Description

Opened consultation on CAC measures for certification of outbound personal information protection

On 3 January 2025, the Cyberspace Administration of China (CAC) opened a public consultation on the measures for the certification of outbound personal information protection until 3 February 2025. The measures aim to standardise certification processes for outbound data transfers and ensure safe cross-border data flow. The measures apply to personal information processors within China, particularly those transferring data overseas, and require them to obtain certification from professional bodies to confirm compliance with Chinese laws and the security of overseas recipients. The measures include continuous monitoring, dispute resolution mechanisms, and the possibility of revoking certification for non-compliance.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cross-border data transfer regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body

Complete timeline of this policy change

Hide details
2025-01-03
in consultation

On 3 January 2025, the Cyberspace Administration of China (CAC) opened a public consultation on the…

2025-02-03
processing consultation

On 3 February 2025, the Cyberspace Administration of China (CAC) closes a public consultation on th…