In May, influential U.S. business groups sent comments, viewed by Axios, to the National Peopleâ(TM)s Congress protesting that the draft lawâ(TM)s vague language, monetary penalties and criminal liabilities were harsh. They also said it would hurt innovation by being overly prescriptive and burdensome. The U.S. still does not have a federal data privacy law, and China’s move could allow it to set future global norms on its terms. Meanwhile, tech companies doing business in China will have to navigate the vague new rules, and that could be expensive.
While China’s sweeping new data privacy laws have left tech companies confused about how to comply, they also put the U.S. even further behind in the global race to set digital standards. From a report: China enacted its Personal Information Privacy Law earlier this month, following Europe as the second major international player to have its own sweeping data privacy regulations. The law, regarded as China’s version of Europe’s General Data Protection Regulation, is a set of rules for how businesses can collect, use, process, share and transfer personal information. Another Chinese data regulation, the Data Security Law, went into effect Sept. 1. The laws aim to protect Chinese citizens from the private sector, while the Chinese government still has easy access to personal data.