China’s Personal Information Protection Law (“PIPL”) is now in effect, prompting a surge in hiring for DPOs. What was once a security-oriented role for DPOs in China has been elevated to serve the critical oversight function of ensuring organizational compliance with PIPL.
China's PIPL mirrors the GDPR in terms of many of its core requirements and penalties, but some requirements are nuanced and and may require a refresh review of the existing company policies and procedures, which may create additional operational burdens.