data privacy laws
play

DATA PRIVACY LAWS Asia Update EP&B Webinar Series 1 Welcome - PowerPoint PPT Presentation

Nov 23, 2023 •13 likes •413 views

CURRENTLY SPEAKING DATA PRIVACY LAWS Asia Update EP&B Webinar Series 1 Welcome Welcome CURRENTLY SPEAKING You are on mute A link to a recording of the webinar will be available We can take questions by using the chat function,

  1. CURRENTLY SPEAKING DATA PRIVACY LAWS Asia Update EP&B Webinar Series 1

  2. Welcome Welcome CURRENTLY SPEAKING  You are on mute  A link to a recording of the webinar will be available  We can take questions by using the chat function, we will respond to your questions by email after the Scott Thiel Partner webinar Bridging Borders Webinar Series 2

  3. Speakers CURRENTLY SPEAKING Hong Kong Australia Peter Jones Scott Thiel Partner, Sydney Partner, Hong Kong Scott Thiel Partner EP&B Webinar Series 3

  4. Agenda Welcome CURRENTLY SPEAKING 1. Current threat environment 2. Regulatory frameworks of countries in the Asia Pacific region Scott Thiel Partner 3. Key challenges and practical issues for multinational business 4. Asia Pacfic enforcement conclusions Bridging Borders Webinar Series 4

  5. Current Threat Environment Welcome CURRENTLY SPEAKING  High profile examples of data breaches  2011 - Sony's PlayStation Network attack  2013 - Breach of information held by Adobe and theft of Acrobat source code Scott Thiel Partner  Data security is a concern in many countries in the Asia-Pacific region, e.g.:  2013 - Online accounts of staff and students of the University of Hong Kong have been attacked by hackers Peter Jones  2014 - PayPal flaw discovered by tests Partner  2014 - BIGGEST-ever breach of private security in South Korea Bridging Borders Webinar Series 5

  6. Welcome Current Threat Environment  Asia Pacific as a region is 2 times more likely to be targeted! CURRENTLY SPEAKING  According to the FireEye Blog, the TOP 10 most targeted countries in Asia in 2013 are: 1. South Korea Peter Jones Partner 2. Japan 3. Taiwan 4. Thailand 5. Hong Kong 6. The Philippines 7. India 8. Australia 9. Pakistan 10. Singapore Bridging Borders Webinar Series 6 6

  7. Welcome Current Threat Environment  Data Breaches exposed weak defences of organisations in the Asia CURRENTLY SPEAKING Pacific region  Data Breaches may have a Global Impact Peter Jones Partner  Companies, banks, governments, etc. are all trying to bolster data security  Asia Pacific countries are fighting back! Bridging Borders Webinar Series 7

  8. Current Threat Environment - Welcome Strategic Importance CURRENTLY SPEAKING Diverse and evolving legal and regulatory landscape Exponential growth of information Peter Jones Partner Growing protection challenge Corporate requirements and privacy collide Data and information breaches/disputes - High cost of mistakes Bridging Borders Webinar Series 8

  9. Asian Data Privacy Regimes At-A-Glance Welcome Before (2011) At 2014 CURRENTLY SPEAKING Scott Thiel Partner Bridging Borders Webinar Series 9

  10. Data Protection: Regional temp CURRENTLY SPEAKING Asia-Pac region – a rapidly maturing DP landscape • New laws – Malaysia, Philippines, Singapore • Recent laws – South Korea • Updates - Australia, Hong Kong, Taiwan, Vietnam Peter Jones Partner • Update scheduled - Indonesia • Major changes expected – PRC, India (Justice (Shah's report*) 10

  11. Welcome Data Protection: Regional temp CURRENTLY SPEAKING Jurisdiction DP Law? Collection Transfer Criminal / Fines / Prison? Overall DP Restrictions Restrictions Admin Liability Risk Level Australia China Hong Kong Peter Jones Partner Indonesia Korea New Zealand Philippines Singapore Taiwan Thailand Vietnam Bridging Borders Webinar Series 11

  12. Welcome But the devil is in the detail CURRENTLY SPEAKING Direct Marketing Industry v Omnibus Laws Regulator Powers - Hong Kong focus - China, Thailand, India - Broad, HK, Sing, Malaysia - DNC – Aus, Singapore - Singapore/Malaysia - Recommend – Philippines - Overlapping – SK Scott Thiel Partner Third Party Correction Breach Notification Obligation Data Protection - No: India, HK - Sing and Malaysia position in Asia Pac - Yes: Indonesia, Taiwan, SK Offences: max. jail terms - HK – 5 years - Sing – 2 years - Malaysia – 3 years Scope of Application of Laws - Holistic – HK, SK, Aus, Taiwan Territorial Scope - Public sector exclusion – Sing, Malaysia Extra-terr. approach of Sing, Malaysia - Sector exemption – Philippines Bridging Borders Webinar Series 12 12

  13. Welcome A Brief Survey: China CURRENTLY SPEAKING Current Legal Regime: Combination of various non-DP specific laws (criminal law, civil law, tort law, constitution) with limited legal effect Major Recent Developments: • Decision of the Standing Committee of the National People's Congress for Enhancing the protection of Internet based Scott Thiel Partner Information: – • Applies to "Internet service providers and other enterprises or public institutions" • Enshrines principle of legality, legitimacy and necessity • Need to specify the purpose, manner and extent information collection • Obtain the consent of the target persons • Take technical and any other necessary measures to protect the security of personal information • Data correction obligations • Meaningful sanctions Bridging Borders Webinar Series 13

  14. A Brief Survey: China Welcome CURRENTLY SPEAKING Major Recent Developments: • Information Security Technology - Guide for Personal Information Protection within Public and Commercial Information Systems published on 1 February 2013 • Issued by the MIIT Scott Thiel • Applies to private sector use of "information Systems" Partner • Not Legally Binding however…… • Prohibits extraterritorial transfer without express consent • Imposes security obligations • Chinese Supreme People's Court has recently released the Provisions of the Supreme People's Court on Issues Concerning the Application of Law in Hearing Civil Dispute Cases Involving the Infringement of Personal Rights and Interests through the Internet Bridging Borders Webinar Series 14

  15. Welcome A Brief Survey: Hong Kong CURRENTLY SPEAKING Regime Personal Data (Privacy) Ordinance ("PDPO")  Registration No requirement O  Collection & Notification + Consent (for new purpose) of Data Subject O  Processing New Consent requirements for direct marketing commence 1 April 2013 Scott Thiel Partner  Transfer Currently no restriction O  Changes on the way  Security All practicable steps to protect personal data O  Where 3 rd party processor is engaged  contractual / other means required for security and period of retention  Breach No requirement O Notification  DP Officer No requirement O Bridging Borders Webinar Series 15

  16. Welcome A Brief Survey: Hong Kong CURRENTLY SPEAKING Regime Personal Data (Privacy) Ordinance ("PDPO")  Enforcement O Enforcement notices with criminal consequences for non- compliance  Sanction O Fines, criminal convictions and jail sentences Scott Thiel Partner  Redress O Private Civil Proceedings  Marketing O Notification  Activities Statement of gain  Free opt-out channel  Consent from Data Subject  Online O PDPO also applies to online processing  Privacy Cookies – use and effect of non-compliance communicated to Data Subject Bridging Borders Webinar Series 16

  17. A Brief Survey: Hong Kong - Aegon Welcome Direct … CURRENTLY SPEAKING  "If the contraventions shown in this case were committed today, the corporate data user at fault would be held criminally liable to a fine and imprisonment …." Scott Thiel Partner Alan Chiang – Privacy Commissioner Bridging Borders Webinar Series 17

  18. A Brief Survey: Indonesia Welcome CURRENTLY SPEAKING Regime Law No. 11 of 2008 regarding Electronic Information and Transaction and Government Regulation No. 82 of 2012 regarding Provision of Electronic System and Transaction Registration No requirement O  Collection & Consent / other conditions met O  Processing Data center – more heavily regulated Peter Jones Partner Transfer Data user required to explain control and possession of O transmitted information  Security Data user guarantees protection of personal information O  Telecom service provider responsible for data storage  Breach Required in writing - failure to protect personal data O  Notification Report to authority - failure/ disturbance of protection system DP Officer O No requirement Bridging Borders Webinar Series 18

  19. A Brief Survey: Indonesia Welcome CURRENTLY SPEAKING Regime Law No. 11 of 2008 regarding Electronic Information and Transaction and Government Regulation No. 82 of 2012 regarding Provision of Electronic System and Transaction Enforcement Imposed under various regulations O  & Sanctions Imprisonment and fines  Administrative sanctions (e.g. warning and fines) Peter Jones  Cancellation of approval/ registration Partner  Redress Private Civil Proceedings O  Marketing No specific regulations O  Activities Mostly protected by IP laws  Online No specific regulations O  Privacy Obtain cookies/ location data by unlawful access – imprisonment and fine Bridging Borders Webinar Series 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Government and Big Data: Privacy Risks and Solutions Ontarios Access and Privacy Laws The

Government and Big Data: Privacy Risks and Solutions Ontarios Access and Privacy Laws The

Brian Beamish Information and Privacy Commissioner of Ontario January 26, 2017 Government and Big Data: Privacy Risks and Solutions Ontarios Access and Privacy Laws The Freedom of Information and Protection of Privacy Act (FIPPA) o

356 views • 17 slides
Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR

Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR

Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0 Privacy Legislation - History 1950 Art. 8 ECHR: Everyone has the right to respect for his private and family

413 views • 4 slides
PRIVACY POLICY IN INDONESIA AND MALAYSIA: FROM DIGITAL ECONOMY TO PERSONAL DATA PROTECTION LAWS

PRIVACY POLICY IN INDONESIA AND MALAYSIA: FROM DIGITAL ECONOMY TO PERSONAL DATA PROTECTION LAWS

PRIVACY POLICY IN INDONESIA AND MALAYSIA: FROM DIGITAL ECONOMY TO PERSONAL DATA PROTECTION LAWS The 3 rd Asia Privacy Bridge Forum @Seoul 27-06-2017 Dr. Sonny Zulhuda Civil Law Department Ahmad Ibrahim Kulliyyah of Laws International Islamic

188 views • 15 slides
Conclusion Announcements Society Privacy Policies and Laws 4 Privacy Policies and Laws Mark

Conclusion Announcements Society Privacy Policies and Laws 4 Privacy Policies and Laws Mark

Conclusion Announcements Society Privacy Policies and Laws 4 Privacy Policies and Laws Mark Zuckerberg in San Francisco, January 8, 2010 "People have really gotten comfortable not only sharing more information and different kinds, but

352 views • 21 slides
Data Privacy Compliance in Global Transactions: Navigating Complex Data Protection Laws in U.S.,

Data Privacy Compliance in Global Transactions: Navigating Complex Data Protection Laws in U.S.,

Presenting a live 90-minute webinar with interactive Q&A Data Privacy Compliance in Global Transactions: Navigating Complex Data Protection Laws in U.S., Europe and Asia WEDNESDAY, MARCH 5, 2014 1pm Eastern | 12pm Central | 11am

524 views • 41 slides
Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data

Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data

Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data Management Panel, TdW Conference Max Mhlhuser Technische Universitt Darmstadt Information Self-Determination EU Charter of fundamental rights:

251 views • 7 slides
on the NEW European Data Privacy Laws Debrah Harding Managing Director MRS Topics for today

on the NEW European Data Privacy Laws Debrah Harding Managing Director MRS Topics for today

APRC Conference 2017 The 20 Million Data Question: an Update on the NEW European Data Privacy Laws Debrah Harding Managing Director MRS Topics for today Overview 10 Key elements of the General Data Protection Regulation (GDPR) 10

419 views • 18 slides
Architecture Principles for Data Privacy of Cloud-based Medical Device Services Dr. Andrzej J.

Architecture Principles for Data Privacy of Cloud-based Medical Device Services Dr. Andrzej J.

Architecture Principles for Data Privacy of Cloud-based Medical Device Services Dr. Andrzej J. Knafel Data Protection Laws Architecture for Selected Technical Controls of Data Privacy Conclusions Data Protection Overview of laws and controls

411 views • 22 slides
CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies US Privacy Laws Sources: Baase: A Gift of Fire and Quinn: Ethics for the Information Age Ethics Spring 2010 Privacy 1 Privacy The original

725 views • 45 slides
Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No privacy breaches! Public Data Anonymization Data representation? Privacy breach? Value of data? Data publisher Privacy Analyst Work by: Elena

80 views • 3 slides
EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

28/05/15 Outline Data privacy and the evolving regulation Privacy threats from LBS to geoSN EveryWare Lab Main (location) privacy protection techniques Data Management for Mobile Protecting geo-tagged resource publication

411 views • 7 slides
The German Data Privacy Law and IT Security Stefan Schumacher sicherheitsforschung-magdeburg.de

The German Data Privacy Law and IT Security Stefan Schumacher sicherheitsforschung-magdeburg.de

Data Privacy Laws Directory of Procedures small and medium-sized enterprises The German Data Privacy Law and IT Security Stefan Schumacher sicherheitsforschung-magdeburg.de stefan.schumacher@sicherheitsforschung-magdeburg.de DeepSec In Depth

905 views • 35 slides
Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE

Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE

Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE Privacy Policy Terms & Conditions and Subscriptions Consent Structure and Preferences Meetings, Conferences, and Events

926 views • 36 slides
Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in

Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in

Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in many ways over the years. Usually privacy is concerned with the individual human being. We may talk about privacy as the control over your own

230 views • 21 slides
CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security in Healthcare Li Xiong Healthcare security and privacy HIPAA overview Research survey on information security and privacy in healthcare

1.05k views • 57 slides
Data privacy and big Data privacy and big data data Engineering & Public Policy Lorrie

Data privacy and big Data privacy and big data data Engineering & Public Policy Lorrie

CyLab Data privacy and big Data privacy and big data data Engineering & Public Policy Lorrie Faith Cranor November 12, 2015 y & c S a e v c i u r P r i t e y l b L a a s b U o 8-533 / 8-733 / 19-608 /

658 views • 21 slides
Multi-vendor Penetration Testing in the Advanced Metering Infrastructure: Future Challenges

Multi-vendor Penetration Testing in the Advanced Metering Infrastructure: Future Challenges

Multi-vendor Penetration Testing in the Advanced Metering Infrastructure: Future Challenges DIMACS Workshop on Algorithmic Decision Theory for the Smart Grid Stephen McLaughlin - Penn State University Systems and Internet Infrastructure

590 views • 33 slides
1 YOUR PRESENTER Anthony Dagostino Lockton Executive Vice President Global Cyber &

1 YOUR PRESENTER Anthony Dagostino Lockton Executive Vice President Global Cyber &

1 YOUR PRESENTER Anthony Dagostino Lockton Executive Vice President Global Cyber & Technology Practice Leader ADagostino@lockton.com Agenda 01 Cyber Facts 02 Cyber Insurance Basics 03 Claims 04 Best Practices 05 Lockton Cyber and

275 views • 24 slides
PF SMS icons Income Tax Tips for Personal Finance Managers Working with Military Families

PF SMS icons Income Tax Tips for Personal Finance Managers Working with Military Families

PF SMS icons PF SMS icons Income Tax Tips for Personal Finance Managers Working with Military Families learn.extension.org/events/3191 1 This material is based upon work supported by the National Institute of Food and Agriculture, U.S.

1.13k views • 91 slides
Lets Talk: Scams 30 September 2020 Alex Meaney Assistant Director, Consumer and Small

Lets Talk: Scams 30 September 2020 Alex Meaney Assistant Director, Consumer and Small

Lets Talk: Scams 30 September 2020 Alex Meaney Assistant Director, Consumer and Small Business Strategies Branch accc.gov.au Overview Our role 2020 scams Interactive example usage Key messages we recommend What to do if scammed +

704 views • 39 slides
Resident S creening Update Jay Harris Principal, Harris Crystal Advisors (703) 887-7148

Resident S creening Update Jay Harris Principal, Harris Crystal Advisors (703) 887-7148

Resident S creening Update Jay Harris Principal, Harris Crystal Advisors (703) 887-7148 jharris@harrisca.com Resident S creening Update HUD OGC Guidance (Apr. 16) DOJ S tatement of Interest (Fortune S ociety v. S

380 views • 14 slides
Unit 15: Real Estate Financing Practices 1 Learning Objectives Lessons learned from the

Unit 15: Real Estate Financing Practices 1 Learning Objectives Lessons learned from the

10/25/2019 Unit 15: Real Estate Financing Practices 1 Learning Objectives Lessons learned from the housing financial crisis Purpose of the Federal Reserve Primary & secondary mortgage market FHA, VA, USDA & special

322 views • 21 slides
Stream Data Management Divesh Srivastava AT&T Labs-Research

Stream Data Management Divesh Srivastava AT&T Labs-Research

Stream Data Management Divesh Srivastava AT&T Labs-Research http://www.research.att.com/~divesh/ Stream Map Part I: Motivation Data streams: what, why now, applications Data streams: architecture and issues Part II: Query

1.91k views • 117 slides
Core Intel On the bank secret service Krzysztof Adamski # Mariusz Derela Miami 18th May 2017

Core Intel On the bank secret service Krzysztof Adamski # Mariusz Derela Miami 18th May 2017

Core Intel On the bank secret service Krzysztof Adamski # Mariusz Derela Miami 18th May 2017 Are security breaches common? https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/4

1.14k views • 61 slides

More recommend