Wanxiu Xu,Shuo Wang,Xiaodong Zuo

DOI: https://doi.org/10.1016/j.clsr.2024.106061

IF: 2.707

2024-10-02

Computer Law & Security Review

Abstract:China and the United States have traditionally represented the 'security paradigm' and 'freedom paradigm' in their regulatory approaches to cross-border data flow. However, with the introduction of new rules governing these flows in both countries, this article challenges that perspective and explores the potential implications of this shift for global data governance. Specifically, it analyzes how the recent regulations in China and the United States serve as critical turning points affecting the transition between these paradigms, focusing on the overall regulatory frameworks and institutional developments in both nations. The article provides legal, institutional, and case-based examples to illustrate these changes. Furthermore, it offers a comparative analysis of the existing models for cross-border data flow regulation between China and the United States. Targeted compliance advice is provided for multinational corporations and other businesses frequently engaging in international operations that may be impacted by these regulatory changes. This research aims to deliver comprehensive insights into the latest regulatory developments in both countries and their existing models for cross-border data governance, thereby assisting enterprises in developing effective compliance strategies in practice.

law

Xi Yang

DOI: https://doi.org/10.1088/1742-6596/1848/1/012026

2021-04-01

Journal of Physics: Conference Series

Abstract:Abstract Cross-border data flow is characterized by multi-direction and rapid dynamic gridding in the big data era. Accordingly, these characteristics necessitate effective regulation for crossborder data flows. The US and the European Union (EU) follow their respective regulatory models for cross-border data flows by considering each one’s economic, political, and historical traditions. The “geographically based” policy of data flows, characterized as internal and external, is the basic position adopted by the EU on cross-border data flows. Although the US regulatory path favors (in principle) the free flow of data across borders, this country actually adopts data protectionism for data involving critical technologies and security areas. Given the political system differences among China, the EU, and the US, China can learn from the experiences of the US and the EU, actively seek value balance between data regulation and free flow, construct its own regulatory model, and establish a diversified data management system. Lastly, China should also actively participate in the international regulation competition on cross-border data flows, thereby giving the country a voice in the international arena.

Yik-Chan Chin,Jingwu Zhao

DOI: https://doi.org/10.3390/laws11040063

2022-08-16

Laws

Abstract:In modern international competition and cooperation, digital trade rules centered on the cross-border flow of data have become a competitive advantage for countries. Under the guidance of commercial freedom, the United States chooses to actively promote the free flow of data across borders. The European Union has placed the protection of personal data rights before the cross-border flow of data through the General Data Protection Regulation (GDPR), and developing countries generally reserve space for industry policy interpretation. As one of the world’s largest economies, facing the needs of domestic industrial development and the pressure of international systems, China’s cross-border data flows’ policy is to ensure data flows under the premise of security, protection of personal information, seek international coordination of rules, and the freedom of transmission. The key question, therefore, is how to facilitate interoperability or find a middle ground among the divergent approaches in order to avoid the fragmentation of the digital trade system. The article suggests that a thin and narrowly scoped WTO agreement on e-commerce rules on cross-border data flows with sufficient policy space to accommodate different needs, policy preferences and priorities, and local contexts via legitimate exception provisions would be a welcome movement.

Yuxin Tian,Hanwen Zhang

DOI: https://doi.org/10.54254/2753-7048/16/20231127

2023-10-26

Abstract:In the era of digital economy, the power struggle and legal challenges arising from cross-border data flows have become increasingly prominent, making data governance a focal topic in the international community. Countries are competing and cooperating in formulating rules on cross-border data flows, as this phenomenon becomes more significant with the global popularity and rapid development of big data-based digital products like ChatGPT. As traditional powers in this field, the United States and the European Union have established long-arm jurisdiction systems with unique characteristics and have engaged in multiple rounds of fierce gamesmanship over dominance in global data flow governance standards, while constantly seeking power balance in bilateral cooperation. Through historical research, comparative analysis, and case studies, this paper analyzes and summarizes the governance principles, regulatory models, and competitive and compromising processes of transatlantic data flows, leading to the conclusion that Chinas data governance strategy should balance data security and data freedom, while transforming its approach to regulating data outflows and emphasizing the importance of efficiency values in maintaining data sovereignty. By expanding international cooperation and promoting the signing of regional data flow agreements, China can enhance its voice in the global data governance system.

Xuezhu Zhao

DOI: https://doi.org/10.54254/2753-7064/37/20240178

2024-05-31

Abstract:The arrival of the big data era has made most countries realize the importance of data resources for economic development. On the one hand, data flow promotes trade between countries, and on the other hand, the rapid expansion of the scale of multinational business giants has led to a proliferation of incidents of illegal collection and utilization of user privacy, putting national security at risk.In 2019, WTO members of the e-commerce negotiations put forward proposals for cross-border data flow based on their own positions, and major countries such as China, the United States, Russia and other major countries have all put forward different proposals.It can be seen that data flow regulation has become a key topic in the international arena nowadays, with sufficient necessity and practical significance. As a result, this paper adopts the comparative analysis method, normative analysis method and other research methods to analyze the issue and make suggestions on the direction of China's legislation.

Chao Wu

DOI: https://doi.org/10.1016/j.techsoc.2024.102457

IF: 6.879

2024-01-01

Technology in Society

Abstract:In recent years, data privacy has attracted increasing public concerns, especially with public scandals from top Internet companies, emerging over inappropriate data collection, lack of transparency in data usage, and manipulation of users' preferences. This has led to responsive efforts from multiple sectors of society to constrain the violation of individuals’ data privacy. Among these efforts, the regulations like GDPR are the most influential, which are believed to be able to change the foundation of the whole data ecosystem. The main concern of current regulation is data transparency, designed to enable individuals to make rational decisions about their data. However, I argue that transparency cannot mitigate a key issue of data privacy, which is the right of receiving benefits from data. This issue is getting severe with the rapid development of the data economy and will become the essential problem of social welfare and fairness in the AI era. I further point out that the key to solving this issue is to migrate the current centralized data utilization paradigm to a new decentralized paradigm. Based on the recent technical advancements, I propose an applicable pathway to implement such a paradigm. And to realize a fair and sustainable data eco-system, joint efforts should be made within this paradigm.

Lei zhao

DOI: https://doi.org/10.7256/2454-0706.2024.4.70797

2024-04-01

Право и политика

Abstract:The subject of this article is the system of regulation of cross-border data flows and its legal regime. Data is a fundamental resource for the development of the digital economy. Today, with the great development of globalization, the presence of cross-border data flows in international trade is inevitable. However, the transfer of data abroad creates hidden threats to the confidentiality of personal information of citizens and national security. Many countries have established data transfer management systems to protect their own interests. Mature data transfer management regimes abroad often become an example for other countries. The adopted laws also served as a model for other countries. The most representative regimes currently exist in the EU, the USA and China, which demonstrate three ways of managing data. The purpose of this article is to compare the regimes of cross–border data transmission in the European Union, the United States and China in order to analyze the structure of the three representative regimes, as well as to study the causes of their formation and the consequences of their functioning. Considering the three systems makes it possible to show more clearly that the European Union, the United States and China have different value orientations, which directly led to the formation of three different legal systems. The free market and national security have become the main elements of national considerations in the development of laws on cross-border data. Based on the conducted research, it can be concluded that the regime of cross-border data transfer in the EU is the most complete and effective, having a demonstration effect. The Chinese system currently has serious flaws. And in recent years, US law has been increasingly focused on serving the interests of geopolitics. Laws on cross-border data transfer demonstrate trends in political instrumentalization. The Balkanization of the Internet is becoming more and more obvious.

Hao Xu

DOI: https://doi.org/10.61173/kqm1nt77

2024-06-06

Abstract:International digital trade is accelerating the speed of economic globalization and is becoming a new driver of economic growth. Data, as a key production factor, is ubiquitous in digital trade. This paper combines research on the topics of economy and trade in the digital era and further relates to cross-border data flows, to analyze regulations and governance of data flows in different economies, especially comparing the core elements involving cross-border data flows in regional agreements such as the CPTPP, the DEPA and the RCEP, to explore the rationality and necessity of various types of regulations. Besides, from investigating the specific development of the international community to discuss the real governance dilemma about strict regulation and fragmentation of data flows, to explore the solution to the problem of balancing cross-border data flows and risk prevention in international trade from legal regulation.

Yinuo Yang,Yanya Zhao

DOI: https://doi.org/10.54254/2753-7048/36/20240458

2024-01-15

Abstract:In today's data-driven era, the governance of data rules has become a focal point for countries worldwide. This paper elucidates the significant differences between the United States and Europe, both major players in this domain, in terms of legislation and value positions. They also operate within distinct social data environments and possess varying national interest needs. These influence the direction and results of the game between the two sides in the data privacy framework. The paper also encompasses many far-reaching factors involved in this process, such as the political relationships between the United States and Europe, and the economic conditions on both sides. In the contest for dominance in data governance rules, the United States and Europe have been constantly interacting, refining regulations through ongoing friction, and to some extent, driving the development of the data industry. Meanwhile, the world still needs a more mature and stable regulatory framework for data governance rules, indicating the necessity for further significant progress in this area.

Luyao Sun

DOI: https://doi.org/10.54097/ajst.v8i1.14305

2023-11-21

Academic Journal of Science and Technology

Abstract:The high importance and immense power of data, coupled with a lack of consensus on the definition of this term, have led to multiple challenges in this field. Data protection legislation can be traced back to the Enlightenment era, which explains why the EU has always regarded personal data protection as a fundamental human right. As the third generation of personal information protection legislation, GDPR not only expands the extraterritorial application effectiveness, but also strengthens the administrative sanctions function of DPA. The EU has considered commitments regarding cross-border data flows in recent trade agreement negotiations, indicating a trend towards repositioning its considerations between data protection and trade interests. The primary issue facing the regulation of cross-border data flow under the WTO framework is to clarify the applicability of GATS commitments to digital trade and cross-border data flow. At the FTA level, few trade agreements explicitly address the issue of data localization requirements. For the first time, CPTPP sought to explicitly restrict the use of data localization measures, with the exception of "legitimate public policy objectives", and this template was subsequently followed by FTA. In response to the regulation of cross-border data flow in China, scholars have put forward their own opinions from different perspectives, from the objects of learning and reference to specific suggestions.

W.Gregory Voss,

DOI: https://doi.org/10.17323/1996-7845-2022-01-03

2022-03-15

International Organisations Research Journal

Abstract:Today, cross-border data flows are an important component ofinternational trade and an element of digital service models. However, they are impededby restrictions on cross-border personal data transfers and data localization legislation. ThisArticle focuses primarily on these complexities and on the impact of the new EuropeanUnion (“EU”) legislation on personal data protection—the GDPR. First, this Articleintroduces its discussion of these flows by placing them in their economic and geopoliticalsetting, including a discussion of the results of a lack of international harmonization of lawin the area. In this framework, rule overlap and rival standards are relevant. Once thissituation is established, this Article turns to an analysis of the legal measures that havefilled the gap left by the lack of international regulation and the failure to harmonize law:extraterritorial laws in the European Union (regional legislation) and the United States(state legislation); and data localization laws in China and Russia. Specific provisionsrestricting cross-border personal data transfers are detailed under EU legislation, as are theinternational agreements that have been invaluable in allowing flows between the UnitedStates and the European Union to continue—first the Safe Harbor, and now the Privacy Shield. Finally, in this context, the role of data governance is investigated, both in thecontext of data controllers’ accountability for the actions of other actors in global supplychains under EU law and under the Privacy Shield. Thus, this Article goes beyond the lawitself, to place requirements in the context of the globalized business world of data flows,and to suggest ways that companies may improve their compliance position worldwide.

Dong Ke,Wu Jiachun

DOI: https://doi.org/10.1145/3657054.3657070

2024-01-01

Abstract:Cross-border flow of data is the foundation of the current global interconnection, and its compliance has become a priority for governments to safeguard data sovereignty and national security, and the competition in the authoritative arena of global cross-border data governance has become more and more intricate. Exploring the shift in governance practices of cross-border data flows and the change of authoritative fields is instructive for enhancing China's institutional discourse on global data governance. This study explores and describes the historical development process of governance, explains policy changes, and the development trends and distribution of global governance authority fields from the multi-dimensional perspective of policy arrangements by constructing a theoretical framework for the governance of cross-border flow of data and adopting a case study approach. The study found that the current global cross-border data governance has gone through a three-stage governance turn of personal data cross-border governance regulation, the emergence of the European authoritative field and the European and American authoritative field competition and multi-level regulation game, forming a logical movement of competition and co-existence and a diversified pattern; The cross-border data governance authority field has evolved from the national level to multi-level fields such as intercontinental and trade organizations; The path of authority building in cross-border data governance in countries such as China and India is converging with Europe and the United States; whereas private actors such as multinational corporations are limited in their authority on cross-border data governance.

Yuqian Lyu

DOI: https://doi.org/10.54097/cq74rw08

2023-12-31

Abstract:Every part of life, work and friendship has been inseparable from the Internet. When we casually click on the links on the network, when we need to enter personal information on the network due to work and policy, when enterprises are used to storing most of the data in the emerging cloud computing service platform, when the official website of the core departments of the country was maliciously attacked. We are facing more frequent information leakage in the era of big data. Especially with the trend of multinational corporations, regional interoperability, and the integration of the world economy, data and information can flow across borders without obstacles. Undoubtedly, cross-border business trade, project co-operation, geo-location, and server tracking are necessary, but the large amount of data recording, flow, and tracking brings great risks to personal privacy, business secrets, and the maintenance and stability of national security. As a result of the growing awareness of the risks and drawbacks of cross-border data flows, jurisdictions and regions have developed legislation and rules to balance the free flow of data and cross-border security.

Ye Liu

DOI: https://doi.org/10.14330/jeail.2024.17.1.06

2024-01-01

Journal of East Asia and International Law

Abstract:With the increasing value of data and the growing power in the field of digital economy, China has taken the governance of cross -border data flow(CBDF) as an important national strategy. At the domestic policy level, China has piloted Beijing, Shanghai, Hainan and Xiongan New Area to create international data centers with the intention to control inbound and outbound data resources. At the domestic legislative level, China insists that the outbound data transfers be conducted in a secure environment. At the international cooperation level, on the basis of the Global Data Security Initiative, China builds the consensus of countries and promotes cooperation among countries along the Belt and Road routes on CBDF through the Digital Silk Road. Simultaneously, China will engage proactively in the newly international economic and trade agreements, with RCEP standing as a prime example. China ' s discourse and model on CBDF governance have been continuously enhanced.

Xu Ziyi

DOI: https://doi.org/10.1155/2022/9672693

2022-08-18

Mobile Information Systems

Abstract:Cross-border data flow brings new growth and opportunities for the development of digital economy, but disordered cross-border data flow may damage national security, public interests, enterprise interests, and data sovereignty. At present, the unified rules for global regulation of cross-border data flow have not yet been formed. The existing rules are mainly led by developed countries like Europe and the United States. There is huge room for improvement in the international legal protection of cross-border transmission of personal information. This paper introduces the privacy protection mechanism of personal information data under the digital trade environment in China, that is, the privacy protection framework under the background of big data, cloud computing, and the cloud service selection method of data life cycle privacy protection. At the same time, we combined with many problems existing in the cross-border transmission of personal privacy information in China and compared with foreign advanced experience, and this paper puts forward China’s response path to clarify the obligations of data controllers and exporters, improve the responsibilities of regulators, improve the legislation of cross-border data flow, and improve the operability of the law; we vigorously carry out international cooperation and actively participate in the formulation of international rules, so as to further protect the rights and interests of personal privacy information protection.

computer science, information systems,telecommunications

Peng Qi,Yuanqi Sun

DOI: https://doi.org/10.4108/eai.8-12-2023.2344822

Abstract:. In the digital economy environment, the cross-border flow of financial data has become increasingly important, but a unified regulatory mechanism has not been formed in the world, which brings obstacles to the flow of transnational financial data. Differentiated free trade agreements (FTA) can have different effects on the transnational flows of financial data. China has a huge demand for the cross-border flow of financial data, but the potential risks can not be ignored. This paper aims to establish an effective regulatory regime to ensure data security and maximize its economic value. Considering that China's construction and participation in the supervision of cross-border financial data flow is still in its infancy, it is necessary to improve the supply level of the rules of the free trade zone, so as to promote the healthy development of China's financial service trade. Through the method of literature review and case analysis, the regulatory system of financial data flow is deeply studied. On the one hand, the existing literature is reviewed and analyzed to understand the current situation, problems and solutions of the cross-border flow of financial data; on the other hand, to explore the practice and experience of different countries in the cross-border flow of financial data. Overall, establishing an effective regulatory system is the key to ensuring the security of financial data and maximizing its economic value. In terms of cross-border flow of financial data, it is necessary to start from the two aspects of cross-border flow of financial data and data security to improve the supply level of free trade zone rules, so as to promote the healthy development of China's financial service trade.

Law

XinYi Du,AiJiao Liu

DOI: https://doi.org/10.55014/pij.v6i1.326

2023-03-31

Pacific International Journal

Abstract:Cross-border data flow legislation is currently absent in several countries, and data ownership remains an issue. Data sovereignty is necessary for cross-border data movement. To preserve national interests in the growing data field, western countries violate the idea of sovereignty and attempt to construct a cross-border data circulation system within the framework of the western discourse system. Developing countries aim to localize data to protect their own data stockpiles and increments to safeguard national security. As a responsible country, China supports the formation of a cross-border data flow rule framework that aligns with development and security, protects data sovereignty, and promotes data integrity.

Shuzhong Ma,Sishi Huang,Peng Wu

DOI: https://doi.org/10.1016/j.asieco.2024.101826

IF: 2.681

2024-01-01

Journal of Asian Economics

Abstract:In the era of digital economics, data has become a crucial factor in driving cross-border e-commerce (CBEC). We examine the impact of data policy restrictions on CBEC, focusing on the Chinese context. Using a theoretical framework that analyzes the costs and benefits of data protection regulations, we delve into the economic effects of these policies. The results show that data policies in importing countries have a substantial negative impact on China's CBEC exports. The heterogeneous analysis shows that this negative impact is stronger for products that are more differentiated, industries that are more highly-digital and high-tech, and countries with higher income. We also estimate the moderating role of data comparative advantage. The results reveal that the trade-inhibiting effect of data restriction increases with the enhancement of importing countries' data comparative advantage. Finally, economic freedom in the importing country can mitigate the negative impact of data policy restrictions.

Zixuan Tian,Chenhao Wen,Jinfeng Fan

DOI: https://doi.org/10.62051/ijsspa.v2n3.22

2024-04-17

Abstract:The primary objective of this research is to ensure the secure and compliant transmission of personal information from China. To this end, the Chinese government has implemented the "Standard Contract Measures for the Export of Personal Information." This study employs both literature review and factor analysis methods to meticulously examine the potential risks in the practical implementation of these measures, and further suggests strategies to address the current challenges. Additionally, the study introduces foreign systems for reference, aiming to guide Chinese enterprises in circumventing legal risks associated with cross-border data flows and ensuring the security and compliance of personal information departing from the country. The findings of this research reveal that the existing legal framework for cross-border data flows in China has certain shortcomings, providing valuable insights for the improvement of China's legal framework and related regulatory systems. Furthermore, it offers practical cautionary value for Chinese enterprises in their operations.

Ziyu Xu

DOI: https://doi.org/10.54254/2753-7048/55/20240067

2024-07-11

Abstract:In the global digital governance game, the Digital Economy Partnership Agreement (DEPA) features innovative designs for digital trade, aligning with China's goals of internal data sharing openness and external breaking of "rule locks". However, China currently exhibits significant legislative differences in the "Data Issues" section of DEPA's fourth module, adopting stricter regulatory measures for cross-border data flow and data localization. Addressing DEPA's "principle & exception" regulatory standards, this paper argues that legitimate public policy objectives can be aligned with DEPA through proportionality principles, WTO general exception clauses, etc. By innovating customs supervision methods and following the path of the Hainan Free Trade Port trial, connecting international trade new rules, orderly implementing law enforcement systems and supporting mechanisms to ensure data security and orderly flow, China can gradually align with DEPA.