China Passes Personal Information Protection Law 

(Photo Source: Unsplash)

 

The Chinese government has passed the Personal Information Protection Law (PIPL) set to take effect on November 1. The law mirrors many of the provisions in the  European Union’s General Data Protection Regulation (GDPR) and will possess extraterritorial jurisdiction. 

 

The law requires companies to obtain the consent of its users to process their data. Users are allowed options over how their information is used and will be able to determine the ability to be targeted for marketing purposes. Data processors must also obtain consent to process sensitive personal data such as  biometrics, medical and health data, financial information and location data. 

 

Source: 

 

Natasha Lomas, China passes data protection law, TechCrunch, Aug. 20, 2021, at https://techcrunch.com/2021/08/20/china-passes-data-protection-law/.