The Equivalent of the Gdpr to Protect Personal Data

Seoftimran

PIPL, the equivalent of the GDPR in China, from November 1, 2021 The state-run Xinhua News Agency announces the adoption of a new law by the National People's Congress of China to protect the privacy of Internet users' data. This law is called the Personal Information Protection Law (PIPL). This is the first series of measures aimed at regulating the collection, processing and protection of data, within a single law. In the European Union, the General Data Protection Regulation was passed in April 2016. Two years later, the GDPR came into force – and the sanctions were not immediate. China is adopting a much tighter timetable: the vote took place today, the PIPL law will come into force on November 1, 2021. Companies therefore have about two months to comply.
  
Data security and minimization, lawful photo retouching service consent, DPO… One of the objectives of the PIPL law is to oblige companies to better secure the storage of personal data. It also enshrines the principle of data minimization, already at the heart of the GDPR: "the processing of personal information must have a clear and reasonable objective and must be limited to the minimum scope allowing the objectives of the data processing to be achieved" , indicates the Reuters agency . The rules to be followed to lawfully obtain the consent of Internet users for the processing of their data are specified. The PIPL law also refers to the transfer of data to third countries. Companies must designate a person responsible for data processing, such as the DPO in Europe,and carry out regular audits to check the robustness of the systems designed to ensure confidentiality. China tightens the noose around tech companies The vote and the promulgation of this law comes in a context of regulation of Chinese technology companies.

  

It imposes a well-defined framework on companies to manage data according to their economic value and “their relevance for national security” . Beijing has not hesitated to tackle its giants since the start of the year. Alibaba, a symbol of Chinese tech, was fined a hefty 2.3 billion euros for abuse of a dominant position.The government agency CAC (Cyberspace Administration of China) announced last month that an investigation was launched against Didi Global Inc. The road transport giant is suspected of violating the privacy of users. On Tuesday, another official body, SAMR, introduced new rules to bolster fair competition and banned fake online reviews. On Wednesday, a ministry accused 43 apps of illegally transferring user data overseas; these companies have until next Tuesday to comply.a ministry accused of 43 apps of illegally transferring user data overseas; these companies have until next Tuesday to comply.a ministry accused of 43 apps of illegally transferring user data overseas; these companies have until next Tuesday to comply.