Course Information
Schedules
- 15 Jul 2026 (Wed)
Registration period
4 Mar 2026 (Wed) - 14 Jul 2026 (Tue)
Price
HKD 2,500
(HKMA Member: HK$2,350
Non-member: HK$2,500
Early Bird: Less HK$200
(For those who make payment one month prior to the
course commencement)
Group Discount: HK$200 each
(For companies which send a total of two OR more
participants to this course and enroll at the same time))
(HKMA Member: HK$2,350
Non-member: HK$2,500
Early Bird: Less HK$200
(For those who make payment one month prior to the
course commencement)
Group Discount: HK$200 each
(For companies which send a total of two OR more
participants to this course and enroll at the same time))
Course Level
Study Mode
Duration
1 Day(s)
Language
Cantonese, English
Location
3/F, Tower 2, South Seas Centre, 75 Mody Road, Tsim Sha Tsui, KOWLOON
Course Overview
In this workshop, we will be providing you with an overview of China PIPL, EU GDPR and HK PDPO privacy regimes and the main privacy compliance obligations & legal requirements, such as, cross-border data transfer, handling data breach, data retention issues and addressing data subject requests in B2C and B2E context.
We will also be covering some practical aspects of data privacy practice, such as, drafting Data Processing Agreement (DPA), reviewing Standard Contract Clauses (SCCs), performing Third-Party Risk Assessment (TPRA), drafting B2C Privacy Policy and implementing a Data Breach Response Plan.
We will also be deep diving into specific topics, such as, China-HK cross-border data transfer, data breach notification law, the new Greater Bay Area Standard Contract (GBA SCC), China’s data protection legal infrastructure, including the Cybersecurity Law (CSL), Data Security Law (DSL) and Personal Information Protection Law (PIPL), Customer-related data privacy issues and Employee-related data privacy issues.
SPEAKER
The speaker is a qualified practising barrister in Hong Kong. He specializes in tech law, intellectual property, data protection law and cryptocurrency regulations. He has previously advised local and regional clients on data protection law (both HK’s PDPO and EU’s GDPR), initial coin offering (ICO), cryptocurrency-related freezing order, pre-sale token purchase agreement, cybersecurity insurance policy, SaaS agreements and bio-tech regulations. He is also building a research focus on PRC’s data protection infrastructure (including the PIPL and PRC Data Security Law). He is a member of the Hong Kong Bar Association, Chartered Institute of Arbitrators (CIArb) and PCPD’s Data Protection Officers’ Club (DPOC). From 2019 to 2021, the speaker was a Non Executive Director at Aurum (Data Governance) Consultants Limited, and has previously published articles in various tech industry magazines, e.g. JUMPSTART, CPO Magazine, IoT For All and had given talks on issues related to techfunding, startups, data protection and IoT regulations.
What You’ll Learn
CONTENTS
- Overview of PIPL, GDPR and PDPO privacy compliance requirements
- Drafting Data Processing Agreement (DPA), Standard Contract Clauses (SCCs) and performing Third-Party Risk Assessment (TPRA)
- Drafting Privacy Policy and implementing Data Breach Response Plan
- Current topics may include: China-HK cross-border data transfer, data breach notification law, the new Greater Bay Area Standard Contract (GBA SCC) and China’s data protection legal infrastructure, including the Cybersecurity Law (CSL), Data Security Law (DSL) and Personal Information Protection Law (PIPL), Customer-related data privacy issues and Employeerelated data privacy issues
