When cases of Covid-19 began spreading in China last year, we saw the country’s already authoritarian surveillance systems go to extremes. Officials rolled everything From drones to face detection and costly motion tracking apps literally Harvesting the blood of the citizen In order to stop the flow of virus. go to 2021, it is clear that the country has reached the breaking point; saw china The first lawsuit for facial recognition This year and the first project of law That would partially prohibit the use of this technique in a major city, Hangzhou.
And on Friday, the state-run media mentioned The country has taken its biggest step yet: passing a comprehensive national privacy law that is set to go into effect on November 1.
And we mean sweeping. Personal Information Protection Law PIPL takes a page from Europe’s preeminent privacy law – the General Data Protection Regulation (GDPR) – which many policy experts regard as “thegold standardWhen it comes to protecting a citizen’s privacy. Unlike the General Data Protection Regulation (GDPR), it comes with one major caveat: It’s written largely to protect people from private companies collecting their data, giving state powers Permit passage To do so greatly.
Yes, it’s a loophole that kind of undermines the biggest problem many of us tend to deal with Monitoring country in China: State authorities use their Panopticon for continuous tracking innocent people or full ethnic groups. But there is a bright spot. Just as we see it with Officers in the United States, China’s government officials usually rely on private companies To collect that data for them: apps, smart devices, and Even the TV. PIPL aims to crack down on the companies behind these Data sucking monsters, which means – hopefully – that citizens can use the law to cut off access to their data before it ends up in the hands of the federal government.
Like most privacy laws, the full PIPL is my words are intense. But in short, it forces those who run apps, websites, or any other technology that collects data – to get consent from their users in order to collect that data, just as we’ve seen With GDPR. In cases where this app or device handles “sensitive” data such as a person’s fingerprint or financial details, consent must be requested repeatedly Before collecting these specific details, operators are even required to obtain “written consent” from users if required by law.
Furthermore, the law also requires that users be given different options for how to allow their data to be processed. Users should be allowed, for example, to tell the app that it can track their data, but not use that data to target them with ads. And when they give this consent, the app is required to give those users an easy way to withdraw it at any time. If you see Apple’s subtraction method Application tracking options in a iOS 14What the law requires sounds very similar. Only in this case will Apple not stop your app if you are caught flouting these requirements – it’s the government of China.
PIPL also has very strict guidelines for foreign companies doing business in the region – this includes data collection giants like Facebook that provide services to Chinese customers through Mysterious affiliates. The PIPL states that not only are any of these groups required to comply with the new law, they must “pass a security assessment regulated by the state’s Department of Cybersecurity and Information” before obtaining a permit to operate in the country.
When companies are caught violating privacy laws in the US, companies like Facebook face the same kind of punishment they would get if they were caught violating those rules in the then-EU: thousands (sometimes millions) of dollars worth fines. As you would probably expect, the consequences for companies in China are more severe.
Depending on the offense, companies can be fined up to 50 million yuan (about $7,690.00), or have all of their “illegal income” earned from undeserving customers confiscated by Chinese authorities. If they are caught freely selling or disclosing their personal information, they could end up in prison for 7 years.
Does this sound a bit harsh? Could. But after seeing these companies make billions of dollars mislead customers about their data or directly lying or lying When they are caught, it is good to see them and they have a new reason to be afraid.