China: Cyberspace Administration's Measures for Administration of Compliance Audits on Personal Information Protection including cross-border data transfer regulation enter into force

Cyberspace Administration's Measures for Administration of Compliance Audits on Personal Information Protection including cross-border data transfer regulation enter into force

On 1 May 2025, the Cyberspace Administration of China (CAC)’s Measures for the Administration of Compliance Audits on Personal Information Protection enter into force. The measures establish a framework for auditing personal information processing a…

Scope

Policy Area

Data governance

Policy Instrument

Cross-border data transfer regulation

Regulated Economic Activity

cross-cutting

Implementation Level

national

Government Branch

executive

Government Body

other regulatory body

Complete timeline of this policy change

Hide details

2023-08-03

in consultation

On 3 August 2023, the Cyberspace Administration of China (CAC) opened a consultation on the draft A…

2023-09-02

processing consultation

On 2 September 2023, the Cyberspace Administration of China (CAC) closed its consultation on the dr…

2024-05-20

adopted

On 20 May 2024, the Cyberspace Administration of China (CAC) adopted the Measures for the Administr…

2025-02-12

in grace period

On 12 February 2025, the Cyberspace Administration of China (CAC) released the Measures for the Adm…

2025-05-01

in force

On 1 May 2025, the Cyberspace Administration of China (CAC)’s Measures for the Administration of Co…

Description

Cyberspace Administration's Measures for Administration of Compliance Audits on Personal Information Protection including cross-border data transfer regulation enter into force

Scope

Complete timeline of this policy change