Cyberspace Administration of China, Measures for Security Assessments of the Transfer of Personal Information Overseas (Draft for Comments)

国家互联网信息办公室个人信息出境安全评估办法 (征求意见稿)

June 27, 2019 | BY

Susan Mok

A change in the legal environment of the personal data receiving country will trigger a new security assessment

Share:

Issued: June 13, 2019

Main contents: If a network operator is to transfer overseas personal information collected in the course of its operations in the People's Republic of China (Transfer Personal Information Overseas), it shall carry out a security assessment in accordance herewith. If it is determined through a security assessment that Transferring the Personal Information Overseas could have an impact on national security or prejudice the public interest, or that the security of the personal information cannot be effectively ensured, the information may not be transferred overseas (Article 2).

The contract or other legally effective document (hereinafter collectively referred to as a “Contract”) executed by the network operator and personal information receiver shall specify:

(1)