Yik-Chan Chin,Jingwu Zhao

DOI: https://doi.org/10.3390/laws11040063

2022-08-16

Laws

Abstract:In modern international competition and cooperation, digital trade rules centered on the cross-border flow of data have become a competitive advantage for countries. Under the guidance of commercial freedom, the United States chooses to actively promote the free flow of data across borders. The European Union has placed the protection of personal data rights before the cross-border flow of data through the General Data Protection Regulation (GDPR), and developing countries generally reserve space for industry policy interpretation. As one of the world’s largest economies, facing the needs of domestic industrial development and the pressure of international systems, China’s cross-border data flows’ policy is to ensure data flows under the premise of security, protection of personal information, seek international coordination of rules, and the freedom of transmission. The key question, therefore, is how to facilitate interoperability or find a middle ground among the divergent approaches in order to avoid the fragmentation of the digital trade system. The article suggests that a thin and narrowly scoped WTO agreement on e-commerce rules on cross-border data flows with sufficient policy space to accommodate different needs, policy preferences and priorities, and local contexts via legitimate exception provisions would be a welcome movement.

Chao Wu

DOI: https://doi.org/10.1016/j.techsoc.2024.102457

IF: 6.879

2024-01-01

Technology in Society

Abstract:In recent years, data privacy has attracted increasing public concerns, especially with public scandals from top Internet companies, emerging over inappropriate data collection, lack of transparency in data usage, and manipulation of users' preferences. This has led to responsive efforts from multiple sectors of society to constrain the violation of individuals’ data privacy. Among these efforts, the regulations like GDPR are the most influential, which are believed to be able to change the foundation of the whole data ecosystem. The main concern of current regulation is data transparency, designed to enable individuals to make rational decisions about their data. However, I argue that transparency cannot mitigate a key issue of data privacy, which is the right of receiving benefits from data. This issue is getting severe with the rapid development of the data economy and will become the essential problem of social welfare and fairness in the AI era. I further point out that the key to solving this issue is to migrate the current centralized data utilization paradigm to a new decentralized paradigm. Based on the recent technical advancements, I propose an applicable pathway to implement such a paradigm. And to realize a fair and sustainable data eco-system, joint efforts should be made within this paradigm.

Yijing Sun

DOI: https://doi.org/10.62051/zk428812

2024-10-10

Abstract:In the era of big data, international trade has gone through a digital transformation and developed into a new stage of digital trade. The gradual prosperity of digital trade and the increasing contribution of digital elements to the economy of countries and the international community also bring about problems such as data abuse, surveillance, privacy infringement, and regulatory difficulties. In order to adapt to the development trend of digital trade, countries are paying more attention to cross-border data flow and data privacy protection, in order to maintain national security and the data security of various entities. Therefore, this article analyzes the current situation and trends of digital trade, considers the security issues of data privacy from the perspective of different entities, links key issues such as cross-border data flow, data rights, and privacy rights, explores the current status of relevant domestic and foreign legal and regulatory systems, and conducts comparative analysis. The analysis results show that due to different values, there are significant differences in policies regarding digital trade and privacy protection among countries. The commonality is that none of them have established appropriate legal protection systems for data elements and privacy rights to promote the development of digital trade. Under the trend of technological development, data privacy will also be impacted by new technologies through digital trade. Therefore, in response to the expanding demand for data regulation, all entities should improve their privacy protection and cross-border data flow policies and standards from both internal and international perspectives.

F. Casalini,Javier Lopez-Gonzalez

DOI: https://doi.org/10.1787/B2023A47-EN

2019-01-23

Abstract:The ubiquitous exchange of data across borders has given rise to a range of concerns by governments and citizens about some of the effects of so much information being collected and used, often without the knowledge of data subjects. This has led countries to condition or prohibit the transfer of data abroad, affecting trade in the process. This paper develops an indicative taxonomy of domestic approaches to cross-border data flow regulation and local storage requirements; it then surveys international instruments that address the question of international data transfers. The paper then examines the issues that data flow restrictions might raise for consumers and businesses. Against this backdrop, the paper highlights the challenge of finding balance between ensuring that important objectives, such as consumer privacy and security, are met while maintaining the benefits from free flows of data, including the benefits from increased and more inclusive digital trade.

Business,Economics,Political Science

Ashutosh

DOI: https://doi.org/10.36676/ijl.v2.i1.03

2024-03-13

Abstract:This paper delves into the intricate realm of "Cross-Border Data Flows and International Law: Navigating Jurisdictional Complexities in the Digital Age." In an era dominated by global connectivity and digital interdependence, the paper scrutinizes the challenges posed by jurisdictional complexities in regulating the exchange of data across borders. The investigation encompasses a comprehensive analysis of existing international legal frameworks, jurisdictional challenges arising from varying national regulations, the impact of data protection and privacy laws, and technological solutions. Through case studies and a forward-looking lens, the paper offers insights into the evolving landscape of cross-border data governance. The recommendations put forth aim to foster a harmonized approach to international law, ensuring a delicate balance between facilitating data flows and safeguarding individual privacy rights.

Mira Burri

DOI: https://doi.org/10.1093/oxrep/grac042

2023-01-01

Oxford Review of Economic Policy

Abstract:Abstract This article is set against the complex backdrop of the evolution of the data-driven economy and its regulation, and seeks to provide a better contextualization of the topic of data protection as a matter of trade law. It looks at the recent proliferation of rules on data flows, specifically addressed in free trade agreements (FTAs), at how data protection has been framed in these treaties, as well as at the available reconciliation mechanisms developed to interface trade and privacy. The article explores the most advanced models that have been developed in this regard so far, with a focus on some US-led and EU-led treaties. These analyses build the basis for testing the conjecture as to whether trade law has gone too fast and too deep, encroaching on domestic privacy law developments that unfold at a much slower pace.

economics

Hao Xu

DOI: https://doi.org/10.61173/kqm1nt77

2024-06-06

Abstract:International digital trade is accelerating the speed of economic globalization and is becoming a new driver of economic growth. Data, as a key production factor, is ubiquitous in digital trade. This paper combines research on the topics of economy and trade in the digital era and further relates to cross-border data flows, to analyze regulations and governance of data flows in different economies, especially comparing the core elements involving cross-border data flows in regional agreements such as the CPTPP, the DEPA and the RCEP, to explore the rationality and necessity of various types of regulations. Besides, from investigating the specific development of the international community to discuss the real governance dilemma about strict regulation and fragmentation of data flows, to explore the solution to the problem of balancing cross-border data flows and risk prevention in international trade from legal regulation.

Martina F. Ferracane,Erik van der Marel

DOI: https://doi.org/10.1111/roie.12735

IF: 1.234

2024-03-27

Review of International Economics

Abstract:The regulation of personal data varies widely between countries, with potential effects on digital services. We develop a taxonomy for the regulation of cross‐border personal data transfers and systematically categorize 143 countries in one of the three data models identified, which are an open data model, a conditional model, and a control model. Using a gravity model, we then study if sharing a similar regulatory model between trading partners is associated with trade in digital services. Moreover, we assess if enacting a comprehensive data protection law impacts the relationship between data models and digital services. The open model of data transfers appears to support data flows, regardless of the the presence of a domestic regime for personal data. We find a negative effect on digital services for the conditional model that prescribes conditions that need to be fulfilled to transfer personal data across borders. Interestingly, we find that this negative effect is more than offset by the presence of a comprehensive data protection law. Finally, the control model, which has strict conditions to transfer personal data outside the country, only has a negative and significant effect when a domestic regime for data protection is implemented. The latter is likely to reflect the cost burden of firms to comply with these regulations as the trust channel might not be effective in countries characterized by government surveillance.

economics

Dr. Seema Singh,Prerna

DOI: https://doi.org/10.69953/njrs.v9i2.9

2024-05-30

Abstract:We are living in a world where information systems are becoming a new weapon to control the future. When the data flows across national borders, it becomes an invaluable resource for economic and informational development in any nation. Today, cross-border data flows are an important component of international trade because companies are frequently transfer customer’s and employee’s data across different countries. This paper will examine the importance of the free flow of cross-border data and its privacy concerns. It also examines the failure of the Information Technology Act, 2000, and the Digital Personal Data Protection Act, 2023, to provide protection from cross-border data transfer; specifically, the Digital Personal Data Protection Act, 2023, is silent on the criteria of listing countries for data transfer and the processing of personal data of those data principals who are living outside India. Some countries have implemented laws pertaining to “data localization” as a means to restrict the movement of data outside their respective borders, but it affects international trade and development. So, it raises a question: What kind of and how much data do nations have to restrict for cross-border data transfer internationally? This paper analyse the General Data Protection Regulation of the European Union, the Cross-Border Privacy Rules of the Asia-Pacific Economic Cooperation of the United States, and the Privacy Shield Framework between the EU and the US. In the end this paper concludes with suggestions for the privacy of cross-border data and the need of uniform law for its worldwide applicability.

Neha Mishra

DOI: https://doi.org/10.2139/ssrn.3689412

2020-01-01

SSRN Electronic Journal

Abstract:The unprecedented integration of digital technologies in the economic and social lives of human beings has led to strong concerns regarding the ethical use of data collected by such technologies. In response to these concerns, several intergovernmental and multistakeholder bodies as well as individual governments have started devising data ethics compliance frameworks. These frameworks integrate certain core principles such as human rights protection, ethical design, algorithmic accountability, and data privacy and security. Governments are now also imposing measures to achieve greater compliance with these core principles of data ethics including banning certain (especially foreign) data-driven applications and services; restricting cross-border transfers and processing of data; and imposing varied corporate compliance requirements for offering data-driven technologies. However, some measures aimed at protecting and promoting data ethics (Data Ethics-related Measures) can have the consequence of restricting cross-border trade, especially in digital and data-driven services and technologies. Against this background, this article assesses whether Data Ethics-related Measures are consistent with international trade law, looking at the treaties of the World Trade Organization (WTO) and several Preferential Trade Agreements (PTAs). It argues that certain Data Ethics-related Measures may be inconsistent with obligations contained in international trade agreements, including obligations on non-discrimination, market access, domestic regulation, and intellectual property protection. However, international trade law does not per se inhibit Data Ethics-related Measures. For instance, exceptions contained in international trade agreements can be interpreted to allow measures that support a human rights-centric approach to data governance. Further, rules on trade secret protection may be interpreted and applied meaningfully to balance commercial and critical public interests such as facilitating algorithmic accountability and ethical design in data-driven technologies. Finally, provisions on domestic regulation can potentially ensure that Data Ethics-related Measures are implemented in a fair and objective manner, and that technical standards and licensing requirements for data-driven digital services are transparent, objective, and not unnecessarily burdensome. However, given the legal, technological, and political uncertainties at hand, governments are unlikely to perceive trade rules as a foolproof mechanism to preserve their policy space for regulating data-driven technologies for ethical reasons. Therefore, this article explores new avenues in international trade law to accommodate data ethics norms. It argues that international trade institutions can better co-opt data ethics frameworks by facilitating enhanced high-level cooperation among countries on cross-border data transfer mechanisms as well as digital development and inclusion. For example, trade bodies, including the WTO, can proactively engage with other international, regional, and transnational or multistakeholder bodies involved in norm development in data ethics, especially on privacy/data protection, digital inclusion, and the ethical use of data in the designing and application of digital technologies. Further, where appropriate and necessary, international trade rules must acknowledge the prevailing global best practices in data-driven sectors, especially the role of multistakeholder and private technical standards and protocols in promoting ethical and robust data-driven technologies. One possible means to do so is adopting new rules at the WTO and through PTAs (especially for trade in services and electronic commerce) that recognize relevant technical standards, protocols and best practices developed by multistakeholder internet institutions and representative private sector bodies.

W.Gregory Voss,

DOI: https://doi.org/10.17323/1996-7845-2022-01-03

2022-03-15

International Organisations Research Journal

Abstract:Today, cross-border data flows are an important component ofinternational trade and an element of digital service models. However, they are impededby restrictions on cross-border personal data transfers and data localization legislation. ThisArticle focuses primarily on these complexities and on the impact of the new EuropeanUnion (“EU”) legislation on personal data protection—the GDPR. First, this Articleintroduces its discussion of these flows by placing them in their economic and geopoliticalsetting, including a discussion of the results of a lack of international harmonization of lawin the area. In this framework, rule overlap and rival standards are relevant. Once thissituation is established, this Article turns to an analysis of the legal measures that havefilled the gap left by the lack of international regulation and the failure to harmonize law:extraterritorial laws in the European Union (regional legislation) and the United States(state legislation); and data localization laws in China and Russia. Specific provisionsrestricting cross-border personal data transfers are detailed under EU legislation, as are theinternational agreements that have been invaluable in allowing flows between the UnitedStates and the European Union to continue—first the Safe Harbor, and now the Privacy Shield. Finally, in this context, the role of data governance is investigated, both in thecontext of data controllers’ accountability for the actions of other actors in global supplychains under EU law and under the Privacy Shield. Thus, this Article goes beyond the lawitself, to place requirements in the context of the globalized business world of data flows,and to suggest ways that companies may improve their compliance position worldwide.

Yuqian Lyu

DOI: https://doi.org/10.54097/cq74rw08

2023-12-31

Abstract:Every part of life, work and friendship has been inseparable from the Internet. When we casually click on the links on the network, when we need to enter personal information on the network due to work and policy, when enterprises are used to storing most of the data in the emerging cloud computing service platform, when the official website of the core departments of the country was maliciously attacked. We are facing more frequent information leakage in the era of big data. Especially with the trend of multinational corporations, regional interoperability, and the integration of the world economy, data and information can flow across borders without obstacles. Undoubtedly, cross-border business trade, project co-operation, geo-location, and server tracking are necessary, but the large amount of data recording, flow, and tracking brings great risks to personal privacy, business secrets, and the maintenance and stability of national security. As a result of the growing awareness of the risks and drawbacks of cross-border data flows, jurisdictions and regions have developed legislation and rules to balance the free flow of data and cross-border security.

Luyao Sun

DOI: https://doi.org/10.54097/ajst.v8i1.14305

2023-11-21

Academic Journal of Science and Technology

Abstract:The high importance and immense power of data, coupled with a lack of consensus on the definition of this term, have led to multiple challenges in this field. Data protection legislation can be traced back to the Enlightenment era, which explains why the EU has always regarded personal data protection as a fundamental human right. As the third generation of personal information protection legislation, GDPR not only expands the extraterritorial application effectiveness, but also strengthens the administrative sanctions function of DPA. The EU has considered commitments regarding cross-border data flows in recent trade agreement negotiations, indicating a trend towards repositioning its considerations between data protection and trade interests. The primary issue facing the regulation of cross-border data flow under the WTO framework is to clarify the applicability of GATS commitments to digital trade and cross-border data flow. At the FTA level, few trade agreements explicitly address the issue of data localization requirements. For the first time, CPTPP sought to explicitly restrict the use of data localization measures, with the exception of "legitimate public policy objectives", and this template was subsequently followed by FTA. In response to the regulation of cross-border data flow in China, scholars have put forward their own opinions from different perspectives, from the objects of learning and reference to specific suggestions.

Sarah Spiekermann,Alexander Novotny

DOI: https://doi.org/10.48550/arXiv.2005.06324

2020-05-13

Computers and Society

Abstract:From the early days of the information economy, personal data has been its most valuable asset. Despite data protection laws and an acknowledged right to privacy, trading personal information has become a business equated with "trading oil". Most of this business is done without the knowledge and active informed consent of the people. But as data breaches and abuses are made public through the media, consumers react. They become irritated about companies' data handling practices, lose trust, exercise political pressure and start to protect their privacy with the help of technical tools. As a result, companies' Internet business models that are based on personal data are unsettled. An open conflict is arising between business demands for data and a desire for privacy. As of 2015 no true answer is in sight of how to resolve this conflict. Technologists, economists and regulators are struggling to develop technical solutions and policies that meet businesses' demand for more data while still maintaining privacy. Yet, most of the proposed solutions fail to account for market complexity and provide no pathway to technological and legal implementation. They lack a bigger vision for data use and privacy. To break this vicious cycle, we propose and test such a vision of a personal information market with privacy. We accumulate technical and legal measures that have been proposed by technical and legal scholars over the past two decades. And out of this existing knowledge, we compose something new: a four-space market model for personal data.

Tanya Aplin

DOI: https://doi.org/10.5771/9783845288185-59

2017-01-01

Abstract:Digitization is one of the ground-breaking trends of this century. It is fundamentally transforming our entire economy and our society. In particular, the datafication of business processes leads to an incredibly fast and ever increasing mass of data. Such data is the blood in the veins of the digital economy. Many existing business models, but much more importantly those future business models that will drive innovation and create economic growth depend on being able to use these data. The present volume assembles the contributions to 3rd Münster Colloquium on Trading Data in the Digital Economy: Legal Concepts and Tools. In accordance with the Colloquium’s general aim, they provide for a closer analysis of the different legal concepts and tools (exclusivity rights, compulsory licences, and contractual concepts) in order to promote the discussion of several options at European level to tackle the challenges in the trade of data.

Eugénie Coche,Ans Kolk,Václav Ocelík

DOI: https://doi.org/10.1057/s42214-023-00172-1

2023-10-06

Journal of International Business Policy

Abstract:Abstract In an era of digital transformation, where data is often referred to as the ‘new oil’ of business, with data privacy and cybersecurity incidents recurrently making the headlines, international business (IB) scholars are increasingly grappling with the challenges posed by disparate data governance regulations. Recognizing the growing importance of this topic for IB research and policymaking, our paper seeks to offer a comprehensive examination of cross-country regulatory intricacies of data governance, frequently described by IB scholars as ‘complex’ and ‘pluralistic’ institutional contexts. This allows us to explore the various implications of diverse data governance regulations on international business, thus laying the groundwork for rigorous IB policy studies in this area. As a preliminary finding, we highlight a greater need for international cooperation, where both policymakers and multinational enterprises play a pivotal role. Using the EU data governance framework as an illustrative example, we structure our discussion around four policy areas of data governance: data use; data transfers; data storage; and data flows. We aim for this categorization to serve as a foundational basis for future IB research, aiding in tackling one of the most pressing digital challenges of this day and age: reconciling data privacy and security with data-driven innovation.

Erika Douglas

DOI: https://doi.org/10.2139/ssrn.3880737

2021-01-01

SSRN Electronic Journal

Abstract:Antitrust and data privacy law are powerful forces shaping our economy. Scarcely a day goes by without headline-making enforcement from one regime or the other. The result is a wealth of new interactions between these areas of law—particularly in the digital economy. This report, Digital Crossroads: The Intersection of Competition Law and Data Privacy, was written for the Global Privacy Assembly (GPA) Digital Citizen and Consumer Working Group. It seeks to identify and understand the interactions between antitrust and data privacy law around the world, drawing on the public perspectives of the agencies who enforce each area of law. It is based on a review of over 200 agency-related documents, including the relevant law, policy reports, guidance, speeches, market studies and litigation filings from numerous jurisdictions.The Report describes the nascent, varied and complex interactions appearing between these two legal realms. Though often described simply as complementary, the relationship between antitrust law, competition itself and data privacy is often much more nuanced and multi-faceted. In some areas, like merger review, new theories are taking hold that account for data privacy. In others, like antitrust remedies, there is only a nascent sense that the two realms may intersect. There remains significant room for development of theory and practice across this landscape of antitrust law and data privacy. The goal of this Report is to deepen the shared understanding of antitrust and data privacy authorities regarding the many interactions between their domains. This is a rapidly evolving area of law and policy, with great significance to consumers. It demands attention and cooperation across agency bounds to develop cohesive, effective digital enforcement strategies. The hope is that this Report will contribute to that cross-doctrinal understanding, and prompt agencies to develop shared theories, collaboration and best practices at this new digital crossroads.

Shamel Azmeh,Cristopher Foster,Jaime Echavarri,Christopher Foster

DOI: https://doi.org/10.1093/isr/viz033

2019-09-06

International Studies Review

Abstract:Abstract The global economy is experiencing the digitalization of production, exchange, and consumption of goods and services. The internet and cross-border data flows are becoming important channels of trade as more products are traded through the web or integrate features that rely on digital connectivity. Reflecting the autonomy states have to enact such policies, national variations in internet governance have expanded over the previous decade, with states increasingly looking to use internet and data policies for economic and trade objectives. These dynamics are having important implications on the international trade regime through challenging existing trade rules and creating demands for new rules. This has resulted in growing debates in the trade arena around “digital trade,” as a number of states, led by the United States, push for rules as a way to discipline national internet policies and support trade in digital goods and services. This paper examines the political economy of this campaign. We argue that the objectives of this campaign go beyond updating rules to better fit the “Internet age” into achieving further liberalization of trade in goods and services. We highlight the technological contingency of existing international rules and show how technological shifts have been a driver of competitive regime creation and forum shifting contributing to processes of fragmentation of the international trade regime.

Yi Yu,Jingru Yu,Xuhong Wang,Juanjuan Li,Yilun Lin,Conghui He,Yanqing Yang,Yu Qiao,Li Li,Fei-Yue Wang

2024-07-16

Abstract:Data has been increasingly recognized as a critical factor in the future economy. However, constructing an efficient data trading market faces challenges such as privacy breaches, data monopolies, and misuse. Despite numerous studies proposing algorithms to protect privacy and methods for pricing data, a comprehensive understanding of these issues and systemic solutions remain elusive. This paper provides an extensive review and evaluation of data trading research, aiming to identify existing problems, research gaps, and propose potential solutions. We categorize the challenges into three main areas: Compliance Challenges, Collateral Consequences, and Costly Transactions (the "3C problems"), all stemming from ambiguity in data rights. Through a quantitative analysis of the literature, we observe a paradigm shift from isolated solutions to integrated approaches. Addressing the unresolved issue of right ambiguity, we introduce the novel concept of "data usufruct," which allows individuals to use and benefit from data they do not own. This concept helps reframe data as a more conventional factor of production and aligns it with established economic theories, paving the way for a comprehensive framework of research theories, technical tools, and platforms. We hope this survey provides valuable insights and guidance for researchers, practitioners, and policymakers, thereby contributing to digital economy advancements.

Computers and Society

Zhuoru Zhang

DOI: https://doi.org/10.54097/49setj81

2024-08-08

Abstract:In the context of globalization and the rapid development of digital economy, data has become a new factor driving the development of productivity, and cross-border data flow has also become a key factor promoting international trade, investment and knowledge exchange. As two major data economies, the United States and the European Union have different legal frameworks and practice models in the management of cross-border data flows. The United States adopts a relatively decentralized and market-driven approach, regulated mainly through industry guidelines and federal and state laws. In contrast, the EU has formed a relatively unified legal system centered on personal privacy protection based on the General Data Protection Regulations (GDPR). This paper analyzes the cross-border data flow governance strategies of the United States and Europe to develop a suitable framework for China that incorporates international best practices while adapting to China's specific context. It suggests that China should learn from these advanced economies to create a flexible and effective data flow management system, ensuring a balance between data security and open communication. It also recommends enhancing China's data protection laws to align with its Civil Code and other legal systems, and advocates for China's participation in international efforts to establish global data governance standards. Ultimately, this paper outlines key considerations and strategic directions for China's future data governance strategy, offering insights and recommendations to support its modernization efforts.