techUK joins global industry letter on China Standard Contract Provisions
techUK, together with several other organization from different regions, co-signed a letter on China’s Standard Contract Provisions for the Exit of Personal Information (“Standard Contract Provisions”).
We believe it is important that the Cyberspace Administration of China’s (“CAC”) design the standard contract provisions to be a valid and effective transfer mechanism under the Personal Information Protection Law (“PIPL”). As designed, we are concerned that the proposed framework may be unworkable in practice for many Chinese and foreign entities.
On 30 June 2022, the Cyberspace Administration of China ('CAC') released the Standard Contract Provisions for the Export of Personal Information (Draft for Comment) ('the Draft Standard Contract Provisions'). The Draft Standard Contract Provisions contain a standard contract akin to Standard Contractual Clauses ('SCCs') and establish requirements for personal information processors as well as overseas recipients, notably the obligation to carry out Data Protection Impact Assessments ('DPIAs'). China’s Personal Data Protection Law (PIPL), often referred to as China’s GDPR, officially came into force on 1 November. The PIPL is a comprehensive data protection law, regulating the way in which personal data is stored, handled and processed. Learn more about PILP here.
If organisations are restricted in their ability to lawfully transfer data across borders, they may be unable to enter new markets, reach potential customers and deliver their offerings to consumers, which can hold back innovation and consumers' access to new technologies and services. You can read more about why international data transfers matter in techUK’s insight.
techUK joins other organizations in submitting that the draft Standard Contract Provisions should:
- not impose greater restrictions on data transfers than necessary;
- afford equal treatment to Chinese and foreign enterprises, services, and technologies;
- and be administered in a uniform, impartial, and reasonable manner with a view to ensuring non-discriminatory and streamlined approvals.
We also believe that China’s Standard Contract Provisions should reflect international best practices, and should be revised for greater alignment and interoperability with standard contractual clauses (SCCs) under the EU General Data Protection Regulation (GDPR).
You can read the full industry association letter submitted to the Cyberspace Administration of China and our further observations below.
Latest News from
Be part of techUK’s local government’s Innovators Network04/10/2022 13:10:00
In May 2022 in collaboration with the Local Public Services Committee, techUK published a report making the case for enhanced digital innovation adoption across the UK’s local public services to improve citizens’ lives.
New ITU leadership team in place03/10/2022 14:05:00
Member states of the International Telecommunication Union (ITU) have elected Doreen Bogdan-Martin of the US as the organisation’s next secretary-general.
Join us for techUK’s Local Digital Capital Week 202230/09/2022 16:25:00
From 24 October to 28 October, we are highlighting the contributions made by the UK tech sector to improve the local and regional tech scene, playing a vital role in the levelling up agenda through innovation and engagement.
UK Government to review EU Retained law by 2023 through new Parliamentary Bill30/09/2022 14:38:00
The UK Government has announced the introduction of the Retained EU Law (Revocation and Reform) Bill to review EU legislation that still exists in the UK legal system.
EU Liability Directive on AI30/09/2022 11:25:00
The European Commission recently (28 September 2022) released its legislative proposal on AI liability, alongside a revised Product Liability Directive (PLD), aiming to bring the EU’s liability regime into the digital age.
New Retained EU Law Bill creates uncertainty for UK businesses29/09/2022 16:25:00
The UK Government has announced the introduction of a new Bill aimed at removing the retained EU legislation that exists in the UK legal system.
Report by The King’s Fund: “Interoperability is more than technology”29/09/2022 14:43:00
The King’s Fund’s latest report, Interoperability is more than technology: The role of culture and leadership in joined-up care, examines the long-standing challenges in overcoming silos and the culture issues that must be addressed.
Breaking down McKinsey's Report: Why digital trust truly matters29/09/2022 11:25:00
A recent McKinsey report has shared key findings relating to why digital trust matters for organisations.
Interoperability: the key to unlocking NHS data challenges28/09/2022 16:25:00
Integrated Care Systems (ICSs) are an essential ingredient of the NHS Long Term Plan, with England now served by 42 ICSs as of July 2022. The need to ensure that data flows readily and securely between central and regional organisations is vital.