China: Adopted Cybersecurity Law including cybersecurity provisions

On 7 November 2016, the Standing Committee of the National People's Congress of the People's Republic of China adopted the Cybersecurity Law, which contains extensive cybersecurity regulations for those building, operating, maintaining, and using networks, as well as rules on cybersecurity supervision by the state. According to the Bill, the operators of critical information infrastructure are required to store citizens’ personal information and other important data within the country. If such data has to be transferred overseas, the Bill requires a security assessment in accordance with extant regulations. The Cybersecurity Law will enter into effect on 1 June 2017.