Commerce Unveils AI Chip Curbs, CV Rule Finalized, and Trump Cabinet Picks Signal Tough China Policy
The undersigned organizations, representing companies with business activities or interest in China and other global markets, respectfully submit this letter regarding the draft Security Assessment Measures for Cross-border Transfer of Data (“Data Transfer Assessment Measures”). At the outset, we would like to express our support for the Cyberspace Administration of China’s (“CAC”) efforts to provide clear guidance relating to the data transfer assessments that are referenced in the Cybersecurity Law (“CSL”), the Data Security Law (“DSL”), and the Personal Information Protection Law (“PIPL”), as well as several subsidiary regulations.
The ability to transfer data securely across transnational digital networks is of central importance to the national policy objectives of many countries, including China. Data transfers support COVID-19 recovery, digital connectivity, cybersecurity, fraud prevention, anti-money laundering, and other activities relating to the protection of health, privacy, security, and regulatory compliance.
This ability also supports shared economic prosperity. Cross-border access to marketplaces, purchasers, suppliers, and other commercial partners allow Chinese enterprises in all sectors to engage in mutually beneficial international transactions with foreign enterprises. Data transfers, which are critical at every stage of the value chain for companies of all sizes, support global supply chains and promote productivity, safety, and environmental responsibility.
This ability also supports innovation and transnational research and development (R&D), as well as intellectual property protection and enforcement. Scientific and technological progress require the exchange of information and ideas across borders: As the WTO has stated, “for data to flourish as an input to innovation, it benefits from flowing as freely as possible, given necessary privacy protection policies.”
To avoid prejudicing these priorities, we respectfully submit that the draft Data Transfer Assessment Measures should: (1) not impose greater restrictions on data transfers than necessary; (2) afford equal treatment to Chinese and foreign enterprises, services, and technologies; and (3) be administered in a uniform, impartial, and reasonable manner with a view to ensuring non-discriminatory and streamlined approvals. Additionally, we make the following observations:
Given the potential consequences for China’s economy and its international economic relations, we also respectfully request that CAC build in more time for robust consultations with the relevant stakeholders and a meaningful implementation period. This not only helps CAC and industry better understand each other’s concerns; it would also allow the industry to put in place adequate processes and procedures to comply with the Draft Measures.
We are grateful for the opportunity to share these perspectives and we look forward to continued engagement with CAC on these matters.
Sincerely yours,