Few months ago the new Chinese Cyber-security Law has been issued, entering into force on next June 2017.

This regulation applies to the construction, operation, maintenance, supervision and usage of networks performed within China mainland. The purpose is to ensure the network security, protecting cyberspace and, by this way, defending national public interests.

An issue deserving attention from foreign operator's point of view is the one concerning personal information, meaning all the information collected by electronical or other meanings that taken alone or together with other similar, allow a personal identification (i.e. name, birth date, address and phone number).

This kind of information shall be collected by critical information infrastructure (CII) and stored in a server phisically located in China mainalnd.

Foreign enterprises that for business purposes may need to transfer personal information cross-boarder shall request governement permission, otherwise prohibitory and pecuniary sanctions will be applied.