March saw the UK Government recommence its efforts to reform the UK data regime by introducing the aptly named “Data Protection and Digital Information Bill (No.2)” to Parliament on 8 March 2023. The second draft bill supersedes the original version that was paused in September to allow ministers to rethink their approach and engage in … Read more

A company in China has the option of relying on (i) the standard contract (see our article) or (ii) certification to transfer personal information outside of China, if it is not subject to the mandatory Cyberspace Administration of China (CAC) security assessment. Certification is, therefore, an alternative data transfer mechanism to the standard contract under … Read more

In February 2023, the Cyberspace Administration of China (CAC) officially released its long-awaited, final version of the Standard Contract for the outbound cross-border transfer of personal data. This is one of three permitted mechanisms for transferring personal data outside of China and is expected to be the most frequently used. Read more

The report is long-awaited, and the reforms it canvasses are increasingly critical to the way businesses run and operate in a digital economy. We have seen evidence of this in Australia with large scale cyber-attacks affecting personal information held by businesses and government. The Report puts forward 116 proposals for reforming the Privacy Act. A … Read more