As privacy and cybersecurity laws proliferate, cross-border compliance poses major challenges: China is developing a robust commercial privacy and cybersecurity framework. In Europe, the General Data Protection Regulation (GDPR) took effect in 2018, with global impact. In the U.S., the Federal Trade Commission has assumed the role of privacy and cybersecurity regulator, but without general rulemaking authority, and the U.S. Congress this year will debate a comprehensive privacy law. Meanwhile, innovative companies want to offer their goods and services globally. They seek to ensure cross-border data flows. They also need consistency and certainty about requirements. 

This conference will address the question of interoperability: what strategies can global companies adopt in complying with the laws of China, the U.S. and Europe (and, of course, the rest of the world) and how should the laws of those countries develop to better protect consumers while also fostering innovation and competition? Panels will address varying concepts of what data is protected and how; the definition of reasonable cybersecurity standards under the laws of China, the EU and the U.S.; corporate data governance strategies in the face of overlapping requirements; and the evolving realities of privacy and cybersecurity enforcement across multiple agencies and jurisdictions.

This event is co-sponsored by the Berkeley Center for Law & Technology, Peking University, JD.com, the EastWest Institute, the US Information Technology Office, the Asia Society and New America.

To learn more, please click here to visit the conference website.

Image: "IT Security Schloss vor Crypto-Hintergru" (CC BY-SA 2.0) by Christoph Scholz