Now, China has drafted it’s new data protection law. It will go into effect November 1st. The Personal Information Protection Law (PIPL) will strengthen the regulatory framework for privacy and data protection in China. It aims to

“protect the rights and interests of individuals,”

“regulate personal information processing activities,”

”safeguard the orderly flow and protection of data,”

“facilitate reasonable use of personal information.”

Companies from all countries, including the tech giants in the US, are now obligated to protect the rights of Chinese citizens. As with the GDPR, companies are not obligated to protect US citizens who have no rights to data privacy defined by the EU or China.