On 1 January 2025, the Network Data Security Management Regulation enters into force. The Regulation requires that one of the four conditions for cross-border data transfers is met. Furthermore, a data processor who intends to provide personal information outside the People's Republic of China, shall inform the individual of the name, contact information, processing purpose, processing method, type of personal information and the individual's exercise to the overseas data recipient. Additionally, the individual's consent shall be obtained.
Original source