Today’s society yearns for more convenience, which naturally calls for more connectivity among devices to the Internet. Meanwhile, the need for cybersecurity has also increased.

Experts at the World IoT Security Summit 2018 – organized by TAAS Labs – commended China’s efforts in strengthening its Internet security landscape, but noted there is still huge room for improvement.
Continue Reading Law professionals say China sees development in cybersecurity

By Susan Ning, Wu Han and Zhao Yangdi King & Wood Mallesons’ Commercial & Regulatory group

With the proliferation of personal data protection legislation in different jurisdictions, the conflict between enterprises’ commercial behaviors and personal data protection are widely concerned by the law enforcement authorities around the world. Facebook, for example, with a recent spate of being punished for excessively collecting user’s personal data by using cookies and leaking data concerned over 50 million users, the superstar of open social platforms has suffered a severe losses on its stock market and reputation.
Continue Reading Data Compliance Series 1 — Reflections on the Facebook Incident

By Mark Schaub and Atticus Zhao King&Wood Mallesons’ Corporate & Securities group

In our modern, interconnected world hacking is an ever present danger. Hackers can break into systems to steal information, bank details, bring down targeted websites, access government websites and a variety of other fiendish acts.

Imagine though, if instead of targeting desktop computers, websites or even mobile phones … that such hackers could target cars.  We have tragically seen how cars can be used as weapons by terrorists.
Continue Reading Cybersecurity: Achilles’ Heel for Self-driving Cars?

By Xue Han, Liu Keer, Xue Yingyuan King & Wood Mallesons‘ Corporate & Securities group

Against the backdrop of cyber security law, Updated privacy policies, do they live up to the hype?

Quite a few major internet giants in mainland China, apparently encouraged by regulatory authorities, have put in considerable efforts in recent months to update their privacy policies. It appears that the relevant regulatory authorities have completed assessing the updated policies. These updated policies are likely to be viewed as having a certain effect in setting a precedent or benchmark for personal data compliance in mainland China.
Continue Reading Updated Privacy Policies, Do They Live up to the Hype?

By Susan Ning, Wu Han, Li Huihui , Zhang Lejian King & Wood Mallesons’ Commercial & Regulatory group

Over two months has passed since the Cyber Security Law of the People’s Republic of China (Cyber Security Law), a fundamental law in cyber security, took effect. Such a short period of time saw numerous changes: in legislation, implementing regulations dealing with “personal information protection”, “security assessment of cross-border transfer of personal information and important data” and “protection of critical information infrastructure (CII)” are under formulation; in law enforcement, regulatory authorities are taking resolute efforts to implement the Cyber Security Law, with specialized law enforcement campaigns in various places. Meanwhile, conflicts among network operators arise among others, in relation to ownership of personal information and data owners. All circles of the society are focusing on development in regulations associated with the Cyber Security Law and in law enforcement.
Continue Reading Several“Must-knows” after the Cyber Security Law Took Effect

By Wang Rui, Xiao Yu, and Andrew Fuller, King & Wood Mallesons’ M&A Group


As early as 27 February 2014, President Xi Jinping, the head of the Office of the Central Leading Group for Cyberspace Affairs, said that “No cyber safety means no national security.”[1] On 1 July 2015, the National Security Law of the People’s Republic of China (《中华人民共和国国家安全法》)( NSL )[2] came into effect. For the first time, the NSL clearly provides that the state shall “safeguard sovereignty, security and development interests of cyberspace in the state.”[3]

Cyber security has become an increasingly prominent issue, and the Chinese government chosen to focus on several key areas of concern. First, illegal intrusions and attacks in cyberspace that seriously threaten China’s information infrastructure across all significant sectors. Second, increased illicit online activities that harm Chinese society, particularly in the areas of personal information theft and intellectual property misappropriation. Third, the increased use of China’s networks to promote terrorism, extremism, instigation, or subversion of the system, all of which threaten national security and the public interest.[4]
Continue Reading Cyber Security Draft Law Tightens Grip on China’s Network Security