A Comparative Study between the PDPO and the European Union’s General Data Protection Regulation’s Data Transfer Provisions

Po Kan Lo

A Comparative Study between the PDPO and the European Union’s General Data Protection Regulation’s Data Transfer Provisions

Division of Languages and Communication (LC)

Research output: Contribution to conference › Paper › peer-review

Abstract

This paper is formed on the basis that the law in Hong Kong in the form of the PDPO was introduced in 1995, before the internet revolution substantially altered the scale and type of the data which is routinely uploaded by individuals. Nevertheless, Section 33 of the PDPO, which deals with cross-border data transfers, has never been in force. Given the monumental increase in personal data now uploaded and processed online, the vast amounts of personal data transferred out of jurisdiction, and the huge technological increases in data analysis and processing techniques, this legislation might be outdated. This led to amendments being made in 2012 in order to update the law. The adequacy of these new provisions will be compared to the law introduced within the European Union under the GDPR, which will serve as a basis for comparison when determining the adequacy of Hong Kong’s data protection regime.

Original language	English
Publication status	Published - Jan 2021
Event	Human Sovereignty and Machine Efficiency in the Law - Duration: 14 Jan 2021 → 16 Jan 2021

Conference

Conference	Human Sovereignty and Machine Efficiency in the Law
Period	14/01/21 → 16/01/21

Keywords

PDPO
EU
GDPR
Data Transfer

Access to Document

https://www.law.cuhk.edu.hk/app/events-recap/machine-lawyering-conference-human-sovereignty-and-machine-efficiency-in-the-law/

Cite this

@conference{3c18292a10d74812b40bb57e8a4319c4,

title = "A Comparative Study between the PDPO and the European Union{\textquoteright}s General Data Protection Regulation{\textquoteright}s Data Transfer Provisions",

abstract = "This paper is formed on the basis that the law in Hong Kong in the form of the PDPO was introduced in 1995, before the internet revolution substantially altered the scale and type of the data which is routinely uploaded by individuals. Nevertheless, Section 33 of the PDPO, which deals with cross-border data transfers, has never been in force. Given the monumental increase in personal data now uploaded and processed online, the vast amounts of personal data transferred out of jurisdiction, and the huge technological increases in data analysis and processing techniques, this legislation might be outdated. This led to amendments being made in 2012 in order to update the law. The adequacy of these new provisions will be compared to the law introduced within the European Union under the GDPR, which will serve as a basis for comparison when determining the adequacy of Hong Kong{\textquoteright}s data protection regime.",

keywords = "PDPO, EU, GDPR, Data Transfer",

author = "Lo, {Po Kan}",

year = "2021",

month = jan,

language = "English",

note = "Human Sovereignty and Machine Efficiency in the Law ; Conference date: 14-01-2021 Through 16-01-2021",

}

TY - CONF

T1 - A Comparative Study between the PDPO and the European Union’s General Data Protection Regulation’s Data Transfer Provisions

AU - Lo, Po Kan

PY - 2021/1

Y1 - 2021/1

N2 - This paper is formed on the basis that the law in Hong Kong in the form of the PDPO was introduced in 1995, before the internet revolution substantially altered the scale and type of the data which is routinely uploaded by individuals. Nevertheless, Section 33 of the PDPO, which deals with cross-border data transfers, has never been in force. Given the monumental increase in personal data now uploaded and processed online, the vast amounts of personal data transferred out of jurisdiction, and the huge technological increases in data analysis and processing techniques, this legislation might be outdated. This led to amendments being made in 2012 in order to update the law. The adequacy of these new provisions will be compared to the law introduced within the European Union under the GDPR, which will serve as a basis for comparison when determining the adequacy of Hong Kong’s data protection regime.

AB - This paper is formed on the basis that the law in Hong Kong in the form of the PDPO was introduced in 1995, before the internet revolution substantially altered the scale and type of the data which is routinely uploaded by individuals. Nevertheless, Section 33 of the PDPO, which deals with cross-border data transfers, has never been in force. Given the monumental increase in personal data now uploaded and processed online, the vast amounts of personal data transferred out of jurisdiction, and the huge technological increases in data analysis and processing techniques, this legislation might be outdated. This led to amendments being made in 2012 in order to update the law. The adequacy of these new provisions will be compared to the law introduced within the European Union under the GDPR, which will serve as a basis for comparison when determining the adequacy of Hong Kong’s data protection regime.

KW - PDPO

KW - EU

KW - GDPR

KW - Data Transfer

UR - https://webapp3.law.cuhk.edu.hk/conf/20210114/

UR - https://webapp3.law.cuhk.edu.hk/conf/20210114/speakers/

M3 - Paper

T2 - Human Sovereignty and Machine Efficiency in the Law

Y2 - 14 January 2021 through 16 January 2021

ER -

A Comparative Study between the PDPO and the European Union’s General Data Protection Regulation’s Data Transfer Provisions

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this