 2017, which will concern a wide range of industries and leave many companies unsure about how the law will affect their business.
The new law mandates cybersecurity obligations and duties for network operators. Core provisions include defining critical information infrastructure (CII), mandating a national security review of CII cybersecurity systems and technology, and making rules to protect and localise personal and important data.
Carly Ramsey will brief on the operational implications of the new cybersecurity law and provide guidance on determining who/what is CII, which data needs to be localised and what steps you can take now to start mitigating these risks.
Presentation by Taylor Wessing:
The new PRC Cybersecurity Law will take its effect soon. Enactment of this law was already a controversial process which took a long time after 3 rounds of legislative review. This law reflects China’s increase concern over national security, which no question has a big impact on foreign companies’ operation in China. A widely discussed issue connected with this law is data local storage requirement.
Another issue of concern is the obligation of companies to cooperate with governmental agencies to facilitate invasive audit or investigation during law enforcement. Besides this law, there are more follow-up moves e.g. by the Ministry of Industry and Information Technology (MIIT) and the Cyberspace Administration of China (CAC) to be watched upon.
In this seminar, Michael Tan will discuss 1) a quick overview of the legislative picture including this new law and related ministerial moves; 2) practical issues and implications which concerns your operation in China; 3) best industrial practice and recommendations.