China's PIPL mirrors the GDPR in terms of many of its core requirements and penalties, but some requirements are nuanced and and may require a refresh review of the existing company policies and procedures, which may create additional operational burdens.
China’s Personal Information Protection Law (“PIPL”) is now in effect, prompting a surge in hiring for DPOs. What was once a security-oriented role for DPOs in China has been elevated to serve the critical oversight function of ensuring organizational compliance with PIPL.