Skip to content

PCPD e-Newsletter

PCPD Facebook Instagram LinkedIn Twitter Weibo YouTube

Jointly held by members of the Asia Pacific Privacy Authorities (APPA), Privacy Awareness Week (PAW) is an annual promotion campaign which aims at raising public awareness of the importance of protecting personal data through weeklong educational activities. Now in its fourteenth year, PAW 2020 will be held from 22 to 26 June in Hong Kong, under the theme “Protecting Privacy and Respecting Dignity for a Smart Hong Kong”.

On 24 June, the Privacy Commissioner, Mr Stephen Kai-yi Wong, will host a free online seminar entitled "From Principles to Practice - Personal Data Protection for Enterprises” to talk about latest privacy issues in using video-conferencing apps, protection of employees' personal data under the pandemic, and updates on European Union General Data Protection Regulation and privacy-related regulations in the mainland. Other take-aways include Privacy Impact Assessment, Privacy by Design, Privacy Management Programme and Data Ethics.

The Privacy Commissioner will also take this opportunity to introduce the newly published "SME Personal Data Protection Toolkit".

DPOC members are cordially invited to attend the seminar.

Date: 24 June 2020 (Wednesday)
Time: 3:00pm – 5:00pm
Delivery mode: Online webinar
Speaker: Mr Stephen Kai-yi Wong, Barrister, Privacy Commissioner for Personal Data, Hong Kong
Language: Cantonese (mainly)

Enrol now

Other activities to be held during PAW include:

- Online quiz on protecting personal data privacy
- Collaboration with Google and Dustykid on Internet Safety Social Media Campaign
- Support for DPOC members to organise PAW in their organisations

Stay tuned for our promotions!

Find out more about PAW



From Principles to Practice – SME Personal Data Protection Toolkit

This tool book is designed to facilitate small and medium enterprises to develop a compliance strategy that best suits their needs in practising data governance and compliance with the requirements of the Personal Data (Privacy) Ordinance (PDPO). It includes checklists that help determine whether the necessary policies, control measures and procedures are in place and to meet the expectations of consumers. It comes with a set of learning cards.

Read the Toolkit



Booklet: An Update on European Union General Data Protection Regulation 2016

The EU GDPR has set a new high-water mark when it became effective on 25 May 2018. There have been cases of GDPR violations imposed with fines over the past two years. It has also triggered a new round of legislative reforms around the world. This revised booklet is the “2.0 version” of the 2018 issue. It takes stock of the implementation of the EU GDPR and the relevant cases, aiming to assist organisations and businesses to have a better understanding of the application of the GDPR.

The major enhancements in this “2.0 version” include an overview of the implementation of the GDPR in the past two years, with related guidelines explained and concrete examples drawn from official sources (i.e. the European Commission, European Data Protection Board and EU supervisory authorities) and significant sanction cases on GDPR quoted.

Read the Booklet

The Privacy Commissioner delivered presentations on various privacy issues during the 53rd Asia Pacific Privacy Authorities (APPA) Forum by virtual meeting, covering privacy issues arising from COVID-19, review of the PDPO and biometric technology, and took this opportunity to share experience and exchange opinions with other data protection authorities.



Download Presentation Materials:

Personal Data Protection Issues arising from 
COVID-19 in Hong Kong, China
Review of Hong Kong’s
Personal Data (Privacy) Ordinance
Good practice in using
biometric technology

GPA Newsletter

The Privacy Commissioner, as the Co-Chair of the Global Privacy Assembly (GPA) Ethics and Data Protection in Artificial Intelligence Permanent Working Group, contributed an article to the GPA May/June 2020 Newsletter, highlighting the progress in promoting implementation of the Declaration on Ethics and Data Protection in Artificial Intelligence.

Read the article

GDPR 2nd Anniversary

May 2020 saw the EU GDPR's second anniversary. The Privacy Commissioner was invited to contribute an article to the International Association of Privacy Professionals, along with other leading voices in the data protection and privacy community, to reflect about the past, present and future of the GDPR.

Read the article



Big data, artificial intelligence, privacy protection, GDPR…… are on everyone’s lips this day and age. The role of a data protection officer (DPO) in enterprises is gaining importance worldwide and also here in Hong Kong. DPO plays a data securing leadership role in a company, overseeing a company’s data protection strategy. Do you want to receive updated data protection information? Are you looking for an effective way to interact and learn with your counterparts? Or would you like to keep up with the latest trends of the international privacy landscape? To stay ahead of the game, become a member of the Data Protection Officers' Club (DPOC).

The Club provides a platform for data protection personnels or interested individuals to obtain updated information on data protection and participate in training and sharing sessions organised by the PCPD.

Click here to apply



Professional Workshops on Data Protection (June - August 2020) are now open for enrolment!

The Professional Workshops organised by the PCPD are specifically designed for practitioners to become acquainted with how to practise ethical handling of personal data in different professional spheres and to get up to speed on how to comply with the requirements under the PDPO in handling personal data.

Enrol in our new season of Workshops.

Enrol now!

Hong Kong Lawyer - June issue "Video Conferencing Privacy"

Video conferencing apps have become unprecedentedly popular globally in the midst of the COVID-19 pandemic. A number of security and privacy concerns about the apps have, however, been revisited, such as intruders displaying indecent contents during video conferences, lack of end-to-end encryption, etc. How should one select and use these apps safely from a personal data privacy perspectives?

Read the article

Response to media enquiry on handling of customer data by a bank (12 June)  

Read media response
(Chinese version only)

The second anniversary of the GDPR implementation - the Privacy Commissioner revised the booklet “European Union General Data Protection Regulation 2016” (12 June)

Read media statements

Privacy issues relating to Government’s Cash Payout Scheme (9 June)

Read media statements

Response to media enquiry on a complaint case in relation to data access request (4 June)

Read media response
(Chinese version only)

Zoom Reverses Course and Promises End-to-End Encryption for All Users

Zoom said a preliminary beta of its end-to-end encryption feature would begin in July.

Read more

Amazon to use AI tech in its warehouses to enforce social distancing Inc launched an artificial intelligence-based tracking system to enforce social distancing at its offices and warehouses to help reduce any risk of contracting the new coronavirus among its workers.

Read more

Norway Halts Coronavirus Tracking App Over Privacy Concerns

Norway halted the use of its mobile phone tool for tracking the spread of COVID-19 after the country’s data privacy watchdog raised flags that it’s too invasive now that infection rates have slowed.

Read more

For enquiry, please contact us.
Address: Room 1303, 13/F, Sunlight Tower, 248 Queen's Road East, Wan Chai, Hong Kong         Tel: (852) 2877 7179

If you do not wish to receive the PCPD e-Newsletter, please click here to unsubscribe.



The information and suggestions provided in this publication are for general reference only. They do not serve as an exhaustive guide to the application of the law. The Privacy Commissioner makes no express or implied warranties of accuracy or fitness for a particular purpose or use with respect to the information and suggestions set out in this publication. This publication also contains information or suggestions contributed by others, whose views or opinions are solely those of the contributors and do not necessarily reflect or represent those of the Privacy Commissioner. All information and suggestions provided in this publication will not affect the functions and powers conferred upon the Privacy Commissioner under the Personal Data (Privacy) Ordinance.

The PCPD shall not be liable for any damages (including but not limited to damages for loss of business or loss of profits) arising in contract, tort or otherwise from (i) the use of or inability to use this publication or its content, or (ii) from any action taken or decision made on the basis of the content of this publication.

If you click any hyperlink in this publication that brings you to sites operated by other organisations, the PCPD accepts no responsibility for the contents of those sites and shall not be liable for any loss or damage arising out of and/or incidental to the use of the contents.