注册    登录
关注
Py学习  »  Git

Digital Economy and Data Protection Newsletter(25.04)

TMT法律论坛 • 4 月前 • 167 次点击  

Click above|Follow us


Recently, in terms of data flow and outbound management, Hainan within the country released a negative list for data outbound, and multiple departments emphasized promoting compliant cross - border data flows of foreign - funded enterprises. Abroad, Saudi Arabia released guidelines for data outbound risk assessment, Malaysia publicly announced the Data Sharing Act, and Singapore solicited opinions on cloud service and data center guidelines. In the telecommunications and Internet sectors, the Ministry of Industry and Information Technology promoted the expansion of opening - up in the telecommunications industry. The National Cyberspace Administration, the National Computer Virus Emergency Response Center, and the cyberspace administrations and communications administrations in Shanghai, Zhejiang and other places continuously carried out App governance. Abroad, many countries continued to focus on network security and AI governance. The European Union launched a new cybersecurity blueprint, and the supplementary technical standards of the "Digital Operational Resilience Act" were made public. The EPRS released a report on algorithmic discrimination under the AI Act and the GDPR. The White House in the United States solicited feedback on the AI Action Plan, the ICO in the United Kingdom responded to the government's consultation on AI and copyright, and Japan released an updated version of the "AI Use and Development Contract Checklist", among others.


HOTSPOT

HOTSPOT



Hainan Cyberspace Administration released the "Hainan Free Trade Port Data Outbound Management List (Negative List) (2024 Edition)"


On February 20, 2025, following Beijing, Shanghai, Tianjin, and other regions, the Hainan Cyberspace Administration issued the Hainan Free Trade Port Data Export Management List (Negative List) (2024 Edition) (hereinafter referred to as the "Negative List"). Aligned with Hainan’s industrial characteristics, the Negative List implements categorized management for five key sectors: deep-sea (marine exploration and survey, environmental monitoring, communication and navigation), aerospace (satellite remote sensing and international cooperation), seed industry (full-chain coverage from germplasm resources to enterprise operations), tourism (entry/exit reason services, membership management on tourism platforms, tourism service management), and duty-free retail (identity verification at duty-free shops, customs clearance shopping, customer management). It has refined the management requirements for data export.


For more information, please click here.

Source: Hainan Cyberspace Administration 





Focusing on protecting the "right to delete personal information", the Shanghai Cyberspace Administration legally summoned a number of App operators


On February 26, 2025, the Shanghai Cyberspace Administration summoned operators of apps violating personal information rights after the State Cyberspace Administration’s notification identified over a dozen Shanghai-based apps failing to provide deletion or correction functions. The operators were ordered to immediately rectify issues, safeguard users’ right to delete personal information, and strengthen internal management. Shanghai will continue enforcement actions against repeat offenders.


For more information, please click here.

Source:  Shanghai Cyberspace Administration






The Ministry of Industry and Information Technology deeply promoted the opening - up of the telecommunications industry and issued operation pilot approvals to the first batch of 13 foreign - funded enterprises


Recently, the Ministry of Industry and Information Technology (MIIT) granted pilot licenses for value-added telecommunications services to 13 foreign enterprises in Beijing, Shanghai, Hainan, and Shenzhen. These include subsidiaries of major multinationals, enabling services like internet access and information provision. By the end of February 2025, China had over 2,400 foreign-invested telecom enterprises, up 30% year-on-year. MIIT will further expand openness to foster a higher-level open economy.


Source: Ministry of Industry and Information Technology






NEWSLETTER

NEWSLETTER


(Click on the source or copy the corresponding link to view the details)




LEGISLATION

  1. Hainan Cyberspace Administration released the "Hainan Free Trade Port Data Outbound Management List (Negative List) (2024 Edition)"

    Source: Hainan Cyberspace Administration


  2. The National Data Bureau and others released the "National Data Resources Statistical Investigation System"
    Source: National Data Bureau


  3. The Jiangsu Provincial Data Bureau publicly solicited opinions on the "Jiangsu Provincial Public Data Resources Registration Management Specification (Trial) (Draft for Soliciting Opinions)"
    Source: Jiangsu Provincial Data Bureau

    https://jszwb.jiangsu.gov.cn/module/web/idea/que_content.jsp?webid=47&appid=1&topicid=644&typeid=9


  4. The Shandong Provincial Big Data Bureau released the "Shandong Provincial Public Data Opening Work Rules"
    Source: Shandong Provincial Big Data Bureau

    http://bdb.shandong.gov.cn/art/2025/2/6/art_333974_72616.html


  5. The Fujian Provincial Data Management Bureau issued the "Notice on Carrying out the Census and Registration of Enterprise Data Resources in the Whole Province"
    Source: Fujian Development and Reform Commission


  6. The Chongqing Big Data Application Development Administration issued the "Announcement on Soliciting Public Data Application Scenarios from Market Entities"
    Source: Chongqing Big Data Application Development Administration


  7. The Beijing Municipal Market Supervision Bureau released a series of compliance guidelines for network trading platform operators' service agreements and trading rules, information disclosure and publicity, and management of prohibited and restricted goods
    Source: Beijing Municipal Market Supervision Bureau

    https://scjgj.beijing.gov.cn/zwxx/2024zcwj/202502/t20250213_4009331.html  



INDUSTRY TRENDS

  1. The Ministry of Industry and Information Technology deeply promoted the opening - up of the telecommunications industry and issued operation pilot approvals to the first batch of 13 foreign - funded enterprises

    Source: Ministry of Industry and Information Technology


  2. The Ministry of Commerce: Most of the data cross - border flow applications submitted by foreign - funded enterprises that have applied so far have been approved

    Source: The State Council

    https://www.gov.cn/xinwen/2025zccfh/3/index.htm


  3. The National Cyberspace Administration held a symposium on data cross - border flow policies for EU - based enterprises in China

    Source: Cyberspace Administration


  4. Cyberspace Administration: In 2024, 200 mobile applications were taken off the shelves and 40 mini - programs were disposed of

    Source: Cyberspace Administration


  5. The National Cyberspace Administration legally and centrally investigated and dealt with a number of illegal and irregular Apps that infringed on the rights and interests of personal information

    Source: Cyberspace Administration


  6. The Central Cyberspace Administration released the key points of the 2025 "Qinglang" series of special actions

    Source: Cyberspace Administration


  7. The National Computer Virus Emergency Response Center reported a mobile virus imitating DeepSeek and 14 non - compliant Apps

    Source: National Computer Virus Emergency Response Center

    https://www.cverc.org.cn/zxdt/report20250217.htm


  8. Focusing on protecting the "right to delete personal information", the Shanghai Cyberspace Administration legally summoned a number of App operators

    Source: Shanghai Cyberspace Administration


  9. The Zhejiang Provincial Communications Administration reported 2 Apps with behaviors that infringed on users' rights and interests (the first batch in 2025)

    Source: Zhejiang Provincial Communications Administration


  10. The Guangzhou Intellectual Property Court released the "Top 100 Cases in Ten Years (2014 - 2024)"

    Source: Guangzhou Intellectual Property Court


  11. The Shanghai Cyberspace Administration released an announcement on the filing information of generative artificial intelligence services (February 22)

    Source: Shanghai Cyberspace Administration


  12. The Ordos Cyberspace Administration held network security talks with two units

    Source: Ordos Cyberspace Administration


  13. The Chongqing Cyberspace Administration imposed administrative penalties on a certain technology company with network data security violations

    Source: Chongqing Cyberspace Administration



OVERSEAS

  1. United States:

    1. The White House solicited public feedback on the AI Action Plan
      Source: The White House
      https://www.whitehouse.gov/briefings-statements/2025/02/public-comment-invited-on-artificial-intelligence-action-plan/


    2. The US House of Representatives Energy and Commerce Committee issued a request for information to collect feedback on the development of federal privacy and security laws
      Source: US House of Representatives Energy and Commerce Committee
      https://energycommerce.house.gov/posts/chairman-guthrie-and-vice-chairman-joyce-issue-request-for-information-to-explore-data-privacy-and-security-framework


    3. The US Securities and Exchange Commission established a new department to combat misconduct in the fields of the Internet and emerging technologies
      Source: US Securities and Exchange Commission
      https://www.sec.gov/newsroom/press-releases/2025-42


    4. The FTC required Avast to pay a fine and stop selling browsing data for advertising purposes without consent
      Source: FTC
      https://www.ftc.gov/enforcement/refunds/avast-settlement


    5. California: The CPPA released the 2024 Annual Report
      Source: CPPA
      https://cppa.ca.gov/pdf/2024_annual_report.pdf


    6. Virginia: The Consumer Data Protection Act passed in both houses
      Source: Virginia General Assembly
      https://legiscan.com/VA/bill/SB854/2025


    7. Virginia: A bill on AI - based tools in criminal justice passed in both houses
      Source: Virginia General Assembly
      https://legiscan.com/VA/bill/HB1642/2025


    8. Virginia: A bill restricting the sharing of reproductive health data passed
      Source: Virginia General Assembly
      https://legiscan.com/VA/bill/SB754/2025


    9. Arkansas: The AG sued General Motors, accusing it of illegally collecting and selling drivers' private data
      Source: Arkansas AG

      https://arkansasag.gov/news-release/attorney-general-griffin-sues-general-motors-and-onstar-for-deceiving-arkansans-and-unlawfully-selling-data/


  2. European Union:

    1. The European Commission launched a new cybersecurity blueprint
      Source: European Commission
      https://digital-strategy.ec.europa.eu/en/news/commission-launches-new-cybersecurity-blueprint-enhance-eu-cyber-crisis-coordination


    2. The Official Journal published the supplementary technical standards of the "Digital Operational Resilience Act"
      Source: Official Journal
      https://eur-lex.europa.eu/eli/reg_del/2025/301/oj/eng


    3. The EPRS released a report on algorithmic discrimination under the AI Act and the GDPR
      Source: EPRS
      https://www.europarl.europa.eu/RegData/etudes/ATAG/2025/769509/EPRS_ATA(2025)769509_EN.pdf


    4. The Court of Justice of the European Union: Google's refusal to allow third - party app access constitutes an abuse of its dominant market position
      Source: Court of Justice of the European Union
      https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:62023CJ0233_RES


    5. The Court of Justice of the European Union clarified the access rights to logical information used in analysis
      Source: Court of Justice of the European Union
      https://curia.europa.eu/juris/showPdf.jsf?docid=64559&doclang=EN


    6. The Court of Justice of the European Union clarified the definition of the status of data controllers
      Source: Court of Justice of the European Union
      https://curia.europa.eu/juris/document/document.jsf?text=&docid=295847&pageIndex=0&doclang=EN&mode=lst&dir=&occ=first&part=1&cid=15582938


    7. Members of the European Parliament approved the draft agreement on the transfer and processing of Passenger Name Record (PNR) data between the EU and Canada

      Source: European Parliament

      https://oeil.secure.europarl.europa.eu/oeil/en/procedure-file?reference=2024/0051(NLE)#gateway


  3. United Kingdom: The ICO released its response to the government's consultation on AI and copyright

    Source: ICO
    https://ico.org.uk/about-the-ico/consultations/uk-governments-consultation-on-copyright-and-artificial-intelligence/


  4. Ireland: The DPC submitted a draft decision on TikTok data transfer and GDPR compliance to EU authorities
    Source: DPC

    https://www.dataprotection.ie/en/news-media/latest-news/irish-data-protection-commission-submits-article-60-draft-decision-inquiry-tiktok


  5. France: The CNIL announced the priorities for intelligent connected vehicles in 2025
    Source: CNIL

    https://www.cnil.fr/fr/club-conformite-vehicules-connectes-programme-de-travail-2025-cnil


  6. Italy: The IVASS issued an industry letter on compliance with the "Digital Operational Resilience Act"
    Source: IVASS

    https://www.ivass.it/normativa/nazionale/secondaria-ivass/lettere/2025/lm-14-02-2025/index.html?com.dotmarketing.htmlpage.language=3


  7. Greece: The HDPA issued an opinion on the personal number on identity cards
    Source: HDPA

    https://www.dpa.gr/el/enimerwtiko/prakseisArxis/gnomodotisi-gia-tin-anagrafi-toy-prosopikoy-arithmoy-sto-deltio


  8. Netherlands: The AP publicly solicited opinions on risk assessment related to the use of AI systems for criminal purposes
    Source: AP

    https://www.autoriteitpersoonsgegevens.nl/en/themes/algorithms-ai/eu-ai-act


  9. Poland:

    1. The Ministry of Digitalization released a draft to protect minors from harmful online information and solicited public opinions
      Source: Ministry of Digitalization
      https://www.gov.pl/web/cyfryzacja/rozpoczecie-konsultacji-publicznych-projektu-ustawy-o-ochronie-maloletnich-przed-dostepem-do-tresci-szkodliwych-w-internecie


    2. The UODO requested clarification on video surveillance in medical facilities

      Source: UODO

      https://uodo.gov.pl/pl/138/3560


  10. Switzerland: The FDPIC released an English - language Cookie Guide
    Source: FDPIC

    https://www.edoeb.admin.ch/en/guidelines-on-data-processing-using-cookies


  11. Norway: The Datatilsynet released information on the transfer of personal data to the United States
    Source: Datatilsynet

    https://www.datatilsynet.no/aktuelt/aktuelle-nyheter-2025/informasjon-om-overforinger-til-usa/


  12. Finland: The Traficom released the 2024 Annual Report on the DSA
    Source: Traficom

    https://www.traficom.fi/sites/default/files/media/file/EN_Verkkotunnusten%20moderointiraportti2024.pdf


  13. Latvia:

    1. The DVI developed guidelines for data protection impact assessment (NIDA)
      Source: DVI
      https://www.dvi.gov.lv/lv/jaunums/izstradatas-vadlinijas-nida-veiksanai


    2. The DVI released its views on compliance gaps in privacy policies
      Source: DVI
      https://www.dvi.gov.lv/lv/jaunums/dviskaidro-kadas-nepilnibas-visbiezak-noverojam-privatuma-politikas


    3. The DVI released guidelines on publishing photos of criminal suspects

      Source: DVI

      https://www.dvi.gov.lv/lv/jaunums/dviskaidro-vai-drikst-publicet-iespejama-likumparkapeja-fotoattelu-lai-so-cilveku-atrastu


  14. South Korea:

    1. The "Amendment to the Personal Information Protection Law" was passed, strengthening the domestic agency system for overseas operations
      Source: PIPC
       https://www.pipc.go.kr/np/cop/bbs/selectBoardArticle.do?bbsId=BS074&mCode=C020010000&nttId=11017


    2. South Korea took DeepSeek off the shelves and confirmed that DeepSeek shared user data with ByteDance

      Source: KBS

      https://world.kbs.co.kr/service/news_view.htm?lang=c&Seq_Code=84980


  15. Japan: The Ministry of Economy, Trade and Industry (METI) of Japan released an updated version of the "AI Use and Development Contract Checklist"
    Source: METI

    https://www.meti.go.jp/press/2024/02/20250218003/20250218003.html


  16. Malaysia:

    1. The Data Sharing Act was published in the Official Gazette
      Source: Official Gazette
      https://lom.agc.gov.my/ilims/upload/portal/akta/outputaktap/2687068_BI/Act%20864%20-%20DATA%20SHARING%20ACT%202025.pdf


    2. The PDP released guidelines on the appointment of DPOs and data breach notifications

      Source: PDP

      https://www.pdp.gov.my/ppdpv1/en/slaid-circular-on-the-appointment-of-data-protection-and-data-breach-notification-following-amendments-to-the-personal-data-protection-act-2010/


  17. Singapore: The IMDA solicited opinions on cloud service and data center guidelines
    Source: IMDA

    https://www.imda.gov.sg/resources/press-releases-factsheets-and-speeches/press-releases/2025/advisory-guidelines-of-cloud-services-and-data-centres


  18. Saudi Arabia: The SDAIA released guidelines for transfer risk assessment
    Source: SDAIA

    https://dgp.sdaia.gov.sa/wps/wcm/connect/16aec46f-ea3d-47f6-8e0d-e49ffa2349d5/Risk+Assessment+Guideline+for+Transferring+Personal+Data+Outside+the+Kingdom.pdf?MOD=AJPERES


  19. Israel: The PPA solicited opinions on the draft opinion related to consent
    Source: PPA

    https://www.gov.il/he/pages/guide_privacy_technologies2


  20. Sri Lanka: The Ministry of Digital Economy announced the approval of the amendment to the PDPA
    Source: Ministry of Digital Economy

    https://mode.gov.lk/blog/pdpa-media-release


Note

本文由Gen AI翻译,仅供参考。

Translated by Gen AI service. For reference only.


本期编辑:吴佳蔚 陈煜烺 林婉琪 张丽

Python社区是高质量的Python/Django开发社区
本文地址:http://www.python88.com/topic/179662
Reply
 
167 次点击  
登录后回复
关于  
Py学习 - 专注于Python技术发展的社区(原Django社区)
沪ICP备11025650号