On 3 January 2025, the Cyberspace Administration of China (CAC) opened a public consultation on the measures for the certification of outbound personal information protection until 3 February 2025. The measures aim to standardise certification processes for outbound data transfers and ensure safe cross-border data flow. The measures apply to personal information processors within China, particularly those transferring data overseas, and require them to obtain certification from professional bodies to confirm compliance with Chinese laws and the security of overseas recipients. The measures include continuous monitoring, dispute resolution mechanisms, and the possibility of revoking certification for non-compliance.
Original source