文章预览
如您希望下载全文PDF版本,请点击文末“ 阅读原文 ”获取。 Compliance audits for personal information protection have drawn great attention in China for a while. Back to 1 November 2021, the Personal Information Protection Law of the People's Republic of China (the " PIPL ") explicitly requires for the first time at the legislation level that personal information processing activities shall undergo regular compliance audits. The personal information protection compliance audit (" PIPCA ") has since become a statutory obligation for personal information processors (" PI processors ") subject to the PIPL. The PIPCA requirement is also reiterated in the Cyber Data Security Management Regulations which was implemented on 1 January 2025. On 14 February 2025, the Cyberspace Administration of China (CAC) officially issued the Administrative Measures for the Personal Information Protection Compliance Audit (the " PIPCA Measures "), which will become effective
………………………………
