Data Cross-Border Security Compliance and Practice Seminar and Data Protection Officer Greater Bay Area Salon Successfully Held
On March 2, co-hosted by the Next Generation Internet National Engineering Center and the Data Protection Officer (DPO) Salon, the “Data Cross-Border Security Compliance and Practice Seminar and The Data Protection Officer Greater Bay Area Salon was successfully held in Nansha, Guangzhou. Well-known experts and scholars in the field of data governance, policy formulation and support agencies, leaders of relevant departments in Guangdong, Hong Kong and Macao, and well-known experts from Douyin Group, Microsoft China, Zhongan Insurance, Procter & Gamble, etc. Heads of data security, technology governance and legal affairs from enterprises and multinational companies gathered in the Greater Bay Area to discuss domestic and overseas data governance laws, regulations and technical solutions, share data cross-border practice cases, and explore the path of cross-border data security compliance in the Greater Bay Area , explore the potential value of data, and work together to build an open ecosystem. The “Data Protection and Data Cross-Border Service Platform” was also officially released at the meeting.
Guangdong-Hong Kong-Macao data interoperability and rule convergence help the Greater Bay Area to open up at a high level
In the era of digital economy, the explosive growth of global data has released huge dividends of data elements. Hong Xiaodong, an expert from the China World Trade Organization Research Association and former director of the World Trade Organization Department of the Ministry of Commerce, pointed out in the seminar that at present, we have entered the era of digital economy led by technological innovation and the Internet revolution. There is a strong demand for environmental mobility. He said that exploring the rules for establishing data trust between Guangdong, Hong Kong and Macao, and promoting the efficient and convenient cross-border flow of data will help build the Greater Bay Area into an internationally competitive data industry cluster.
As one of the regions with the highest degree of openness and the strongest economic vitality in my country, the Guangdong-Hong Kong-Macao Greater Bay Area not only has the location characteristics of “one country, two systems and three jurisdictions”, but also has a large number of practical needs for cross-border data flow and the development potential of Unicom’s international data flow. In her speech, Wang Wenjing, director of the Bureau of Industry and Information Technology of Nansha District, said that the “Overall Plan for Deepening Guangdong-Hong Kong-Macao Comprehensive Cooperation for the World in Guangzhou Nansha” issued by the State Council in 2022 has given Nansha new missions and expectations. Free movement is an inevitable requirement for the comprehensive cooperation and development of Guangdong, Hong Kong and Macao, and it is also an important part of cooperating with Hong Kong and Macao to face the world and achieve a high level of opening up.
Liu Dong, Director of the Next Generation Internet National Engineering Center and Dean of the Next Generation Internet International Research Institute of the Macau University of Science and Technology, also said at the meeting that the Nansha plan clearly stated that “developing the digital industry and accelerating the innovation of the Next Generation Internet National Engineering Center in the Guangdong-Hong Kong-Macao Greater Bay Area Center construction, promote IPv6 industry application demonstration…accelerate the construction of Nansha (Guangdong, Hong Kong and Macao) data service pilot area”. The Guangdong-Hong Kong-Macao Greater Bay Area Innovation Center of the Next Generation Internet National Engineering Center is based on the Macau University of Science and Technology-Greater Bay Area Scientific Research Network and the practice of cross-border flow of scientific research data from Macau, China to the European Union, helping Guangdong, Hong Kong, and Macau to communicate with each other and connect the Greater Bay Area The data channel with the EU serves the construction of the Greater Bay Area.
“Three routes” for data export have been formed dataprotect withcombineregulationusher in a new era
On February 24, 2023, the Cyberspace Administration of China announced the “Standard Measures for Personal Information Outbound Contracts”. The Measures make specific institutional arrangements for carrying out personal information export activities through the conclusion of standard contracts, and implement the provisions of Article 38, Paragraph 1, Item 3 of the “Personal Information Protection Law” in detail. Following the release of the “Data Export Security Assessment Measures” and “Announcement on the Implementation of Personal Information Protection Certification”, the three data export routes of “security assessment, protection certification, and standard contract” have been fully released, and data protection and compliance ushered in a new era.
The continuous growth of data volume and the demand for frequent global data flow have brought about increasingly serious data security issues. Experts from relevant competent authorities pointed out at the meeting, “The data involves many important interests such as personal privacy, public interests, and national security. The disorderly flow may cause damage to the above interests. Therefore, the flow of data must follow the order and must be explored simultaneously. The digital economy governance system prevents and resolves the risks and challenges brought about by the cross-border flow of data.”
Yang Chongwei, director of the Macao Personal Data Protection Office, also shared the regulation of cross-border transmission of personal information from the perspective of Macao’s practice. Director Yang introduced in detail the current notification, filing and licensing system of personal information supervision in Macau, and from the perspective of supervision, he gave advice on how to improve compliance capabilities, Take the initiative to achieve data compliance and raise expectations.
Data Protection Officer (DPO) gathered together commonresearchEnterprise Data Consolidationregulation
Professor Hong Yanqing, a member of the National Security Standardization Committee and a member of the Guangdong Provincial Data Asset Registration Compliance Committee, as the sponsor of the Data Protection Officer (DPO) Salon, mentioned in his speech that as digital technology irreversibly enters all aspects, the data protection officer is facing With the increasingly complex environment and rules, laws and regulations on data security protection need to be translated into specific and operable measures, and each measure must be implemented in specific business scenarios. Zhang Renzhuo, CEO of Shangyin Technology, took the intelligent networked automobile industry as an example in his speech, and mentioned that to solve the problem of corporate data compliance, it is necessary to improve the technical and management capabilities of corporate data compliance.
During the roundtable forum, the meeting invited relevant persons in charge of data compliance and legal affairs from Douyin Group, Microsoft (China), Zhongan Insurance, Procter & Gamble, and Husky Petroleum, as well as professors from Beijing Institute of Technology. There were heated discussions on the specific challenges and corresponding countermeasures faced in the actual scenarios of compliance management. Experts at the meeting all mentioned the “trust” that plays a very critical role in dealing with data compliance issues, that is, enterprises need to achieve visualization and transparency of the data compliance process in management, so as to help enterprises themselves to achieve compliance while also Can better meet regulatory requirements. At the same time, when DPO handles the data compliance process, how to balance and communicate with the business side, effectively reduce the compliance cost of the business side, and better promote the overall compliance business work is also a very important issue.
Guided by rules and based on technology,“Data Protection and Data Cross-Border Service Platform” Officially Released
Data security compliance is not only a rule issue, but also a technical issue and a management issue. Director Liu Dong mentioned in his speech that data circulation is not difficult, but the difficulty lies in how to supervise and manage it. How to identify important data, how to classify and classify, and how to track data transmission paths all require the support of information technology. Based on technologies such as IPv6, privacy enhancement, and blockchain, and based on relevant laws and regulations, it can bring more innovation space for data security circulation, improve enterprise data security compliance capabilities, and support cross-border data flow management.
In this seminar, the “Data Protection and Data Cross-Border Service Platform” was officially released. Zhang Hanzhuo, deputy director of the Next Generation Internet National Engineering Center, said at the release ceremony that the platform has built and opened services such as personal information protection impact assessment, data export self-assessment, APP compliance self-inspection, etc., to assist enterprises in achieving data basic compliance and data governance. At the same time, through the form of “technology + service”, the service platform provides enterprises with targeted business compliance services including data classification, data inventory, risk management, etc., and helps enterprises build an effective path for data cross-border security compliance. The data protection and data cross-border service platform is expected to officially serve the outside world in the middle of this year.