EU General Data Protection Regulation

EU General Data Protection Regulation (GDPR)

European Union (EU) - General Data Protection Regulation (GDPR)

The GDPR, adopted in 2016, will come into force on 25 May 2018.

One of the key developments introduced under the GDPR to the data protection landscape outside the EU is the explicit requirement of compliance by organisations established in non-EU jurisdictions in specified circumstances. Given the diversified business or transaction models (e.g. online transactions), it is necessary for organisations / businesses in Hong Kong to ascertain if the GDPR is applicable to them, and hence be complied with.

Publication on the GDPR

To raise the awareness amongst organisations / businesses in Hong Kong of the possible impact of the new regulatory framework for data protection in the GDPR, the PCPD has issued the following publication:

Booklet: 　
European Union General Data Protection Regulation 2016　
(Effective 25 May 2018)

Activities on the GDPR

As the regulator on protection of personal data privacy in Hong Kong, the PCPD will continue to proactively assist local data users in understanding and complying with data protection regimes overseas. The PCPD has been organising educational activities since late 2017 to help organisations / businesses understand the GDPR’s standards and the possible impact on their operations.

>>> Click here for more information about the GDPR activities

More Information on the GDPR

PCPD's Media Statement (3 April 2018) - How Hong Kong Businesses Should Prepare for the EU General Data Protection
Organisations / businesses may browse the website of the European Commission on protection of personal data for details and the related guidance materials:
http://ec.europa.eu/justice/data-protection/index_en.htm