Conducting cybersecurity red-flag investigations to review the compliance of the group entities in China to (i) provide a better understanding of the specificities of the China Cyber Security Law and MLPS, (ii) assessing the risk of non-compliance and (iii) identifying the gaps with applicable regulations, as the case may be legal options to store and transfer Chinese collected data off or in-shore the PRC according to PRC regulations.
We have proposed a risk matrix, checklist of verifications and implementation guidelines.
We have assisted retail groups under investigations from Cyber police to prepare their control with Chinese authorities and to handle their compliance programs with the applicable cyberlaw-related regulations.