The Ministry of Commerce launches pilot program on security management for cross border data transfer

On August 14, 2020, the Ministry of Commerce (“MOC”) issued the Master Plan for Comprehensively Deepening the Pilot Program on Innovative Development of Trade in Services (“Plan”), covering 28 provinces and municipalities directly under the Central Government (regions), including Beijing, Tianjin and Shanghai, and the period for the pilot program will be three years.

The Plan proposes to:

  • establish dedicated Internet data channel in pilot areas where feasible, and the Ministry of Industry and Information Technology(“MIIT”) shall formulate relevant policies;
  • explore the classification and supervision model of cross-border data flow and carry out the pilot program for cross-border data transfer security management. Office of the Central Cyberspace Affairs Commission shall formulate relevant policies, pilot program work for cross-border data transfer security management shall be implemented in pilot areas such as Beijing, Shanghai, Hainan, and Xiong’an New Area;
  • develop cross-border services such as big data collection, storage, processing, analysis, mining and trading based on industrial Internet in pilot areas;
  • explore the rules and standards of data service collection, masking, application, trading, supervision, etc.;
  • promote the commercialization and securitization of data assets, and explore the formation of new models for trading of big data;
  • carry out security assessment on cross-border data flow in pilot areas; and
  • establish data security management mechanisms on data protection capability certification, data circulation backup review, cross-border data flow and transaction risk assessment, etc.; encourage cooperation in international cooperation on digital rules in pilot areas and strengthen the protection of data.

For more information ,please refer to http://images.mofcom.gov.cn/fms/202008/20200814092010665.pdf

 

China proposes to tighten controls on import and export of commercial cryptography products.

On August 20, 2020, the State Cryptography Administration released the Regulations for the Administration of Commercial Cryptography (Draft for Comment) (“Draft Regulations”) to solicit public opinions by September 19, 2020.

The Draft Regulations provide that, import of the commercial cryptography in the “Commercial Encryption Import License List” and export of the commercial cryptography in the “Commercial Encryption Export Control List” should be subject to the import and export license for dual-use items issued by the competent commercial department of the State Council.

According to the Draft Regulations, operators of networks and information systems such as unclassified critical information infrastructure, network of Grade III or above (under the network graded protection regime), and national government information system shall:

• use commercial cryptography for protection;

• formulate commercial cryptography application scheme;

• have necessary funds and professionals;

• plan, construct and operate the commercial cryptography safeguard system synchronously;

• carry out the security assessment on commercial cryptography application by itself or commercial cryptography testing institutions.

The above-mentioned network and information systems can be put into operation only after the security assessment on commercial cryptography application. After operation, the assessment shall be conducted at least once a year, and the assessment results shall be filed with the local municipal cryptography administrative department.

The Draft Regulations provide that operators of networks and information systems such as unclassified critical information infrastructure, network of Grade III or above, and national government information system should use commercial cryptography products and services that have been tested or certified, and use commercial cryptography technology listed in the Guidance Catalog of Commercial Cryptography Technology.

The Draft Regulations stipulate that if operators of critical information infrastructure purchase network products and services involving commercial cryptography, which may affect national security, they shall pass the national security examination organized by the state cyberspace department, the state cryptography department and other relevant departments according to the law.

For more information ,please refer to http://www.oscca.gov.cn/sca/hdjl/2020-08/20/content_1060779.shtml

 

China released the revised Catalogue of Technologies Prohibited and Restricted from Export

On August 28, 2020, the Ministry of Commerce and the Ministry of Science and Technology jointly released the revised Catalogue of Technologies Prohibited and Restricted from Export (“Catalogue”). The revisions of the Catalogue removed 4 items of technologies prohibited from export, removed 5 items of technologies restricted from export, added 23 items of technologies restricted from export, and revised technical parameters of 21 items of technologies.

It is worth noting that, in the export restriction section, the Catalogue adds “personalized information push service technology based on data analysis” and “technology of unmanned aerial vehicles”.

For more information ,please refer to http://www.most.gov.cn/kjbgz/202008/t20200828_158546.htm

 

NISSTC seeks public opinions on the Information Security Technology – Cyber-data Process Security Specification

On August 31, 2020, the National Information Security Standardization Technical Committee (“NISSTC“) issued the Information Security Technology – Cyber-data Process Security Specification (Draft for Comment) (“Draft Specification”) for public comments by October 27, 2020.

Highlights of the Draft Specification include:

Provision of data to others: Before providing data to others, network operators should conduct security impact analysis and risk assessment. If national security, public security, economic security, and social stability will be endangered, they must not provide the data to others.

Responsible person for data security: When network operators carry out business and service activities and collect important data and personal sensitive information, they should clarify the person responsible for data security and provide them with necessary resources to ensure that they perform their duties independently. The person in charge of data security should have professional knowledge of data security and relevant management work experience, participate in important decisions related to data processing activities, and perform the following duties:

a) organizing and determining the data protection catalog, formulating a data security protection plan and supervising the implementation;

b) organizing and carrying out data security impact analysis and risk assessment, and supervising the rectification of security risks;

c) reporting data security protection and incident handling to the cyberspace administration and relevant departments as required; and

d) organizing to accept and handle data security complaints and reports.

Transmission and storage: Network operators should take security measures for data transmission and storage activities, including:

a) When transmitting important data and personal sensitive information, security measures such as encryption should be adopted;

b) When storing important data and personal sensitive information, security measures such as encryption, secure storage, access control, and security audits should be adopted; and

c) The storage of personal information should not exceed the storage period agreed with the personal information subject, unless otherwise provided by laws and regulations.

The Draft Specification also provides special rules for the protection of personal information in public health emergencies. For example, in the process of providing information services, when face recognition is used as the authentication method, other authentication methods should be provided for users to choose in principle. The original image that can extract the face recognition information shall not be retained in principle when using face recognition information for identity verification.

For more information ,please refer to https://www.tc260.org.cn/front/postDetail.html?id=20200830094619

 

MIIT: No user’s consent, No commercial SMS or calls

On August 31, 2020, the Ministry of Industry and Information Technology (“MIIT”) issued the Administrative Regulations on Short Messages and Voice Call Service (Draft for Comments) (“Draft Regulations”) to seek public comments by September 30, 2020.

According to the Draft Regulations, any organization or individual shall not send commercial short messages or make commercial telephone calls to the user without his/her consent or request, or if he/she has explicitly refused to receive such SMS/calls. If the user does not explicitly agree, it shall be deemed as refusal. If the user agrees previously and explicitly refuses to accept it later, sending commercial short messages or making commercial telephone calls shall be terminated. If a short message service provider sends port type commercial short messages, it shall ensure that the relevant user has agreed or requested to receive these messages and keep the user’s consent proof for at least five months. A voice call service provider shall not make platform commercial calls, or provide communication resources, platform facilities and other conditions for organizations and individuals who make commercial calls in violation of the Draft Regulations.

For more information ,please refer to http://www.miit.gov.cn/n1146285/n1146352/n3054355/n3057709/n3057717/c8067025/content.html

 

Ministry of Culture and Tourism: Big data analysis and other technical means must not be abused to violate tourists’ rights

On August 31, 2020, the Ministry of Culture and Tourism issued the Interim Provisions on Administration of Online Tourism Business and Services (“Provisions”), which will take effect on October 1, 2020.

According to the Provisions, online tourism operators should implement graded protection system of cyber security, take management and technical measures for cyber security, formulate contingency plans for cyber security and organize regular trainings according to the PRC Cybersecurity Law and other relevant laws to ensure the normal development of online tourism business and services.

Online tourism operators shall protect the tourists’ right of comment and shall not arbitrarily shield or delete tourists’ comments on their products and services, nor shall they mislead, induce, substitute or force tourists to make comments. Comments made by tourists shall be saved and made public.

Online tourism operators should protect the security of tourists’ personal information and other data, and clearly indicate the purpose, method and scope of the collection of tourists’ personal information in advance and obtain the consent of the tourists.

Online tourism operators must not abuse technical means such as big data analysis to set unfair trading conditions based on tourists’ consumption records, travel preferences, etc., and infringe on the legitimate rights and interests of tourists.

According to the Provisions, online tourism operators refer to natural persons, legal persons and unincorporated organizations engaged in online tourism business and services, including online travel platform operators, operators on the platform, and operators who provide travel services through self-built websites and other network services.

For more information ,please refer to http://zwgk.mct.gov.cn/auto255/202008/t20200831_874550.html?keywords=

 

Six government agencies call for recommendation of national green data centers in 2020

On August 6, 2020, the Ministry of Industry and Information Technology (“MIIT”) and five other government agencies issued the Circular on Organizing and Implementing the Recommendation of National Green Data Centers (2020) (the “Circular”).

According to the Circular, all regions shall recommend a batch of well-managed and representative data centers featuring high energy efficiency and advanced technology in major application fields of data centers, such as manufacturing, telecommunications, Internet, public institutions, energy, finance, and e-commerce, in accordance with the Evaluation Indicator System for Green Data Centers.

The Circular provides four basic conditions that a recommended data center shall meet:

  1. The owner of the data center shall have independent legal person status. The data center shall have clear property rights and shall abide by relevant laws, regulations, policies and standards in the process of construction and operation. In the past 3 years (including less than 3 years of establishment), it has had no major safety incidents, environmental protection incidents or other incidents, and no other serious illegal or untrustworthy conducts decided by judicial or administrative agencies;
  2. The data center shall have a clear and complete physical boundary, independent power supply and distribution, and a cooling system that meet the requirements of theAction Plan for Green and Efficient Refrigeration and has been officially operating for one or more consecutive years as of the application date;
  3. The construction and layout shall meet the requirements of the Guiding Opinions on the Construction Layout of Data Centers, and meet the requirements of the local construction planning and other local laws and regulations; and
  4. It is not included in the list of Special Supervision and Rectification for the Energy Efficiency of the Industrial Energy Conservation Supervision Data Center in 2019.

For more information ,please refer to http://www.miit.gov.cn/n1146295/n1652858/n1652930/n3757016/c8045053/content.html

 

China issues the Guide to the Building of National Standard Framework for New Generation Artificial Intelligence

On August 7, 2020, the Standardization Administration and other four government departments issued the Guide to the Building of National Standard Framework for New Generation Artificial Intelligence (“Guide”).

According to the Guide, the framework of standards for artificial intelligence includes eight aspects, namely basic generality, supporting technology and products, basic software and hardware platforms, key general technologies, technologies in key fields, products and service, industry application and safety/ethnics.

The Guide requires that, the top-level design of artificial intelligence standardization should be clarified by 2021, when more than 20 key standards in key general technologies, technologies in key fields, ethics, etc. have been preliminarily researched. By 2023, an artificial intelligence standard system should have been initially established, focusing on the development of key and urgently needed standards such as data, algorithms, system services, and taking the lead in manufacturing, transportation, finance, security, home furnishing, elderly care, environmental protection, education, healthcare, justice and other key industries and fields.

For more information ,please refer to http://www.miit.gov.cn/n1146285/n1146352/n3054355/n3057497/n3057502/c8048365/content.html

NISSTC seeks public opinions on its proposed national standards to identify the boundaries for Critical Information Infrastructure

On August 10, 2020, the National Information Security Standardization Technical Committee (“NISSTC”) released the Information Security Technology – Method of Boundary Identification for Critical Information Infrastructure (Draft for Comment) (“Draft Method”) to seek public opinions.

The Draft Method provides that, boundary identification for critical information infrastructure (“CII”) deals with further analysis and sorting after the competent authority’s identification of the critical business, which the CII operator will identify the network facilities and information systems that are indispensable for the continuous and stable operation of the critical business for the purpose of providing a basis for the protection, review, and emergency response.

The Draft Method provides six factors that should be considered in identifying the boundaries of CII: critical business, network facilities, information system, critical business information, critical business information flow, and basic operation environment.

  • Critical business is the core element and the basis for boundary identification of CII;
  • Critical business information is an indispensable information resource for the normal operation of critical business, and also a bridge and link for network facilities and information system to support the informatization for critical business;
  • Network facilities and information system design, collect, integrate, process, present, apply, store and destroy critical business information according to business operation logic and functions to support the automated, intelligent and efficient operation of critical business;
  • Critical business information flow is the flow process in the whole life cycle of critical business information. By sorting out the critical business information flow, network facilities and information systems supporting informatization for critical business can be obtained;
  • Basic operation environment refers to the safety equipment, safety measures, rules and regulations, machinery, plant, water, electricity, etc. supporting basic operation for critical business.

For more information ,please refer to https://www.tc260.org.cn/front/bzzqyjDetail.html?id=20200810142946595318&norm_id=20200112070029&recode_id=39652

 

NISSTC seeks public opinions on the Method for Evaluating Security Protection Capabilities of Critical Information Infrastructure

On August 10, 2020, the National Information Security Standardization Technical Committee (“NISSTC”) issued the Information Security Technology – Method for Evaluating the Security Protection Capabilities of Critical Information Infrastructure (Draft for Comment) (“Draft Method”) for public comments by October 9, 2020.

The Draft Method provides that the evaluation of security protection capabilities of critical information infrastructure (“CII”) includes three parts: capability domain level evaluation, graded protection evaluation, and cryptography evaluation. Before the evaluation of the security protection capability of CII, the CII should first pass the corresponding graded protection evaluation and related cryptography evaluation. Then, the organization should carry out the evaluation according to the evaluation content and evaluation operation method, give the judgment result and grade of each evaluation index, get each capability domain level, and finally obtain the security protection capability level of critical information infrastructure based on the evaluation results of capability domain level and graded protection.

For more information ,please refer to https://www.tc260.org.cn/front/bzzqyjDetail.html?id=20200810142946548146&norm_id=20200112070019&recode_id=39650

 

MIIT seeks public opinions on Guidelines on the Construction of Data Security Standard System in Telecom and Internet Industries

On August 11, 2020,the Ministry of Industry and Information Technology (“MIIT”) issued the Guidelines on the Construction of Data Security Standard System in Telecom and Internet Industries (“Draft Guidelines”) to seek public opinions.

According to the Draft Guidelines, the data security standard system of telecom and Internet industries includes four categories of standards, namely the standards for basic generality, critical technologies, security management and critical fields:

  • the standards for basic generality include definitions of terms, data security framework, and data category and classification;
  • the standards for critical technologies deal with data security technology from the dimensions of the entire life cycle, including data collection, transmission, storage, processing, exchange, and destruction;
  • the standards for security management include data security specifications, data security assessment, monitoring and early warning and handling, emergency response and disaster backup, and security capability certification; and
  • the standards for critical fields mainly include 5G, mobile Internet, connected-car, Internet of Things, Internet of Industry, cloud computing, big data, artificial intelligence, blockchain and other critical fields.

For more information, please refer to http://www.miit.gov.cn/n1278117/n1648113/c8050746/content.html

 

The Ministry of Justice: To strengthen protection of trade secrets and confidential business information in administrative licensing

On August 14, 2020, the Ministry of Justice (“MOJ”) issued the Guiding Opinions on Strengthening the Protection of Trade Secrets and Confidential Business Information in Administrative Licensing (Draft for Comment) (the “Draft Opinions”) for public comments by September 30, 2020.

The Draft Opinions provide that applicants for administrative licenses shall expressly indicate their trade secrets pursuant to the Anti-Fair Competition Law or other laws or regulations, as well as their business information that are needed to be kept confidential when making an administrative license application to an administrative authority, and correctly identify the scope of confidentiality.

When applicants submit the application materials to the administrative authorities, they must clearly indicate the key points of confidentiality, and not generally regard all materials as trade secrets and confidential business information. Such information should be clearly marked on the first page of the paper-based or electronic materials submitted and the key points of confidentiality.

For more information, please refer to http://www.moj.gov.cn/government_public/content/2020-08/14/657_3254208.html

 

Shandong Province releases classification management rules on health care big data

On August 25, 2020, the People’s Government of Shandong Province issued the Measures for the Management of Health Care Big Data in Shandong Province (the “Measures”), which will take effect on October 1, 2020.

According to the Measures, health care big data falls into three categories:

  • health care data involving trade secrets, personal privacy or other types of data which are not allowed to be accessed according to laws and regulations shall be categorized as inaccessible data;
  • health care data with higher requirements for data security, processing capacity, and timeliness or that needs to be acquired continuously shall be categorized as conditional accessible data; and
  • health care data other than the above two categories shall be categorized as unconditional accessible data.

The Measures also stipulate that:

  • for unconditional accessible data, citizens, legal persons and other organizations can access it through the health care big data platform.
  • for conditional accessible data, health care big data management institutions and data using organizations should sign data using agreements to access the data. The agreement shall specify the scope, conditions, data products, confidentiality responsibilities and security measures, etc. of the data.
  • for inaccessible data, it can be accessed after the consent of the relevant obligees or after the desensitization and declassification, unless otherwise provided by laws and regulations.

For more information, please refer to http://www.shandong.gov.cn/art/2020/8/25/art_107851_108458.html

 

If you would like to receive our legal update via email, please contact jianghongyu@anjielaw.com.

 

For more information, please contact:

Samuel Yang | Partner

AnJie Law Firm

P: +86 10 8567 2968

M: +86 1391 0677 369

E: yanghongquan@anjielaw.com

Hongquan (Samuel) Yang is a partner with AnJie Law Firm. He has worked as in-house counsel and external lawyer in the technology, media and telecoms (TMT) sectors for nearly 20 years and is regarded as a true expert in these areas. He advises clients on a wide range of regulatory, commercial and corporate matters, especially in telecommunications, cybersecurity, data protection, internet, social networking, hardware and software, technology procurement, transfer and outsourcing, distribution and licensing, and other technology-related matters. He also advises clients on compliance and investigation matters.

Samuel has been recognized as a Leading Individual in PRC TMT firms (Legal 500, 2020), a Band 1 Cyber Security & Data Protection Lawyer (LEGALBAND, 2019, 2020) and one of the Top 10 Cyber Security and Data Protection Lawyers in China (LEGALBAND, 2018). Legal 500 commented that Samuel and his team at AnJie have a particular strength in “telecom-related regulatory and general commercial legal services” and “issues such as cyber security and data protection areas” and have “built a real niche” in these areas.

Samuel mainly serves Fortune 500 companies, large state-owned enterprises and leading Chinese internet companies. Samuel is a regular contributor to many legal journals and his publications regarding Chinese data protection and cybersecurity laws are well-received and widely reproduced.

Before joining AnJie, Samuel worked for British Telecom, CMS and DLA Piper.

 Author:Hannibal El-Mohtar   Agnes Wang

 

(Attribution: Ravi Kant)

I. How can Hong Kong and foreign insurers currently sell insurance to MainlandChina?

Despite the COVID-19 pandemic, many Mainland residents find foreign insurance policies more attractive than those found in the mainland and continue to cross borders to get their hands on them.

Take Hong Kong for example. The Provisional Statistics of Hong Kong Insurance Industry in the First Quarter of 2020 released by the HK Insurance Authority shows that new office premiums in respect of policies issued to Mainland visitors amounted to $5.4 billion in the first quarter of 2020.

Despite their popularity, when mainlanders purchase HK insurance products, there is a unique set of risks associated with the agreement for all parties concerned. In 2016, the China Insurance Regulatory Commission (“CIRC” the predecessor of the China Banking and Insurance Regulatory Commission, “CBIRC”) issued a risk reminder for Mainland citizens regarding purchasing insurance products in Hong Kong. Specifically, it warned Mainland citizens that:

  • Policies issuedby Hong Kong insurers are not protected by PRC legislation;
  • Risks of changes to PRC or other laws applicable to foreign exchange should not be ignored;
  • There is uncertainty with regard to investment-kind policy yields.

Moreover, CIRC’s warning included a notice for mainland insurance intermediaries. A special 2016 campaign was launched to crack down on the illegal promotion of Hong Kong policies in Mainland China. At least one Mainland insurance intermediary has been sanctioned for illegally promoting or selling foreign insurance products in the Mainland, see Shanghai Banking Insurance Regulatory Insurance Punishment Juezi [2019] No. 36.

Hong Kong insurers, for their part, face risks in navigating restrictions on the PRC’s insurance market access. They are for the most part eager to provide their services to prospective Mainland clients in the PRC’s thriving insurance market. However, like other foreign insurers, they cannot directly sell insurance products unless they have successfully established a joint venture or wholly foreign-owned enterprise (“WFOE”) insurance company in Mainland China.

II. Why is the Insurance Connect Significant for HK and Foreign Insurers?

Through the Greater Bay Area Insurance Connect (the “GBA IC”) Shenzhen will become a unique foothold for Hong Kong insurers serving Mainland clients. The GBA IC allows them to provide post-sale services to Mainland policyholders thanks to unique insurance market access permissions granted specifically to Shenzhen. So far, what is known is that under the GBA IC , two service centers (the “Service Centers”) will be established in Shenzhen — plus one other city, to be determined — featuring “counters for Hong Kong insurers” (the “Service Counters”). The Hong Kong Federation of Insurers, the industry body in Hong Kong, will take the lead in renting office space in each of these two cities. HK-based insurers will then be allowed to set up Service Counters in these Service Centers to serve policy holders living in the Greater Bay Area (the “GBA”). This will allow GBA policyholders to pay premiums for their policies, and modify their personal details under their policies without entering Hong Kong.

Why is this significant? Shenzhen is increasingly sharing Hong Kong’s role as a GBA financial hub. To understand how significant this step is, let’s place this development in context.

Shenzhen already had more financial autonomy than other Chinese cities since it became China’s first special economic zone (“SEZ”) in 1980 (see 1980 Guangdong Special Economic Zone Regulations 广东省经济特区条例).

Shanghai’s dominant status as China’s financial hub has not lessened Shenzhen’s own ambitions as a financial services center. A month after Shanghai’s stock exchange (the “SSE”) reopened, Shenzhen established its own in December 1990 (the “SZSE”). To this day the SZSE remains the only exchange in Mainland China besides the SSE. Note that since 2014, both have been connected with each other and Hong Kong through the Shenzhen/Shanghai-Hong Kong Stock Connect (the “Stock Connect). More recently, in 2017, an announcement making Shenzhen into the “first pilot city for the development and innovation of insurance” (Shenzhen Insurance Regulatory Commission (2017) No. 14, the SIRC Announcement) was promulgated.

In 2019, Shenzhen received additional consideration as a financial center after being designated China’s “Model City” through the Opinions of the Central Committee of the Communist Party of China on Supporting Shenzhen’s Pioneering Zone for Building Socialism with Chinese Characteristics (2019 Shenzhen Opinions, 中共中央 国务院关于支持深圳建设中国特色社会主义先行示范区的意见). Under para 5 of the Shenzhen Opinions, the Central Committee encouraged the city to promote interconnection and mutual recognition of financial products with Hong Kong and Macao’s financial markets.

In line with the city’s plans for financial reforms, an announcement from this year announcements shows Shenzhen is now set to become a “pilot city” for the development and innovation of the insurance sector in China. On April 24, 2020, the People’s Bank of China, CBIRC, the China Securities and Regulatory Commission, and the State Administration of Foreign Exchange (“SAFE”) released the Opinions on Financial Support to the Construction of Guangdong-Hong Kong-Macao Greater Bay Area [Yin Fa 2020, N. 95] (the “Financial Support Opinions”).

According to the Fiancial Support Opinions, Hong Kong and Macau insurers will be invited to conduct pilot operations in GBA cities, paving the way for the further opening up of China’s insurance market. In addition, it will facilitate the GBA insurance business for HK/Macau insurers and facilitate GBA financial consumers’ access to HK/Macau insurance products.

Actioning these earlier goals, the GBA IC therefore represents a concrete step towards greater market access for Hong Kong insurers. It builds on the Financial Support Opinions, the Shenzhen Opinions, and the SIRC Announcement on becoming a “pilot” city for insurance innovation and development. It is also a feather in Shenzhen’s cap; putting these previous goals into practice is an important confirmation of the city’s direction and its promise as an insurance hub.

Note that as stated, the new GBA insurance regime will not make market access much easier than before for HK capital. At present, it only refers to post-sale transactions. Nevertheless the GBA IC and its integration with, among others, the policies mentioned in the Financial Support Opinions, will certainly make the GBA a more attractive place for foreign capital.


(Attribution: Aline Nadai)

III. How does Shenzhen now compare with Beijing and Shanghai for establishing an Insurance WFOE?

Market Access

When compared to Beijing and Shanghai, Shenzhen’s market access reforms are leading and offer the greatest potential for preferential treatment for foreign insurers. This section examines Beijing and Shanghai’s market access reforms, and then compares them with Shenzhen’s new foreign investment regime.

Beijing

Recent measures build on Beijing’s role as a China’s financial management center and make the city a more favorable site for investing foreign capital in the financial services and insurance sectors. For one, Beijing is the only city in the comprehensive pilot project for the extensive opening-up of the professional services industry. In 2015, the State Council issued the Reply on Approving the Overall Plan for a Comprehensive Pilot Project in Further Opening-up of the Service Industry in Beijing Municipality (国务院关于北京市服务业扩大开放综合试点总体方案的批复, the “2015 Beijing Reply”), which allows Beijing to test a wide range of innovative opening-up policies. This Reply laid out the plans for the further opening-up of Beijing’s service industry, whereby the establishment of foreign-funded professional health and medical insurance institutions would be supported. Since then, the State Council has issued two replies in 2017 and 2019 (the “2019 Beijing Reply”), with the latter putting forward a three-year plan for reform and encouraging professionals in finance to work in the city. These Replies indicate the national government’s past and continued support for expanding Beijing’s role as a financial services center.

Beijing has also been proactive in implementing more permissive rules on foreign ownership in the finance and insurance sectors. In June 2020, the Beijing Municipal Commerce Bureau published the Beijing Action Plan for New Opening-Up Measures (北京市实施新开放举措行动方案,the “Beijing Action Plan”), taking “further opening-up of the financial sector” as a “key task”. Regarding how to further open up the financial sector, the document clearly states that life insurance companies, together with securities companies, fund management companies and futures companies can be fully owned by foreign capital, and foreign insurance institutions can establish health insurance and pension companies in Beijing. Note however that this latter item, permitting full foreign ownership of insurance companies and their provision of pension and life insurance policies, is the implementation of China’s new foreign investment policy as of April 1, 2020 (see our China and the GATS article). It is not a Beijing-specific policy pilot; rather this is expected to eventually be applied by all sub-national jurisdictions in China.

Beijing’s airport districts are also set to become pilot areas for certain financial reform programs. Use of airports to this end is mentioned explicitly in the 2019 Beijing Reply. For Daxing Airport Free Trade District (Beijing), a list for institutional innovations is now available. The list contains 81 measures which involve nearly all governmental institutions responsible for the reform of the District. There are several innovation measures marked as “strong implementability” in the list, among them encouraging foreign investment in the financial sector.

Shanghai

Historically, Shanghai has been a pilot zone for testing market access liberalization for financial services. For a time, Shanghai was the only city where foreign insurers could operate (see China’s first Schedule of Commitments to the GATS, 1994, and our analysis of China and its GATS insurance commitments).

The past decade has been no exception. When the Shanghai FTZ was founded in 2013, one of the opening up measures included providing special market access for foreign-invested specialized health and medical insurance institutions (as a testament to this pilot’s success, such market access has now been extended to cover most of China). Shortly thereafter in 2014, the CIRC issued 2 notices on supporting the development of the Shanghai FTA, which included 11 measures in the insurance sector.[1] A notable development, Shanghai was also the site for the WFOE insurance holding company in China, Allianz insurance, four years earlier than initially planned. As recently as August 2020, Tesla registered with AMR for its own insurance brokerage in Shanghai to support insurance policies for Tesla owners.

Within Shanghai, the city’s Lingang area will be the site for important policies to encourage insurance investment going forward. Under the Lingang Measures, Shanghai will support foreign funds to set up holding or wholly owned life insurance companies (in addition to securities, fund management, and futures companies), as well as form joint ventures. In 2020, new policies regarding Lingang New Area (Several Measures for Comprehensively Promoting the Financial Opening and Innovative Development of Lingang Special Area of China (Shanghai) Pilot Free Trade Zone/全面推进中国(上海)自由贸易试验区临港新片区金融开放与创新发展的若干措施) take this development a step further. Paragraph 4, specifically, indicates additional support for market access for foreign insurers, with the government “[s]upporting the establishment of foreign-controlled or wholly foreign-owned personal insurance companies.” Moreover, a February 2020 circular encourages insurance asset management companies to set up specialized asset management subsidiaries in Shanghai (para 10), and opens the door to pilot the permitting of insurance funds to invest in gold, oil and other commodities on a trial basis in Shanghai. It also encourages, generally, insurance institutions to invest in science and innovation investment funds in the Lingang area (para 1) (Yinfa [2020] No. 46).

Most recently, Shanghai has announced ambitious development plans for its Hongkou district, intending to replicate “China’s Wall Street” along the North Bund waterfront to drive economic growth in the aftermath of COVID-19 (the “Hongkou Plan”). The development includes plans to attract 100 major companies, particularly in the finance sector, to the North Bund’s Hongkou area. This follows an earlier March announcement that Shanghai authorities would strive to bring 40 new regional headquarters for multinationals into the city and further open up controlled sectors, including insurance, as a part of its post-COVID recovery plans.

Comparison with Shenzhen

Despite Beijing and Shanghai’s support for reforming and opening up their financial services and insurance sectors, neither of these cities’s commitments match the level of detail available in Shenzhen commitments. Nor do they appear to share the same promise as the GBA, and particularly Shenzhen, for insurers’ current and future market access.

Many of the most promising elements in Shanghai’s Lingang Measures and the Hongkou Plan remain non-specific. The provisions of Yinfa [2020] No. 46 are encouraging, especially for insurance institutions planning on investing in commodities or science and innovation. However they have not yet been put into action and more details are needed to properly weigh the effects of measure. The same can be said for the other measures within the Hongkou Plan, which are even more general.

For its part, Beijing has similarly sent encouraging signals that it intends to pilot market access schemes that are beneficial to foreign insurers, but concrete policies have yet to be put into place. The role given to airport districts for financial reform, in particular, is one to watch.

Comparing the three cities, we can now see that while each has sent strong signals in favor of piloting greater market access benefits for foreign insurers, Shenzhen leads the pack and may go the furthest distance in implementation. Through the GBA IC, the Shenzhen and GBA authorities are already implementing the Financial Support Opinions, Shenzhen Opinions, and SIRC Announcement policies to bring greater market access to foreign insurers, especially for insurers based in Hong Kong. Although Shanghai’s expected Lingang pilots encouraging commodity, science, and innovation investments by insurers may end up being more preferable to insurance institutions with a strong interest in these sectors, Shenzhen still offers the most insurance-specific measures. Thus while the GBA IC is currently limited to post-sales services, placed in its proper context, it becomes clear that this is a greater priority for Shenzhen than for other cities and will be the first of many market access pilots to come.

Foreign Exchange

Among the three cities, Shenzhen’s foreign exchange measures are the most encouraging. This section examines and compares the foreign exchange policies of Shenzhen, Shanghai, and Beijing in turn.

Shenzhen

Currency traders within the city limits of Shenzhen enjoy special foreign exchange privileges. Under the supervision of the People’s Bank of China and SAFE, Shenzhen is the first mainland city to progressively liberalize the conversion of foreign capital into the Yuan. Expanded from the city’s initial Qianhai district Free Trade Zone Yuan Convertibility Pilot to now extend across all of Shenzhen, this program moves the city away from the mainland’s approval-based system. This allows settlement of exchanges within minutes, rather than hours. This is in line with  the above-described Financial Support Opinions. The above-described 2019 Shenzhen Opinions also encourage Shenzhen’s role in internationalizing the Yuan.

According to the Financial Support Opinions, there are other plans beneficial to the introduction of foreign capital generally. This includes facilitating cross-border capital pooling and the establishment of a bank account system integrating the Yuan and foreign currencies.

Most recently, in June 2020, SAFE further approved a reform to allow eligible banking institutions in Shenzhen to support mobile foreign exchange transactions for cross-border currency conversions (facilitating payments both for Chinese workers abroad and foreigners in China).

Shanghai

Shanghai will also begin experimenting with pooling foreign capital.  Under the Several Measures for Comprehensively Promoting the Financial Opening and Innovative Development of Lin-gang Special Area of China (Shanghai) Pilot Free Trade Zone (the “Lingang Measures“, 全面推进中国(上海)自由贸易试验区临港新片区金融开放与创新发展的若干措施), unveiled on May 8th, 2020, the Lingang New Area of the Free Trade Zone will pilot a cross-border capital pool.

Shanghai will also support foreign funds seeking to invest in pension management and wealth management firms in Lingang. Note that one of the five basic objectives of the Shanghai FTZ, when it was founded in 2013, was “[to] deepen opening up and innovation of the financial sector.” Lingang will also host an integrated account system for local and foreign currencies. Previously, multinational companies operating in China needed to open separate Yuan (managed by the People’s Bank of China) and foreign exchange accounts (under the management of SAFE). This was a burden on capital collection and payment.

Beijing

Daxing Airport Free Trade District is one of the many recent examples of Beijing’s foreign-exchange initiatives, and indicates that Beijing intends to compete seriously to become a favorable destination for foreign capital. In April, the Beijing Department of SAFE released the Implementing Rules on Foreign Exchange Reform of Daxing Airport Free Trade District (Beijing)( 中国(河北)自由贸易试验区大兴机场片区(北京区域)外汇管理改革试点实施细则). About 9 new measures in the foreign exchange sector are planned to be implemented in the Daxing Airport Free Trade District (Beijing), including allowing the implementation of facilitating services for the payment of foreign exchange income from capital account; relaxation of the requirements that the contract currency, withdrawal currency, and repayment currency for cross-border financing must be consistent; and simplification of the registration, modification and cancellation procedures relating to direct investment.

Comparison

After examining each city’s regime, we can now see why Shenzhen’s foreign exchange reforms are the most encouraging. While each city offers promises of preferential forex pilots going forward, Shanghai and Beijing’s remain in the planning stages whereas some important foreign-exchange policies have already been successfully implemented in Shenzhen. Specifically, the completed Yuan convertibility pilot and SAFE’s approval of mobile forex support in Shenzhen both remove significant burdens for transactions requiring foreign exchange within the city limits.

However, Shanghai’s programs are not far behind. Its Lingang integrated local/foreign currency account system is a pilot to watch for, as is the expected Lingang capital pool.

Taxes

Shenzhen’s tax environment appears to be the most favourable for foreign insurers considering entering establishing a headquarters in mainland China.

As a GBA city, Shenzhen benefits from Guangdong’s preferential income tax policy for foreigners. The Ministry of Finance (MOF) and the State Administration of Taxation (SAT) issued Caishui [2019] No. 31 on March 14, 2019 (the “2019 GBA Circular”). The 2019 GBA Circular allows foreign talents working in GBA cities like Shenzhen to benefit from a tax rebate covering taxes in excess of 15% of their Individual Income Tax (“IIT”). The 2019 GBA Circular ends on December 31, 2023.

[Source: Department of Commerce of Guangdong Province, 2020 Invest Guangdong]

Measures for the other two cities are positive but non-specific. In Shanghai, there have been some generally favourable announcements applicable within the Lingang area, but they remain general in nature. Specifically, under No.6 (9) of the Lingang Measures, overseas high-end and urgently-needed talents working in Lingang will be allowed to benefit from certain IIT subsidies. A similar claim is made in the 2020 Shanghai Foreign Investment Guide (p. 59), which specifies that financial professionals are eligible for this subsidy, but otherwise does not provide particulars. Beijing, for its part, does not appear to have implemented or announced preferential IIT tax measures of this nature.

Shenzhen also benefits from Guangdong province’s preferential foreign investment awards. On August 21, 2020, Guangdong issued the revised version of the Policies and Measures of Guangdong Province on Further Expanding Opening-up and Actively Attracting Foreign Direct Investment (Ten Policies and Measures for Foreign Investment). One enumerated incentive is an award (one-time) of 30% of a foreign investor’s financial contribution made when establishing a regional or national headquarters within Guangdong. Beijing and Shanghai do not offer such an award.

Administration

 The financial costs for WFOE formation will be similar across Shenzhen, Beijing, and Shanghai, although local requirements and processing standards may lead to slightly faster service depending on the city.

Across Beijing, Shenzhen, and Shanghai, some interactions with SAMR are moving online. In each of these cities, the Application Form for Foreign Funded Enterprises in China (在中国设立外资企业申请表) is being replaced by SAMR-administered online forms. For example, the Shanghai form (the “one window, one form”, exclusively in Chinese) is available on the Shanghai government’s website.[2] Similarly, Shenzhen has its own online portal, [3]as does Beijing.  This “one window, one form” policy is in line with a broader push by the Chinese government to improve the country’s business environment and lessen bureaucratic red tape. [4]

Once the greatest hurdle is cleared, namely of getting approval from CBIRC, each city provides relatively similar processing times:

 

Statutory time limit

(Working day)

Promised time limit

(Working day)

Shanghai 15 1
Shenzhen 7 1
Beijing 15 3

 

Note that when establishing a WFOE, an applicant must already have possession of an office address within the desired city at the time of application. Planning ahead on how to satisfy this administrative requirement will help avoid costly delays in company formation.

(Attribution: Matheus Natan)

Data

For data management and control, an important consideration for insurers entering China, the applicable laws are national. The Guidelines on the Information System Security Management of Insurance Companies(2011)/ 保险公司信息系统安全管理指引, together with the Cyber Security Law, apply with equal force in Beijing, Shanghai and Shenzhen.

As such data management rules should not be a factor in how a foreign insurer evaluates individual cities for its market-entry analysis.

Conclusion

For decades now, Beijing, Shanghai, and Shenzhen have attracted significant foreign investment in the financial and insurance sectors.

However, in light of Shenzhen’s recent pilots and reforms, in particular the GBA IC, it is now the most favourable destination for foreign insurers seeking to establish a WFOE in mainland China. In terms of market access, foreign exchange controls, and tax policies, the city has shown the greatest level of initiative and implemented the greatest number of preferential policies that benefit foreign insurance institutions.

Nevertheless, this does not mean that insurers already based in Beijing and Shanghai should relocate to Shenzhen. Both Beijing and Shanghai have clearly demonstrated that they intend on piloting their own reforms in these areas. Additionally, as China’s “Model City”, many pilots that succeed in Shenzhen are, eventually, well-received in other cities. Thus the above-described competitive advantages in Shenzhen may, relative to cities like Shanghai and Beijing, be temporary. That said, developing a dynamic and robust insurance sector is clearly a priority for Shenzhen, and its special support from both the state and provincial levels, combined with its proximity to well-established players in Hong Kong’s own insurance sector, allow it to act on that priority in exceptionally promising ways.

 

[1]Please refer to:

1)Notice of the CIRC on Supporting the Development of the China (Shanghai) Pilot Free Trade Zone/保监会支持中国(上海)自由贸易试验区建设的通知

2) Notice of the General Office of the CIRC on Further Simplifying Administrative Examination and Approval to Support the Development of the China (Shanghai) Pilot Free Trade Zone/中国保监会办公厅关于进一步简化行政审批支持中国(上海)自由贸易试验区发展的通知

3) Administrative Measures of the China (Shanghai) Pilot Free Trade Zone for the Record-Filing of Insurance Institutions and Senior Management Personnel/中国(上海)自由贸易试验区保险机构和高级管理人员备案管理办法

[2]Shanghai Municipal Government, “上海市开办企业 ‘以窗通‘网上服务”. Due to the presence of its free trade zone, Shanghai was able to pioneer online registration for companies doing business in areas not on the negative list before any other administrative area.

[3]Shenzhen Municipal Government, “深圳市开办企业 ‘一窗通‘网上服务”, online: <https://amr.sz.gov.cn/aicmerout/jsp/gcloud/giapout/industry/aicmer/processpage/step_prewin.jsp>.

[4]Dezan Shira & Associates, “Shanghai Business Registration: Online Platform for Foreign Invested Enterprises Launched” China Briefing, August 22, 2018, online: <www.china-briefing.com/news/shanghai-business-registration-online-platform-foreign-invested-enterprises-launched/>

 

Have questions about accessing China’s insurance market? Anjie is a Chambers ranked, Band 1 law firm for PRC Insurance law, and has the largest insurance practice in mainland China  

Feel free to send consultation requests to An Na (anna@anjielaw.com) or An Chencheng (anchencheng@anjielaw.com).

Authors: Zhan Hao, Song Ying, Yang Zhan

In June 2020, the Anti-Monopoly Bureau of the State Administration for Market Regulation (“SAMR”) published a new book, the 2019 Compilation of Antitrust Regulations and Guidelines, which contains four previously unpublished guidelines covering the automotive sector, intellectual property rights, leniency policy, and commitments by undertakings. The Guidelines on Leniency for Horizontal Monopoly Agreements (the “Leniency Guidelines”) detail SAMR’s leniency policies towards horizontal monopoly agreements (cartels) under China’s antitrust law system.

Monopoly agreements by competitors are generally highly secretive, and with the exception of extreme scenarios, the parties to such agreements lack an incentive to whistle-blow to the competition authorities. SAMR’s leniency policy is formulated to encourage such parties to voluntarily self-report and hand over substantive evidence, by granting them exemptions or fine reductions.

In China, Article 46 of the Anti-Monopoly Law (the “AML”) provides that, where an operator who is engaged in a monopoly agreement voluntarily reports said monopoly agreement and provides material evidence thereof to the authorities, that party could be eligible for a reduction or exemption from punishment. Inter alia, Articles 33 and 34 of the Interim Provisions on Prohibiting Monopoly Agreements (the “Interim Provisions”) promulgated by SAMR further clarify how reductions or exemptions from penalties apply, define “material evidence”, and set out factors used to “mark” an applicant for consideration by the authorities.

Preparations for the Leniency Guidelines by anti-monopoly authorities go back as far as 2015. In June 2015, the Office of the Anti-Monopoly Commission of the State Council (the “Office”) organized the three former antitrust enforcement agencies, i.e. the Ministry of Commerce, the National Development and Reform Commission (“NDRC”) and the previous State Administration for Industry and Commerce to Draft the Leniency Guidelines. In February 2016, the National Development and Reform Commission released the Draft Leniency Guidelines to solicit public comments. In February 2017, the Office revised the Draft Leniency Guidelines based on the opinions of the members and experts of the Anti-Monopoly Commission under the State Council. Due to the administrative re-structuring of the State Council, in August 2018, certain provisions of the Draft Leniency Guidelines were further amended. Upon approval of the Anti-Monopoly Commission under the State Council, the Leniency Guidelines were officially issued on January 4, 2019, and then published along with the other three guidelines in the above-mentioned book.

The current Leniency Guidelines provided relatively specific guidance to SAMR and market players regarding how SAMR’s leniency policy should be implemented. Specifically, it establishes a “marker” system with different fine reduction “levels”. It clarifies the requirements for obtaining leniency, reporting procedures, and practices for the submission of material evidence. It also provides guidance to enforcement agencies on leniency application reviews. Compared to the previous draft version, there are several changes in the application and review procedures, and specific requirements to which the operators should pay more attention if applying for leniency in an antitrust investigation. This article elaborates on the main highlights and implications of the Leniency Guidelines below. 

I. Application scope of the leniency policy

The leniency policy applies only to horizontal monopoly agreements concluded between competitors as defined under Article 13(1) of the AML. Vertical monopoly agreements and abuse of market dominance are not applicable. It also should be noted that not all the applicants under the leniency policy will be fully exempted from penalties. The Leniency Guidelines provides that if an operator organizes or forces other operators to participate in reaching or implementing monopoly agreements, or impedes other operators from terminating their illegal conduct, the authority will not grant an exemption but can instead allow a limited penalty reduction. Penalty reduction or exemption is generally applied against fines imposed on the parties to a monopoly agreement, but will not allow such parties to keep ill-gotten gains under their agreement.

II. When are operators entitled to apply for leniency?

The time limit for operators to apply for leniency is not very strict. Operators are entitled to apply for leniency (i) before the enforcement agency initiates a case or launches an investigation procedure under the AML, or (ii) after the enforcement agency initiates a case or launches an investigation procedure but before issuance of a prior notice on administrative penalty by the authorities.

III. Application report and “key evidence” required for the leniency application

When a party applies for a leniency, the following documents are required: the application report and “key evidence”. If the authority decides not to grant the leniency, it will not determine the illegal acts based on the relevant materials filed by parties for the purpose of leniency application.

  1. Application report

For the first applicant, the application report must include:

  • Basic information of the parties to the monopoly agreement, including but not limited to name, address, contact details, and representative.
  • Description and main content of the monopoly agreement, including but not limited to time and place that the agreement is reached or implemented, main content, specific participants, and what stage the operators reached in agreeing to and implementing the agreement.
  • Geographical scopeand market scale affected the agreement.
  • Duration of the agreement’s implementation.
  • Explanation of the evidence.
  • Whether the party has applied for a leniency in other jurisdictions.

For subsequent applicants, the application report shall cover participants of the monopoly agreement, products or service involved, time and place that the agreement is reached or implemented.

  1. Key evidence

The Leniency Guidelines clarify that, for the first applicant, key evidence refers to the materials that the enforcement agencies have not collected yet and would be sufficient to trigger initiation of an investigation, or (if they have already initiated the case or launched the investigation procedure) sufficient for agencies to find a monopoly agreement.

For subsequent applicants, key evidence refer to materials that the enforcement agencies have not collected and would be of significant or probative value in detecting a monopoly agreement. Most importantly, this includes how the agreement was reached and implemented, its main content, the timeline involved in reaching and implementating it, the products or services involved, and the relevant participants.

IV. Other requirements for leniency

In addition to the above requirements, the Leniency Guidelines also request the applicant to: (i) immediately terminate the illegal conduct (except for the cases where the authority requires applicants to continue the illegal conduct), (ii) cooperate with the authorities in a prompt, consistent, full, and reliably manner in the investigation, (iii) properly preserve and provide evidence and information, and to not conceal, destroy or transfer evidence or provide false material or information, (iv) not to disclose applications for leniency without the consent of the authorities, and (v) not to have any conduct that may affect the investigation.

V. Who can ask for a marker?

A marker system is applied in many jurisdictions worldwide. In the EU, the marker system “is designed to preserve and protect the applicant’s place in a leniency queue for a definite period of time.”[1]  The Leniency Guidelines establish a marker system in China as well and provide an exemption for the first applicant that meets its requirements; for each subsequent successful applicant, it provides a reduction in fines. Note that only the first immunity applicant can hold their marker’s priority without delivering all of the required evidence: if an operator initially submits a monopoly agreement information report the authorities and then provides related key evidence, the authority can decide to mark the time of the initial submission as that of applying for leniency, and request the applicant to supplement all related materials generally within 30 days, or 60 days for special cases. If the first applicant cannot supplement the related materials within the required period, it will lose its priority under the marker system; if so, the next successful applicant for a reduction in penalties can automatically become the first-in-time immunity applicant.

VI. How are applicants classed?

The Leniency Guidelines clarify the range of fine reductions available to undertakings for the first, second, or third place applicants: exemption from penalty or of reduction of fines by no less than 80% for the first, a 30%–50% reduction for the second applicant, 20%~30% for the third applicant, and no more than 20% for subsequent applicants. In general, the enforcement agency may grant leniency to up to three operators in an investigation. If a high-profile case is relatively complicated and involves more than three parties to agreements applying for leniency, the enforcement agency has the discretion to grant reductions in penalties to more than three applicants. Similarly, the confiscation of illegal gains may also be referred to exemption or reduction of fines on parties of monopoly agreements, subject to the authority’s discretion.

VII. Decision and publication of leniency

Subject to the Leniency Guidelines, the authorities are obliged to publish the leniency decision if they agree to grant an exemption or reduction of fines to the applicants. Without the consent of relevant parties, the application report and all other related materials submitted for leniency application shall not be published, and none of any other third parties are entitled to review. This provision may to some extent relieve companies’ practical concerns that the materials submitted for a leniency application may be used as evidence against them in future civil actions by other parties.

The leniency policy provides a very valuable and practical approach to help global antitrust enforcement agencies in the detection and termination of infringing monopoly agreements. The Leniency Guidelines propose a relatively reliable leniency system under the AML, which is of great significance for improving the effectiveness of antitrust enforcement, while providing a valuable source of guidance for Chinese market players to follow up on.

The automobile industry has been under the radar of China’s antitrust enforcement for a number of years. Since 2014, the agency had successively issued fines against many players in the automobile supply chain, including auto parts manufacturers, and motor vehicle suppliers and distributors. By November of 2019, the aggregate antitrust fine in the car sector reached up to RMB 2.5 billion. Excepting those cartel-related penalties against 12 Japanese auto parts manufacturers in 2014, all of other penalties related to the violation of vertical restraints.

China’s antitrust agency’s greatest competition concerns in the automobile sector relate to vertical restraints. Possibly underscoring this concern, the newly published Antitrust Guidelines on Automobile Industry (the “Automobile Antitrust Guidelines”) placed its main focus on clarifying issues arising from vertical restraints. Therefore, it is critical to take stock of this publication in order to better understand the enforcer’ attitude towards vertical restraints for companies in the automobile sector.

To help companies in the automobile industry better make their own assessments on antitrust compliance in China, this article explains the antitrust rules related to vertical restraints provided in these guidelines and analyzes their implications.

I. The Assessment Framework for Vertical Restraints

On whether a given vertical restraint constitutes a vertical monopoly agreement banned by the AML, the Automobile Antitrust Guidelines clarify a three-step assessment framework that China’s antitrust agency will usually employ. First, the agency determines whether a given agreement falls into the scope of vertical monopoly agreements prohibited by the AML. Second, it assesses whether the “assumed exemption”, which is similar to the block exemption in the EU and will be further explained later, could be applied. Third, if the assumed exemption is not applicable, the agency will assess whether an individual exemption could instead be granted.

II. Conditions forAssumed and Individual Exemptions

One valuable development in the Automobile Antitrust Guidelines is how they clarify the conditions under which the assumed exemption applies. Note that although at present the assumed exemption mechanism only applies to the automobile sector, theoretically it can also be of reference value to other industries.

According to these guidelines companies that lack appreciable market power could, when imposing vertical restraints on territories or customers, usually be exempted from being considered as imposing a vertical monopoly agreement. These guidelines further clarify that a company usually does not have market power if its market share in the relevant market is below 30%, though this is a rebuttable presumption.

For individual exemptions, the Automobile Antitrust Guidelines do not provide rules for the automobile sector besides those already described in Article 15 of the AML. However, with a view to clarifying its applicability for companies, these guidelines do illustrate circumstances under which assumed exemptions or individual exemptions usually apply. They are explained further in the below sections.

III. Enforcement Attitudes Toward RPM in Automobile Sector

It should be noted that in practice, China’s antitrust enforcement agency typically finds fixing resale or minimum resale prices (“RPM”) to be per se illegal, although judicial practice shows a different attitude towards RPM by Chinese courts. The Automobile Antitrust Guidelines implicitly confirm that the assumed exemption will not apply to RPM. However, the guidelines do not exclude the possibility of granting an individual exemption to companies fixing RPM, subject to specific circumstances, even though the chance of doing so is relatively low. To provide more guidance, these guidelines further provide four scenarios where individual exemptions are more likely to be granted.

First, fixing RPM in the short term for new energy automobiles may be individually exempted. This is in light of their benefits for energy conservation, environmental protection, avoidance of service free riding. The aforesaid “short-term” is further clarified in these guidelines as constituting nine months from the day when the automobile supplier issues its first wholesale invoice. This term is subject to potential adjustment in the future.

Second, where the distributor only serves the function of a middleman, fixing RPM may also be individually exempted. This scenario mainly refers to when the automobile suppliers directly negotiate the sales price with specific third parties or ending consumers, while the distributor just provides ancillary sales functions such as delivery, collection of payment, issuance of invoice and other services.

Third, fixing RPM in the course of government procurement may be individually exempted. This is because in practice automobile suppliers and distributors usually are required to collectively bid after agreeing on the quotation in government procurement projects. If the distributor in a government procurement scenario only plays a role in assisting completion of transaction, like a middleman, then they may also be exempted.

Fourth, the RPM imposed by automobile suppliers in e-commerce may be also individually exempted. This exemption should be narrowly interpreted, as when automobile suppliers directly sell to ending users through e-commerce platforms, and the distributor only plays a role fulfilling the sale, such as delivering the automobile, collecting payment and issuing the invoice for such transactions concluded through e-commerce platforms.

IV. Enforcement Attitudes Toward Territorial and Customer Restraints in the Automobile Sector

As mentioned above, restrictions on territory and customers imposed by suppliers with a market share below 30%, with justifiable reasons, can be assumed to be exempted. To provide further guidance, these guidelines illustrate the circumstances where the assumed exemption is usually applied. These are elaborated below.

First, the distributors are required to only engage in distribution activities within their own business premises, but are not restricted from passive sales and cross-supply with other authorized distributors. Second, the suppliers restrict distributors from actively selling to the exclusive territories or customers which said suppliers reserve for another distributor. Third, the suppliers restrict wholesalers from directly selling to end users. Fourth, to avoid the spare parts being used by customers to produce the same products as the suppliers, the suppliers restrict distributors from selling spare parts to such customers.

In the meantime, to provide further clarification, these guidelines also provide circumstances where the assumed exemption usually is inapplicable. This includes restricting passive sales and cross-supply between distributors, and restricting distributors and service providers from supplying spare parts for repair and maintenance purposes to ending users.

However, it should be noted that, even if the assumed exemption cannot be applied to specific territorial or customer restrictions, companies theoretically could continue to assess whether they may instead be eligible for an individual exemption.

V. Indirect Vertical Restraints on Aftersales Service and Distribution of Spare Parts

Concerns over insufficient competition in the automobile aftersales market for repair and maintenance services have been articulated for a long time. These concerns are also reflected in the Automobile Antitrust Guidelines, which specifically stress that, if automobile suppliers impose unreasonable restrictions on the aftersales services and distribution of spare parts through warranty terms, they may raise competition issues. Such circumstances include but are not limited to, first, the automobile suppliers requiring that all maintenance work not covered by their warranty be completed by service providers within an authorized maintenance network, and denying said warranty when the supplier uses service providers outside that network. Second, for parts not covered by the warranty, the automobile suppliers conditioning performance of said warranty on that distributors and service providers’ exclusive use of original parts. A third instance is when automobile suppliers restrict their maintenance network from providing aftersales service to parallel imported vehicles.

VI. Other Vertical Restraints Related to Sales and Service Capacity

In addition, the Automobile Antitrust Guidelines also enumerate other typical circumstances where a vertical monopoly agreement may be found, to remind companies of the potential antitrust risks.

First, the automobile suppliers obligate distributors and service providers to purchase automobiles, aftersales spare parts, consumables, repair tools, and testing instruments that distributors and service providers did not order. Second, the suppliers force distributors or repairers to accept unreasonable sales targets, inventory variety, automobile quantities, or aftersales parts orders. Third, the suppliers force distributors to bear the costs of advertising and promotion in the name of suppliers or restrict the specific ways and media that the distributors use to carry out promotions, at their own expense. Fourth, the suppliers force distributors or service providers to use only the services of specific design or construction companies, or require them to use only specific brands, suppliers and supply channels for building materials, general equipment, information management systems, or office facilities. Fifth, the suppliers restrict distributors from dealing with other suppliers’ goods. Lastly, the suppliers refuse supply or terminate the distribution agreement ahead of time due to the distributors or service providers engaging in activities that promote competition.

Conclusion

The Automobile Antitrust Guidelines does not only clarify the rules for market players in the automobile sector, but also provide valuable reference for companies in other sectors which heavily rely on external distributors, on how to structure internal controls and limit antitrust risks. Specifically, in China, a large portion of manufacturers rely on external forces to distribute their products, and vertical restraints on distributors are oftentimes indispensable for them in the commercial world. Clarifications provided in the Automobile Antitrust Guidelines are undoubtably beneficial for in-house counsels to conduct their own internal assessments. However, it should be recognized as well that the real commercial world is diverse, and these guidelines cannot cover all commercial situations that may occur. When facing more complicated situations, seeking specialized legal advice from external counsel is recommended.

State Council to formulate the CII security protection regulations

On July 8, 2020, the General Office of the State Council issued the 2020 Legislative Plan, including several laws in the cyber security sector, such as the Regulations on Network Protection of Minors and the Regulations on the Security Protection of Critical Information Infrastructure.

http://www.gov.cn/zhengce/content/2020-07/08/content_5525117.htm


Supreme People’s Court and the National Development and Reform Commission: To strengthen the protection of data rights and personal information security.

On July 20, 2020, the Supreme People’s Court and the National Development and Reform Commission issued the Opinions on Providing Judicial Services and Supports to Accelerate Improvement of the Socialist Market Economy System in the New Era (“Opinions”).

The Opinions emphasize that the state should strengthen the protection of data rights and personal information security. The state should also respect the law of the socialist market economy and the development practice of data-related industries, protect data collection, use, trading and the intellectual achievements according to the law, improve the legal system for data protection, properly handle various data-related dispute cases, promote the deep integration of big data and other new technologies, new fields, and new business forms, and serve the innovative development of the data element market. The state should also implement the provisions of the Personality Rights Part of the Civil Code on the protection of personality interests, improve the judicial protection mechanism for personal information rights and interests such as biological and social data of natural persons, grasp the boundary between the development of information technology and personal information protection and balance the relationship between personal information and public interests.

http://www.court.gov.cn/fabu-xiangqing-242911.html

 

Shenzhen proposes local data protection regulations to protect “Data Right”

On July 15, 2020, the Justice Bureau of Shenzhen Municipality issued the Data Regulations of Shenzhen Special Economic Zone (“Draft Regulations”) to solicit public opinions by August 14, 2020.

The Draft Regulations propose the concept of “data right” for the first time, defining it as “data is the description and induction of objects (such as facts, events, things, processes, or thoughts), and is the material that can be processed or reinterpreted through automation and other means. Natural persons, legal persons, and unincorporated organizations enjoy data right in accordance with laws, regulations and these Regulations and no organization or individual may infringe upon such right. Data right is the right of the right holder to make independent decisions, control, process, gain, and claim compensation for specific data in accordance with the law.”

The Draft Regulations stipulate the ownership of personal data and public data. According to the Draft Regulations, natural persons have, and no organization or individual may infringe upon data rights to their personal data in accordance with the law. Public data is a new type of state-owned assets, and its data rights belong to the state. The Shenzhen Municipal Government shall exercise the data rights of public data on behalf of the state and authorize the municipal data coordination department to formulate public data asset management measures and organize their implementation.

The Draft Regulations provide that personal data includes personal information data and private data. Personal information data refers to data recorded through automation and other means that can identify the personal identity of a natural person alone or in combination with other data; private data refers to data and its derived data that are closely related to the private life of a natural person and the private space, private activities, and private information that are unwilling to be known to others.

http://sf.sz.gov.cn/xxgk/xxgkml/gsgg/content/post_7892072.html

 

MIIT to crack down unlawful behaviors in information and communications industry as exposed in the “3·15” program by CCTV

On July 16, 2020, CCTV’s 3.15 program exposed the chaos of third-party SDK plug-ins of mobile phone in collecting and using users’ personal information. It was reported that, technicians have found that the SDK plug-ins from two companies, i.e. Credit X and Zhaocai Dog, embedded in more than 50 Apps collect user’s information without prior notice to the user.

In response to the unlawful collection and use of personal information made by the SDK plug-ins, the Ministry of Industry and Information Technology (“MIIT”) immediately organized relevant entities to conduct thorough inspections, and strictly investigated and dealt with the enterprises involved in accordance with laws and regulations. The MIIT requires,

  1. the Beijing Communications Bureau and Shanghai Communications Bureau to inspect the two companies involved;
  2. third-party testing institutions to conduct technical testing on 50+ Apps that use the above SDKs;
  3. major domestic application stores such as Alibaba, Tencent, Baidu, Huawei, Xiaomi, OPPO, vivo, 360, etc., to conduct thorough investigations on similar problems as soon as possible; Apps found of problems should be removed as soon as possible; application stores are also required to promptly notify the App operation developer to conduct self-examination and self-correction to promptly discover and process the SDK that unlawfully collects and uses user’s personal information.

In the next step, the MIIT will adopt normalized regulatory measures to strengthen the comprehensive management of Apps. MIIT is about to increase the handling and exposure of various unlawful activities, such as collection and use of user’s personal information without consent, to effectively protect the legitimate rights and interests of users.

http://www.miit.gov.cn/n1146290/n1146402/c8016746/content.html

 

MIIT exposes the second and third batches of Apps infringing upon user’s rights and interests

Recently, the Ministry of Industry and Information Technology (“MIIT”) organized third-party testing agencies to conduct inspection on mobile applications (“Apps”) and issued the Second and Third Batches of Apps that Infringe Upon User’s Rights and Interests, requiring operators of these Apps to make rectification. As of now a number of Apps still have not completed rectification and the MIIT requires them to complete rectification before designated timelines, failing which the MIIT may impose punishment on these Apps.

The above Apps are found of the following problems:

  • asking for permission frequently or excessively;
  • rejecting providing services if no permission is given;
  • collecting personal information without consent or beyond the agreed scope;
  • sharing personal information with third parties without consent;
  • forcing users to use target pushing functions; and
  • difficult to de-register the account.

http://www.miit.gov.cn/n1146290/n1146402/n1146440/c7993756/content.html

http://www.miit.gov.cn/n1146290/n1146402/n1146440/c8026316/content.html

 

2020 Governance Work campaign on illegal collection and use of personal information by Apps officially launched

On July 22, 2020, the Central Cyberspace Administration, the Ministry of Industry and Information Technology, the Ministry of Public Security, and the State Administration for Market Regulation held a meeting in Beijing and started the 2020 governance work on illegal collection and use of personal information by Apps in 2020.

The governance work in 2020 will continue to focus on the following aspects:

(1) Formulate and release the key points of personal information security assessment for SDKs and mobile phone operating systems, and conduct in-depth assessments of Apps, SDKs, and mini programs that have a large scale of users and attract large volume of complaints;

(2) In response to the typical problems reflected by the public, such as illegal collection and use of biometric information (e.g. facial features), self-activation, associated activation of Apps, upload of personal information without asking for user’s permission by Apps, and the abuse of sensitive permissions such as recording and photographing, special research and in-depth inspections are to be carried out;

(3) Intensify the detection, exposure, and punishment of illegal collection and use of personal information. According to the severity of the circumstances and the consequences, punishments such as interviews, warnings, removals, and fines will be imposed in accordance with laws and regulations;

(4) Formulate and release guidelines for App stores to review and manage the collection and use of personal information by Apps, and guide and urge App stores to carry out security reviews properly before Apps go online;

(5) Release free technical tools to guide small and medium-sized enterprises to conduct self-assessment on collection and use of personal information to improve the legal compliance of personal information collection and use activities by small and medium-sized enterprises;

(6) Promote security certification for the protection of personal information by Apps; and

(7) Strengthen personal information security assessment trainings and promote the standardization of personal information security assessment.

http://www.cac.gov.cn/2020-07/25/c_1597240741055830.htm

 

MIIT launches a special campaign to promote governance on Apps that infringe upon user’s rights and interests.

In order to effectively strengthen the protection of users’ personal information, the Ministry of Industry and Information Technology (“MIIT”) issued the Notice on Carrying out the Special Campaign to Promote Governance on Apps that Infringe upon User’s Rights and Interests (“Notice”) on July 24, 2020, requiring that a national App technology testing platform management system should be launched before the end of August 2020, which is expected to complete testing for 400,000 mainstream Apps before December 10, 2020.

This campaign focuses on the following illegal behaviors by service providers of Apps and SDK, as well as application distribution platforms:

  1. illegal behaviors of Apps and SDKs, including illegal collection of personal information, collection of personal information beyond the scope, illegal use of personal information and forcing users to use target pushing functions;
  2. setting up barriers and frequently harassing users, such as forcing users to give permission, frequently asking for permission or excessively asking for permission made by Apps, and frequent self-activation and associated activation of Apps;
  3. deceiving and misleading users, including deceiving or misleading users to download Apps or providing personal information; and
  4. failure to perform obligations by application distribution platforms, including not clearly stating the information about Apps distributed by them, and not implementing the management responsibility.

According to the Notice, MIIT will organize third-party testing agencies to conduct technical testing of Apps and SDKs and supervise and inspect the implementation of the main responsibilities of the application distribution platform. For companies that are found to have problems during the first inspection, they will be ordered to complete rectification within 5 working days. If there are still problems after rectification, they may face punishments including public exposure, removals, administrative penalties and listing as bad business operations or untrustworthy telecommunications businesses. Companies that have repeated problems in different versions of the Apps will be exposed to the public, and face follow-up disposal measures.

http://www.miit.gov.cn/n1146290/n1146402/n1146440/c8027864/content.html

 

NISSIT seeks public opinions on Security Requirements for Supply Chain of Information Technology Products

On July 27, 2020, the National Information Security Standardization Technical Committee (“NISSIT”) released the Information Security Technology — Security Requirements for Supply Chain of Information Technology Products (Draft for Comment) (“Draft Requirements”) to seek public opinions by September 26, 2020.

The Draft Requirements, as a recommended national standard, will apply to the security management activities of the information technology product supply chain of government information systems and critical information infrastructure and can also provide a reference for the supply chain security management activities of other information systems.

According to the Draft Requirements, the supplier of information technology products should meet the following requirements:

  • carrying out supply chain security risk assessment;
  • developing the traceability strategy of purchased information technology products and components, recording and retaining information such as the origin and original supplier of information technology products and components;
  • establishing and implementing the safety development process of information technology products, clarifying development management requirements, safety control measures and personnel codes of conduct, etc.

The customer of information technology products should meet the requirements such as:

  • establishing and maintaining a catalog of qualified suppliers;
  • regularly assessing the risks of interruption of information technology product supply, suspension of authorization, refusal to provide product upgrades or technical support services;

https://www.tc260.org.cn/front/postDetail.html?id=20200722172943

 

NISSIT issues Self-Assessment Guidelines for Apps to Collect and Use Personal Information

On July 25, 2020, the Secretariat of National Information Security Standardization Technical Committee (“NISSIT”) released the Practical Guide to Cyber Security Standards – Self-Assessment Guidelines for Apps to Collect and Use Personal Information (“Guidelines”) to guide App operators to carry out self-assessment.

The Guidelines provide 28 self-assessment items in total, covering the following six aspects:

  1. whether the rules on collection and use of personal information are made public;
  2. whether the purpose, method and scope of collection and use of personal information are clearly stated;
  3. whether the collection and use of personal information is subject to the user’s consent;
  4. whether the principle of necessity is complied with, under which only personal information in relation to the services being provided is collected;
  5. whether the provision of personal information to others is subject to the user’s consent; and
  6. whether functions of deleting or correcting personal information are provided, or methods for complaint are made public.

The Guidelines are formed on the basis of the Method for Identifying the Illegal Collection and Use of Personal Information by Apps jointly issued by the Cyberspace Administration of China, Ministry of Industry and Information Technology, Ministry of Public Security and State Administration for Market Regulation and the Guide to the Self-Assessment of Illegal Collection and Use of Personal Information by Apps issued by the App Governance Panel.

https://www.tc260.org.cn/front/paview/20200722134829.html

NISSIT issues the draft Guidelines for Application and Use of System Permissions by Apps

On July 29, 2020, the Secretariat of National Information Security Standardization Technical Committee (“NISSIT”) released the Practical Guide to Cyber Security Standards— Guidelines for Application and Use of System Permissions by Mobile Internet Applications (App) (Draft for Comment) (“draft Guidelines”) to seek public opinions by August 12, 2020.

The Guidelines provide the basic principles and general requirements for Apps to apply for and use system permissions, as well as the application and use requirements for ten types of Android system permissions including such as call log, SMS, location.

The Guidelines also list the common sensitive system permissions, typical issues in applying for and using system permissions, and the system permissions that are not recommended to apply for by common business functions.

https://www.tc260.org.cn/front/postDetail.html?id=20200729195232

 

Tianjin: personal privacy data cannot be traded

On July 30, 2020, Tianjin Cyberspace Administration released the Interim Measures for Data Transaction Management in Tianjin (Draft for Comment) (“Draft Measures”).

The draft Measures classify data into tradable data and data that are prohibited to be traded. Tradable data refers to all kinds of data obtained according to law, which cannot identify specific data providers and cannot be recovered.

Data prohibited to be traded include:

  • data related to national security, public security and personal privacy;
  • data involving trade secrets without authorization and consent of the legal obligee;
  • data involving personal information without the explicit consent of the subject of personal information; data involving personal information of minors above the age of 14 without express consent of the minors or their guardians; data involving personal information of minors under the age of 14 without express consent of guardians;
  • data obtained by means of fraud, deception and misleading, or from illegal and undue channels;
  • data that is clearly prohibited by other laws and regulations or legal agreements.

The Measures require that data providers should conduct security risk assessment on the data to be traded and issue security risk assessment reports. The data trading service agency shall review the security risk assessment report to ensure that the data to be traded do not contain data prohibited to be traded.

https://mp.weixin.qq.com/s/8Scofen1MTmmcBJd3IKubQ


Anhui Province proposes regulations to boost development and application of big data 

On July 6, 2020, the Government of Anhui Province issued the Regulations on the Development and Application of Big Data in Anhui Province (“Draft Regulations”) to seek public opinions.

The Draft Regulations encourage enterprises, universities, scientific research institutions and other organizations and individuals to engage in research and development of big data technology and develop software and hardware products; to use big data to develop new industries, new formats and new models, develop online economy, and give full play to the economic value and social benefits of data resources.

The Draft Regulations further encourage and guide data trading parties to conduct data transactions in big data trading service institutions established according to law. It also clarifies that data resource transaction shall follow the principles of voluntariness, fairness, honesty and credibility, that data resource transaction shall abide by laws and regulations, and respect social morality; and that data resource transaction shall not disclose, sell or illegally provide personal information, privacy and business secrets to others, and shall not damage the interests of the state, the public and the legitimate rights and interests of others.

http://sft.ah.gov.cn/zhzx/tzgg/53877731.html

 

MoT solicits opinions on Guidelines for Constructing National Connected Car Industry Standard System (Intelligent Transport Related) 

The Ministry of Transport (“MoT”) released the Guidelines for Constructing National Connected Car Industry Standard System (Intelligent Transport Related) (“Draft Guidelines”) on July 31, 2020 to seek opinions from relevant competent authorities and associations by August 14, 2020.

The Draft Guidelines set out the key fields where standards should be developed:

  • standards of basic generality, including the terms and descriptions, classification codes and symbols, and data management;
  • road facilities, including general requirements, traffic perception, traffic control and guidance, intelligent roadside, roadside communication, and map and positioning;
  • vehicle-road interaction, including information interaction, vehicle and portable terminal, and vehicle assistance and safe driving;
  • management and service, including travel service, transportation organization, and management platform; and
  • information security, including certificate keys, and network security protection.

According to the Draft Guidelines, a standard system supporting the application and industrial development of connected car should be initially established by the end of 2022, when more than 20 standards related to intelligent transport in areas such as intelligent transport infrastructure and assisted driving will have been developed and revised. By 2025 it is expected more than 40 standards will have been developed and revised.

http://xxgk.mot.gov.cn/2020/jigou/kjs/202007/t20200731_3443771.html

 

If you would like to receive our legal update via email, please contact jianghongyu@anjielaw.com.

For more information, please contact:

Samuel Yang | Partner

AnJie Law Firm

P: +86 10 8567 2968

M: +86 1391 0677 369

E: yanghongquan@anjielaw.com

Author: Samuel Yang, Nicholas Blackmore

China’s legislature, the National People’s Congress, recently enacted a Civil Code which will come into force on 1 January 2021. The Civil Code is a major landmark in Chinese legal history – it is the first comprehensive codification of the civil laws of the People’s Republic of China, which has been a goal of Chinese governments since the Qing Dynasty.

The Civil Code covers the full scope of Chinese civil law, including property rights, contracts, tort and family law – and also includes sections on privacy and the protection of personal information. Samuel Yang (Partner from Anjie Law Firm) and Nicholas Blackmore (Special Counsel from Kennedys) outline the impact of the new Civil Code on Chinese data privacy law.

Most of the provisions of the Civil Code regarding privacy and personal information are not new. Much of the Civil Code is a restatement and consolidation of the existing privacy laws contained in the Decision of the Standing Committee of the National People’s Congress on Strengthening the Network Information Protection, the Cybersecurity Law, and the Law on the Protection of Consumer Rights and Interests. However, the Civil Code does extend these laws in some respects, most significantly in providing a clearer basis for individuals to take legal action in relation to breaches of their privacy rights.

Like existing PRC privacy laws, the provisions of the Civil Code regarding privacy and personal information are not as detailed or prescriptive as Hong Kong’s Personal Data (Privacy) Ordinance or Europe’s General Data Protection Regulation. Rather, they are a set of general principles which leave considerable room for interpretation. However, the National People’s Congress have flagged the introduction of a personal information protection law and a data security law as the next step in the development of Chinese data privacy law, and it is likely that these laws will be more prescriptive.

The provisions of Part IV of the Civil Code dealing with privacy and personal information are in several sections:

  • articles 990 to 1000 contains general provisions regarding “personality rights”, which include an individual’s right to privacy;
  • articles 1032 and 1033 more specifically prohibit activities which infringe on an individual’s right to privacy, such as spying, eavesdropping, photographing or filming private body parts or spaces, or sending uninvited messages; and
  • articles 1034 to 1039 deal specifically with the processing of personal information.

The legislators have apparently noted the overlap between “privacy” and “personal information”, which is an academic and practical question debated by legal professionals for a long time. The Civil Code provides a principle to deal with such overlap by providing that those provisions on privacy (articles 1032 and 1033) shall apply to the “private information” in personal information; in the absence of such provisions, the provisions on the protection of personal information (articles 1032 and 1033) shall apply.

Individuals may take legal action to prevent or obtain compensation for an infringement of their personality rights. While the Civil Code does not expressly state when personality rights will be infringed, the structure of Part IV strongly suggests that this will include the activities prohibited under articles 1032 and 1033 and the processing of personal information in breach of articles 1034 to 1039. There is an exception for the conduct of news reporting carried out in the public interest, but only to the extent that the use of the individual’s name and other personal information is reasonable.

“Personal information” is defined as information recorded electronically or otherwise that is capable of identifying a specific natural person, alone or in combination with other information, including the person’s name, date of birth, ID number, biometric information, address, phone number, email address, health information, and location information. The key provisions concerning the processing of personal information include:

  • processing of personal information must be lawful, justified, necessary and not excessive;
  • processing of personal information is only permitted with the express consent of the individual or as required by law – although article 1036 states that reasonable processing of personal information is also permitted if: (a) the individual voluntarily disclosed their personal information and did not explicitly refuse to allow processing; or (b) the processing is carried out to protect the public interest or the individual’s legitimate rights or interests;
  • individuals have the right to obtain access to personal information a processor holds about them and to correct that information if it is inaccurate;
  • individuals have the right to require a processor to delete their information if the processing is in breach of the law or an agreement between the parties;
  • processors should take technical and other necessary measures to ensure the security of the personal information they hold; and
  • in the event of a data breach, the processor should take remedial measures in a timely manner and notify the breach to the affected individuals and the relevant competent authority.

Most of these provisions will be familiar to global businesses who already comply with the General Data Protection Regulation or other privacy laws. In some respects, however, they are more strict. In particular, it appears that there is less scope under the Civil Code than under many other privacy laws for personal information to be processed without the consent of the individual.

Most of the above provisions strongly resemble those already in the Decision on Strengthening the Network Information Protection, the Cybersecurity Law and the Law on the Protection of Consumer Rights and Interests. However, being in the Civil Code, they will apply more broadly. For example:

  • the Decision on Strengthening the Network Information Protection is limited to the protection of personal information in electronic form, whereas the Civil Code applies to all forms of personal information;
  • the Cybersecurity Law applies only to network operators, whereas the Civil Code applies to all businesses handling personal information, regardless of whether they also operate a computer network; and
  • the Law on the Protection of Consumer Rights and Interests only protects the rights of consumers of goods and services, whereas the Civil Code applies to all natural persons.

Most importantly, the Civil Code will make it easier for individuals to take civil action in relation to privacy breaches. The existing laws do not expressly provide any right for individuals to take such action; they only provide for the authorities to impose administrative fines and penalties. Consequently, it has been difficult for individuals to obtain compensation for breaches. In one widely- reported case, 42 individuals unsuccessfully sought to sue Amazon in relation to an incident in which their personal information was obtained by scammers.

The Civil Code makes clear that an individual will have the right to seek a court order to prevent a breach of their privacy rights which is continuing or is about to occur, and compensation for damage (including emotional damage) which is caused by a breach of their privacy rights. The court may also order that an apology or other public announcement be published. If the individual is deceased, their family may take such legal action in their place.

The official Chinese text of the Civil Code is available here; no English translation is available at this time.

Conclusion
While the new Civil Code largely restates the existing Chinese laws on privacy and personal information protection, it does apply these laws more broadly and make it easier for individuals to take civil action in relation to breaches. As such, we are likely to see privacy and personal information protection laws enforced more often and more broadly in China from next year onwards. Companies who process personal information in China should double-check that their existing privacy practices comply with the new Civil Code from 1 January 2021.

Author:

Hannibal El-Mohtar

 

(Photo attribution: Karolina Grabowska)

 

Despite the tortuous path ahead for the US 2020 election campaigns, and the trials and tribulations of this year, the US-China Phase 1 Trade Deal (the “P1 Deal) remains in place.[1]

Although commitments under the P1 Deal are only between China and the US, international trade law limits the extent to which benefits under such agreements can be strictly bilateral.

In particular, Most Favoured Nation (“MFN”) requires World Trade Organization (“WTO”) members (like China and the USA) to give all WTO members the same benefits they give to a preferential trading partner.

This might leave some non-US entities with business in China wondering: is the P1 Deal beneficial only for US entities, or do other foreign entities also benefit?

Foreign Insurance Institutions (“FIIs”) especially may wonder: as China begins to further open its financial market, do non-US FIIs have any chance of benefitting from China’s treatment of US insurers, specifically under the insurance heading of the P1 Deal’s financial services chapter (Article 4.6)? If only US insurers benefit, would that be a Global Agreement on Trade in Services (“GATS”) violation, or would it be GATS compliant?

These are thorny legal questions, and answering them begins with a look at China’s commitments under GATS, the P1 Deal’s Article 4.6 insurance heading, and MFN under GATS.

As we will see, China has already voluntarily passed GATS compliant legislation extending one bilateral commitment in Article 4.6 to all foreign investors. It is certainly possible that China will follow a similar course of action with its other bilateral insurance commitments to the US. However, as is often the case with international trade law, whether it decides to do so will depend on both legal and diplomatic concerns rather than solely on legal considerations.

 

I. China’s P1 Deal Insurance Commitments Fall in Line with Prior Plans

 

(Attribution: Adrianna Calvo)

Modernizing and improving China’s insurance sector has been a strategic state goal since as early as 2014, with the passing of the Several Opinions of the State Council on Accelerating the Development of the Modern Insurance Service Industry (2014, the “Opinions”). Among the goals contained within the Opinions is that by 2020, insurance will become an essential means of risk and financial management for government, enterprises, and residents, with specific targets for greater insurance penetration (5%) and density (RMB 3,500 Yuan per person). [2]

In line with these objectives, at the start of the 2020 two sessions (两会, the “2020 Lianghui”) Premier Li Keqiang announced “higher government subsidies for basic medical insurance for rural and non-working urban residents” (third session of the 13th National People’s Congress). After the end of the 2020 Lianghui, the State Council also encouraged insurers to increase coverage for Chinese exporters and small to medium enterprises impacted by COVID-19 in its Guidelines about Further Strengthening Financial Services for SMEs and Micro Enterprises (Yin Fa 2020 No.120).

Like these more recent measures, many Chinese commitments to US insurers in the P1 Deal also dovetail with earlier Chinese reform plans. The text of Article 4.6 reads as follows:

Article 4.6: Insurance Services

  1. No later than April 1, 2020, China shall remove the foreign equity cap in the life, pension, and health insurance sectors and allow wholly U.S.-owned insurance companies to participate in these sectors. China affirms that there are no restrictions on the ability of U.S.-owned insurance companies established in China to wholly own insurance asset management companies in China. 
  1. No later than April 1, 2020, China shall remove any business scope limitations, discriminatory regulatory processes and requirements, and overly burdensome licensing and operating requirements for all insurance sectors (including insurance intermediation), and shall thereafter review and approve expeditiously any application by U.S. financial services suppliers for licenses to supply insurance services. In accordance with this commitment, China affirms that it has eliminated the requirement of thirty-years of insurance business operations for establishment of new foreign insurance companies. 
  1. The United States acknowledges current pending requests by Chinese institutions, including by China Reinsurance Group, and affirms that such requests will be considered expeditiously.

 

Observers will note that prior to the conclusion of the P1 Deal, the concession outlined in 4.6.1. was already scheduled to be passed. To this end, on December 06, the China Banking and Insurance Regulatory Commission had issued both the Detailed Rules for Implementing the Regulations Administering Foreign-Invested Insurance Companies in the PRC together with the Notice Clarifying the Timeline to Cancel Foreign Equity Ratio Restrictions in Joint Venture Life Insurance Companies. Most importantly, the concession in 4.6.1 was granted not solely to US enterprises (which would be a GATS violation, as we will discuss below), but rather to all foreign investors in China.

The US acknowledging “pending requests by Chinese institutions” in 4.6.3. relates to applications from Citic Group, China Re, and China International Capital Corp (CICC) for licensing in the US.

The only possible friction between China’s insurance sector P1 Deal and GATS commitments would be 4.6.2., where China singles out US firms for what appears to be preferential treatment: “review and approve expeditiously any application by US financial services suppliers for licenses to supply insurance services.”

 

II. The Road to Accession: China Included Insurance in its GATS Schedules of Commitments in 1994 and 2002

 

(Attribution: Manual Joseph)

Would this friction result in a possible GATS violation? Let us first examine China’s GATS commitments. For brevity, the particulars of these commitments are not listed in this article.

China’s first GATS commitments were published in 1994, prior to its accession to the World Trade Organization (“WTO”). A fundamental concept in understanding GATS commitments is the difference between “positive” and “negative” lists. WTO Members use a “positive” list to indicate their specific commitments to provide market access and national treatment in a schedule of commitments (“SOC”). On the other hand, a blanket MFN commitment applies to all areas of GATS, unless there is a “negative” reservation in the form of an exemption (discussed later, together with other exceptions). Whether or not a positive commitment is listed in the SOC, a WTO Member must not discriminate among its trading partners in terms of market access or national treatment.

At the time China made this SOC, foreign insurers had a minimal presence in China. The only FII in China in 1994 was AIA (a subsidiary of AIG), which had established a branch in Shanghai in 1992 (becoming the first foreign-invested insurance entity in the PRC). Later, in 1996, Manulife (a Canadian insurer) set up the PRC’s first life insurance joint venture with Sinochem.

Later, in 2001 China acceded to the WTO and a year later in 2002, China issued another SOC under GATS, leading to further liberalization. The ensuing relaxation of market entry rules ushered in a series of new insurance players in the PRC market. To better understand what this liberalization entailed, by way of overview, we can look at China’s commitments for its four “modes of supply” that took place. These “modes” refer to the four means for supplying services listed in GATS (see GATS I:2). Mode [2] (consumption abroad) became open for all but brokerages (meaning that China still reserves the right to restrict consumption of insurance services from brokerages based abroad). Most significantly, [3] dealing with commercial presence, was opened (but still subject to a number of restrictions). Modes of supply [4] (presence of natural persons) and [1] (cross-border trade) remained “unbounded” (meaning China had made no commitment to liberalize them), but with some exceptions for mode [1].

 

III. GATS MFN Applies to the P1 Deal, and no Exemptions or Exceptions Apply

Under GATS, there are two general, unconditional (with certain exceptions) obligations. The first is MFN, the second is the obligation of transparency. Only the first, MFN, is relevant to this analysis. The operative MFN provision for GATS is:

GATS Article II.1 (Most Favoured Nation)

With respect to any measure covered by this Agreement, each Member shall accord immediately and unconditionally to services and service suppliers of any other Member treatment no less favourable than that it accords to like services and service suppliers of any other country.

The effect of MFN is to forbid discrimination among a Member’s trading partners. For example, if China gives special market access to a US bank, it cannot deny that same access to a Canadian bank (except with some exceptions, discussed below).

Under GATS Article II, the test to determine whether a measure violates China’s MFN obligations is to ask whether it modifies “the conditions of competition to the detriment of like services or service suppliers of any other Member” (Appellate Body Report, Argentina – Financial Services, paras. 6.114-6.115.). Such an analysis must begin “with careful scrutiny of the measure, including consideration of the design, structure, and expected operation of the measure at issue” (Appellate Body Report, Argentina – Financial Services, para. 6.127).

As a result, any favourable treatment afforded solely to the US under the P1 Deal is discriminatory and must also extend to other foreign investors under MFN. For any measure covered by the GATS (in other words falling under the definitions in GATS Article I), a WTO member cannot give favourable treatment to services and service suppliers of any country without immediately and unconditionally giving no less favourable treatment to all WTO members (GATS Article II). This applies irrespective of whether that measure is the subject of a specific commitment in the SOC.

 

IV. Depending on How They Are Implemented, China’s Commitments to the US May Engage GATS and Extend to Other WTO Members

 


(Attribution: Mihai Vlasceanu)

China has already voluntarily extended many of its P1 Deal concessions to all foreigners. Recall that China already granted the concessions in Article 4.6.1 to all foreign insurers, making it GATS-compliant. As of January 1, 2020, all foreign insurers (and not just US insurers) are allowed full ownership of Chinese life insurance companies. Beginning April 1, 2020, this commitment also extends to the pension and health insurance markets. As mentioned in another article, under China’s new Foreign Investment Law, all FIIs will also now be governed by the Company Law of the People’s Republic of China rather than ad-hoc foreign investment laws.

However it remains to be seen whether China’s above commitments under Article 4.6.2 of the P1 Deal will violate GATS. Article 4.6.2, which can be split into two parts, appears to signal an intent to give US firms special treatment. The first part commits China to remove “any business scope limitations, discriminatory regulatory processes and requirements, and overly burdensome licensing and operating requirements for all insurance sectors (including insurance intermediation).” This part complies with GATS. The second, however, requires China to “thereafter review and approve expeditiously any application by U.S. financial services suppliers for licenses to supply insurance services.” This second part strongly indicates an intent to grant preferential, discriminatory treatment for the benefit of US firms.

The question is, will China:

  • Extend 4.6.2. commitments to all FIIs willingly, as it did with 4.6.1. commitments
  • Overtly discriminate in favour of US insurers (“De Jure Discrimination”) or
  • Covertly discriminate in favour of US insurers (“De Facto Discrimination”)?

In the case of [1], there is no MFN violation. This may happen and it is entirely possible for China to formulate regulations in its implementing measures which meet this P1 Deal term while affording equal treatment to other WTO Members.

In the case of [2], De Jure Discrimination, the MFN violation is straightforward and other WTO Members may initiate dispute settlement proceedings under the auspices of the Dispute Resolution Body (“DSB”), and most likely obtain a favorable decision. Chinese authorities are well aware of this and as a result [2] is unlikely.

In the case of [3], De Facto Discrimination, the issue becomes much more complicated and guiding WTO caselaw becomes necessary. In EC — Bananas III, the European Communities argued that MFN under GATS does not extend to De Jure discrimination, only De Facto discrimination. This was rejected (Appellate Body Report, EC – Bananas III, paras. 231-234). Applying the above analysis from Argentina Financial Services, any treatment which modifies the “conditions of competition” against one Member in favour of another falls afoul of MFN. In the Appellate Body (the “AB”)’s reasons in EC — Bananas for ruling against the EC, the AB expressly applied this standard to De Facto licensing discrimination: “various aspects of the EC licensing procedures at issue created less favourable conditions of competition for service suppliers of the complainants’” (Appellate Body Report, EC – Bananas III, see paras. 240-248).

The standard for breaching MFN in this context is low, and there is no separate enquiry into the regulatory objective or concerns behind a measure’s impact on the conditions of competition (Appellate Body Report, Argentina – Financial Services, paras. 6.105-6.106):

This legal standard does not contemplate a separate and additional inquiry into the regulatory objective of, or the regulatory concerns underlying, the contested measure. Indeed, in prior disputes, the fact that a measure modified the conditions of competition to the detriment of services or service suppliers of any other Member was, in itself, sufficient for a finding of less favourable treatment under Articles II:1 and XVII of the GATS.

As a result, if China visibly moves the needle in favour of licensing US insurers, it breaches GATS, but if it does so inconspicuously, it would be insufficient to mount a GATS challenge. If China wishes to grant favourable licensing terms US insurers in a way that does not lead to losing a GATS challenge, it must do so in a manner that is almost imperceptible and at the least, non-provable. For example, any kind of quid pro quo that leads to a US firm being licensed in China shortly after the US licenses a Chinese firm (like China Re, Citic Group, or CICC) would appear transactional, arouse suspicion, and could be challenged as a MFN violation. In challenging any discriminatory treatment, the fact that in the text of the P1 Deal, China’s 4.6.2 commitment (to approve US insurers) immediately precedes the US’ 4.6.3 commitment (to acknowledge the “pending requests” of Chinese insurers) may be used as a smoking gun to show discriminatory intent.

 

Conclusion

Legally under GATS, Chinese concessions to the US must be legislated in ways that do not discriminate between WTO Members. If these concessions instead extend only to the US, or if it is discovered that a government measure in fact discriminates against other WTO Members, then those Members may initiate consultations. Failing consultations, those Members may pursue dispute settlement under the auspices of the DSB.

So far all of China’s measures implementing the Phase 1 Deal appear to have been GATS compliant and have not led to a challenge from another Member.

However, what might possibly occur, and raise questions about compliance with GATS, is a quid pro quo between the Chinese and US administrations. For example, licensing a US insurer in exchange for the US licensing a Chinese insurer. This would be a MFN violation. However, as a form of De Jure Discrimination, such violations are notoriously difficult to prove.

This means that, from an evidentiary standpoint, there is room — however narrow — for China to license US insurers on a preferential basis without demonstrably affecting the conditions of competition in the Chinese insurance market. Nevertheless WTO precedent on the matter is clear and if such De Jure Discrimination were to be proven, it would not be difficult to show that such treatment adversely affects the conditions of competition in violation of MFN. [4]

Although preferential licensing of US insurers is an option available to China, diplomatic considerations will be taken into account on whether or not to pursue it. China voluntarily extended the commitment in Article 4.6.1 to all FIIs, and has been carefully planning this phase in its insurance reform since before the release of the 2014 Policy. It may find that the economic benefits of greater competition and variety in the PRC insurance market are more valuable to its long-term reform plans than the diplomatic points it would gain through a licensing quid pro quo with the current US administration. If that is the case, it would be logical to then also voluntarily extend the commitment in Article 4.6.2 to all FIIs.

 

[1]In fact, damaging floods and spiking corn prices have pushed Chinese importers to buy record volumes of U.S. corn, which could help the government fulfil a pledge under the P1 Deal. See Hallie Gu, Dominique Patton, “Exclusive: China plans wheat, rice sales to tame surging corn prices – sources”, Reuters, July 21, 2020, online: <https://in.reuters.com/article/china-grains-stockpiles-exclusive/exclusive-china-plans-wheat-rice-sales-to-tame-surging-corn-prices-sources-idINKCN24M15C>

[2]Zhen Jing, Chinese Insurance Contracts: Law and Practice, (Abingdon, Routledge 2017) at 23.

[3]There are a few exceptions to the MFN requirement in Article II, none of which apply to the P1 Deal. For one, if the P1 Deal were an Economic Integration Agreement (“EIA”), China could give the US preferential access under GATS Article V. However, in order for an agreement to qualify as an EIA it must, among other requirements, have “substantial sector coverage” under services, GATS Article V. The P1 Deal cannot be characterized as having “substantial sector coverage”, because among other reasons, the P1 Deal does not liberalize all four GATS modes of supply (a key requirement for substantial sector coverage). It also cannot be characterized as a regional trade agreement, which like an EIA could spare China from Article II MFN commitments, because the US and China do not share a border (Article II.3). If either were the case, China could have claimed the right to liberalize its market solely for the benefit of US insurers under the P1 Deal, and not extend that same treatment to all other WTO Members.

A couple of other exceptions are worth reviewing briefly, but they do not apply either. The first is exemptions. A WTO Member may enter reservations to its MFN obligations through MFN “exemptions” in its Annex to the GATS. However, China’s insurance commitments were not exempted in its annex. The only exempted industries are those relating to transportation (maritime, international, and freight and passengers). In other words, under GATS, the Chinese insurance sector (including life, pension, and health insurance) is not exempt from MFN treatment. Second is government procurement: direct purchases of insurance services by the Chinese government are not subject to MFN. It is unclear, however, whether or not MFN would apply to purchases by state owned enterprises (“SOEs”).

 

[4]In 2020, should China continue to go through the motions of showing GATS compliance, though? The WTO does not have any teeth, and cannot enforce any of its decisions. The WTO’s dispute resolution platform also continues to face a crisis due to the US blocking the appointment of AB panelists.

The answer is most likely yes. Unfavourable rulings do carry consequences. They sometimes lead to countermeasures from trading partners and continue to carry weight in international diplomacy. Members prefer to avoid unnecessary pressure from other Members, and it is unlikely China will overtly ignore GATS rules.

 

Have questions about accessing China’s insurance market? Anjie is a Chambers ranked, Band 1 law firm for PRC Insurance law, and has the largest insurance practice in mainland China

Feel free to send consultation requests to An Na (anna@anjielaw.com) or An Chencheng (anchencheng@anjielaw.com).

Authors: Wan Jia, Liu Sichen

I. The Background Information of the Raised Question

The rapid spread of the COVID-19 pandemic has left a huge impact on business operations worldwide. For many companies, a business interruption (“BI”) that could result from this impact is a hazard which features among their greatest operational risks this year.

Although many companies are insured against BI, their coverage under their insurance policies may not extend as far as they believe. In legal practice, the question of whether BI caused by the infectious diseases is covered by a BI insurance policy provided has given rise to great controversy.

The mainstream view holds that BI insurance is generally an additional insurance to “all risk” or other types of property insurance, therefore only those losses consequent on property damage are covered by BI. However, if there are BI extension clauses such as the infectious disease clause expanding the scope of the covered losses, the BI losses caused by the infectious disease can be compensated based on the relevant applicable extension clause, even if the insured has not suffered from property damage.

Why is compensation under a BI policy be on the condition that “damage to property” has occurred? There are a number of historical and contextual factors behind this rule, and this article sheds some light on them.

II. The reason why the insurer’s BI loss must result directly from “damage to property”

BI in China is considered to be a foreign transplanted product. Most of the mainstream insurance companies in China adopt the terms similar to those in the insurance markets of the UK or the USA.

Taking the BI clause of a large property insurance company in China on record with China Banking Insurance Regulatory Commission for example, article 3 of the clause states that,

“[D]uring the insurance period, where the insured suffered losses on the property used for its business operations due to the risks covered by the main property loss insurance clause (hereinafter referred to as the “property insurance loss”), resulting in the interference or interruption of the insured’s business operations, the loss of gross profit thereof occurring during such indemnity period shall be compensated by the insurer in accordance with this insurance policy. The indemnity period mentioned in this insurance contract refers to the period from the date of the occurrence of the insured property loss, to the insured’s business continuously affected by the insured property loss, but the maximum period shall not exceed the maximum indemnity period agreed in this insurance contract [emphasis added].”

For its part, the London Business Interruption Association (“LBIA”) issued a BI guide which indicates that BI insurance compensates for the indirect losses resulting from direct property damage. In summarizing business interruption insurance liability practice in the UK, the LBIA guide provides that, “the insurer will pay the amount of the Consequential Loss resulting from interruption of or interference with the Business carried on by the insured at the Premises consequence upon DAMAGE to Property used by the Insured at the Premises in accordance with the undernoted definition.”  [1]

  1. BI is Established to Cover the Indirect Losses Caused by the Property Losses Which Would Not Be Covered by the Traditional Property Insurance

Traditional property insurance only compensates for the direct property losses of the insured subject matter against the risks within the scope of insurance liability, and the insurer is not responsible for indirect property losses of the insured arising from suspension of production, reduction of production, or business interruption, etc.

At the end of the 18th century and the beginning of the 19th century, after experiencing a significant increase in productivity owing to the Industrial Revolution, business risks increased. Traditional property insurance like all risks insurance, could not cover the indirect losses of profits due to the accidents. The time had come for a compensation policy based on recovery of daily losses. This became the prototype for modern BI insurance.[2]

Another earlier name for BI, Use and Occupancy Insurance, can better reflect its direct relationship with property losses. [3] Under this type of policy, the insurance company shall pay, according to the calculation method agreed in the insurance clauses, for the losses resulted from interruption of the insured’s normal use and occupancy of the insured property because of the insured property risk. Different disputes might arise in different cases because of the specific wording of the insurance clauses, but the general principle is that BI covers losses consequent upon damage to the insured property.

  1. The Losses Covered by BI Need to Be Calculated Based on the State of the Insured’s Damaged Property

As discussed, the idea behind BI insurance is to cover the indirect profit losses that result when an insured peril arises. The period of business interruption is the period required to repair or replace the damaged property, namely from the time when the insured must interrupt their business due to the occurrence of the insured accident to the time when the insured resumes business. BI will thereby ensure that the insured can still operate with the same business revenue it would have generated had the accident not occurred. That is, however, the limit of what BI insures: not a penny less, not a penny more. Therefore, the insurable interest of BI is the business profits brought by the insured property.

The above mentioned LBIA BI Guide summarizes the two mainstream calculation standards for UK BI losses as Gross Profit Basis (“GPB”) and Gross Revenue Basis (“GRB”). GBP calculates the losses by including the reduction of turnover and the increase in maintenance costs, and the latter, GRB, calculates the losses by referring to the amount which shall fall short of the Standard Gross Revenue. [4]

In China, the domestic underwriters will generally calculate the insured business interruption losses by referring to the losses during the indemnity period in terms of gross profit. The calculation involves three aspects: the loss of gross profit due to a decrease in operating income, the loss of gross profit due to an increase in operating expenses, and the saved costs because of the insured accident. The sum of the first two minus the amount from the third equals, generally, the gross profit losses that need to be indemnified.

  1. Even If there are BI Extension Clauses, the Establishment of Insurance Liability is Still Premised on the Incurred Risk of Losses of Damage to Property

The above calculation of BI losses is based on the premise that the insured property suffered from damage, and that damage led to BI losses. Based on different needs of the insureds from different industries, BI policies often have their respective BI extension clauses to extend the concepts such as the Insureds, Business types, Business Premise, etc., thus covering some circumstances intended to cover by the parties.

Common extensions of BI include Communicable or Infectious Diseases, Denial of Access, and Civil Authority Orders, among others. However, even if the extension clauses are applied to expand the scope of insurable losses, the premise for the establishment of BI liability of the insurer is still that it incurred insured risk of damage to the insured property.

It needs to be added that, in China, most BI insurance clauses provided by domestic insurance companies are as additional insurance  thus making the limit of the indemnity foreseeable. However, BI does not by itself need to be a form of additional insurance by considering its original purpose. If the underwriting risk and the scope of property can be clearly defined in the BI policy, there is no major threshold for the insured to apply for a separate and independent BI policy.

In practice, disputes arising out of BI will also concern the subsequent identification of insured risks, whether BI extension clauses including infectious diseases clause have been triggered, whether the claimed losses are caused by the damage to property, and the specific losses calculation method, etc. However, the premise that needs to be clarified is that BI does not cover all losses due to business interruption, but those losses caused by business interruption due to the losses arising out of the damage to insured property. Otherwise, all unforeseen circumstances that may affect the business of the company will be the cause of possible claims, deviating from the spirit of BI and its coverage of insurance liability.

 

[1]See Guide to business interruption insurance and claims, p5 http://london-bia.org/lectures/LBIABIManual.pdf#:~:text=LBIA%20guide%20to%20business%20interruption%20insurance%20and%20claims,Insured%20DAMAGE%207%20Indemnity%20period%207%20Turnover%208

[2] Tao Cunwen, Geng Yuting, “Overseas Business Interruption Insurance System and Its Enlightenment”, published in Insurance Research, No. 4 of 2008.

[3]Pamela Levin & Thomas H. Nienow, Business Interruption Coverage – Demystifying the Causation Analysis, 24 Brief 30 (1994).

[4]See supra 1, page 13, “Standard Gross RevenueThe Gross Revenue during that period in the twelve months immediately before the date of the occurrence of the incident which corresponds with the Maximum Indemnity Period”

China issues draft Data Security Law to solicit public opinions

中国公布《数据安全法》草案

Recently, the National People’s Congress released the Data Security Law of the People’s Republic of China (Draft) for public opinions (“Draft”).

Highlights of the draft include:

In order to establish data security system, the State implements:

  • data classification and grading protection system:The Draft provides that data should be protected by different levels and categories based the importance of data in economic and social development, and the degree of damage to national security, public interest, or the legitimate rights and interests of citizens and organizations once it has been tampered with, destroyed, leaked, or illegally acquired or illegally used. Relevant departments should formulate catalogues of important data to protect the data.
  • export control of data:The State exercises export control over data pertaining to controlled items related to fulfilling international obligations and maintaining national security.
  • retaliatory restriction:Where any country or region takes discriminatory prohibitions, restrictions or other similar measures against China in terms of investment and trade related to data and technologies related to data development and utilization, etc., China may take corresponding measures against the country or region according to the actual situation.

In carrying out data related activities, relevant entities should perform the following obligations to protect data security:

  • Establish and improve data protection systems:Data activities should be carried out in accordance with the provisions of laws, administrative regulations and mandatory requirements of national standards, to establish and complete data security management systems in all stages, organize data security education and training, and take corresponding technical measures and other necessary measures to ensure data security.
  • Carry out security assessments of important data:Processors of important data should conduct regular risk assessments of their data activities in accordance with regulations and submit risk assessment reports to the relevant competent authorities.
  • Implement restrictions on cross-border judicial assistance:If overseas law enforcement agencies require access to data stored in China, relevant organizations and individuals shall report to the relevant competent authority and provide it only after obtaining approval.

The Draft also exerts extraterritorial effect on the data processing activities. According to the Draft, organizations and individuals outside China who carry out data activities that damage the national security, public interests or the legitimate rights and interests of citizens and organizations of China shall be investigated for legal responsibility according to law.

For more information, please refer to http://www.npc.gov.cn/npc/c30834/202006/97f149839ff04c428224f6344ead7e38.shtml

 

MIIT urges tighter management over call centers
工信部要求加强呼叫中心业务管理

The Ministry of Industry and Information Technology (“MIIT“) has recently distributed the Circular on Tightening Call Center Business Management (“Circular“) on June 8, 2020.

The Circular touches upon six aspects, namely stepping up entry management, tightening management of codes and numbers, ramping up access management, beefing up management of business behaviors, miscellaneous, and work requirements.

The Circular calls on enterprises running call centers to improve their own internal management and control mechanism and use technical means to strictly control outbound calls, prohibits them from making or facilitating crank calls, requires them to safekeep at least 30 days phone call records and other information, bans them from leasing out or reselling, without approval, voice trunk lines and other telecommunications resources and from illegally altering or concealing the telecommunications access numbers, and urges them to ensure safety of clients’ personal information.

The Circular clarifies that those who only provide call center systems and seat rental services also belong to operating call center business, and requires relevant operators to verify the legitimacy of user voice trunk and numbers and prevent harassment of calls. The Circular also clarifies that the types of self-use, manpower outsourcing, and technical services do not belong to the business of operating call centers.

After the issuance of the Circular, the enterprise shall carry out a self-examination. Relevant departments will also carry out inspections on operations of the call center business.

For more information, please refer to http://www.miit.gov.cn/n1146290/n1146402/c7979549/content.html

 

MIIT to carry out the 2020 Network and Data Security Management in Telecommunications and Internet Industry

工信部部署推进2020年电信和互联网行业网络数据安全管理工作

Recently, the Ministry of Industry and Information Technology (“MIIT”) issued the Notice on Doing a Good Job of Network Data Security Management in the Telecommunications and Internet Industry in 2020 (“Notice”). The Main content of the Notice includes:

  • Deepening special governance of network and data security in the industry;
  • conducting in-depth evaluation of network and data security compliance;
  • Speeding up the construction of network and data security system standards; and
  • Improving technology guarantee capabilities of network and data security.

For more information, please refer to http://www.miit.gov.cn/n1146285/n1146352/n3054355/n3057724/n3057728/c7981569/content.html

 

Guidelines on Financial Data Security Classification to be released

金融数据安全分级指南即将出台  

It was reported that the China Financial Standardization Technical Committee recently issued a notice that the Financial Data Security – Guidelines on Financial Data Security Classification (“Guidelines”) have been submitted for formal approval.

According to the draft version of the Guidelines, the influence (such as the possible damage, loss and potential risk) caused by the damages on the data’s security (i.e. confidentiality, integrity and availability) is a critical criterion to determine the security level of the data. The main factors to be considered are:

  • Object that may be influenced, including national security, public rights and interests, personal privacy and enterprise’s legitimate rights and interests; and
  • Possible degree of influence, including very serious, serious, medium and light.

Taking into the two factors above above, the Guidelines classify the security level of financial data from the highest level, level 5, to the lowest level, level 1. The level 4 data corresponds to the C3 information of personal financial information; the level 3 data to C2 information and level 2 data to C1 information.

In February 2020, the People’s Bank of China released the Personal Financial Information Protection Technical Specification, which classifies the personal financial information into C3, C2 and C1 based on the sensitivity of the data.

For more information, please refer to https://mp.weixin.qq.com/s/lkOlhz1OsS2zlzph6BVwzw

 

MOT: Transport-related scientific data should be shared with the society conditionally
交通部:交通运输科学数据应有条件地向社会开放

Recently, the Ministry of Transportation (“MOT”) released the Measures for the Management of Transport-Related Scientific Data (Draft for Comment) (“Draft Measures”) for public consultation.

The Draft Measures provide that the transport-related scientific data (“Scientific Data”) should be open to the society and relevant departments on the principle of opening as the norm and not being the exception. The relevant departments will formulate an open catalog of the Scientific Data, to classify Scientific Data into three categories, i.e. unconditional sharing, conditional sharing and not sharing, and to clarify the confidentiality level and confidentiality period, open conditions, open objects and audit procedures, etc. of Scientific Data.

The Draft Measures further clarify the attribution of intellectual property rights of Scientific Data. The Measures stipulate that users of Scientific Data should abide by the relevant provisions on intellectual property rights, and indicate the Scientific Data used and referenced in the publication of papers, patent applications, and monograph publications. Providers of Scientific Data have the right to preferential use of data. If others apply for the use of data, the scientific data center in the industry may provide it to the applicant subject to the written consent of the Scientific Data provider.

The Measures also stipulate the principle of paying for using Scientific Data. For the use of Scientific Data for business activities, the parties should sign a paid service contract, clarifying the rights and obligations between them.

For more information, please refer to http://xxgk.mot.gov.cn/jigou/kjs/202006/t20200623_3398111.html

 

Zhejiang Province: Public data should be shared with the society conditionally. 

浙江:公共数据将有条件地向社会开放 

Zhejiang provincial government released the Interim Measures of Zhejiang Province for Public Data Opening and Security Management (“Measures”) on June 4, 2020.

The Measures define the “public data” as various types of data resources obtained by administrative agencies at all levels and public institutions with public management and service functions (hereinafter collectively referred to as “public management and service agencies”) in the course of performing their duties according to law. Relevant departments in Zhejiang province will compile open catalog and supplementary catalog for public data in the province. According to the degree of risk of data opening, public data is divided into three categories: unconditional opening, restricted opening, and prohibited opening.

For restricted opening public data, the open subject shall not set discriminatory conditions and shall disclose to the society a list of the restricted public data that has been obtained. Citizens, legal persons and other organizations may propose to the open subject the service requirements for access to restricted open data.

Citizens, legal persons and other organizations may also raise the demand for data open services outside the open catalogue of the public data. Public management and service agencies should conduct assessments and reviews in accordance with the provisions of these Measures and inform the demanders of the relevant processing results.

For more information, please refer to http://www.zj.gov.cn/art/2020/6/17/art_1229017137_557682.html

 

Shanghai Communications Administration to carry out the 2020 Shanghai Network Security Inspection in Telecommunications and Internet Industry
上海市通信管理局开展2020年上海市电信和互联网行业网络安全检查工作

On June 22, 2020, Shanghai Communications Administration released the Notice on Carrying out the Network Security Inspection of the Telecommunications and Internet Industry in 2020 (“Notice”). according to the Notice, key entities to be inspected are basic telecommunications companies, value-added telecommunications companies, industrial Internet platform companies, operators of critical information infrastructure, operators of mobile Internet App, etc.in Shanghai. The inspection will focus on:

 

  • implementation of the grading and recording, compliance evaluation and security risk assessment by communication network entities;
  • check and identification of critical information infrastructure in the industry;
  • security protection of industrial Internet platforms and network connected industrial control equipment;
  • data security and personal information protection. Emphasis will be put on the inspection of unlawful collection and use of personal information by Apps;
  • network security management and technical protection; and
  • increased awareness of network security among industry practitioners.

The Notice requires enterprises should complete the self-inspection before July 31, 2020 and Shanghai Communications Administration will conduct random inspection before August 31, 2020.

For more information, please refer to

https://baijiahao.baidu.com/s?id=1670813388845807406&wfr=spider&for=pc

 

If you would like to receive our legal update via email, please contact jianghongyu@anjielaw.com.

For more information, please contact:

Samuel Yang | Partner

AnJie Law Firm

P: +86 10 8567 2968
M: +86 1391 0677 369
E: yanghongquan@anjielaw.com

Authors: Song Ying,  Yang Yuhui, Hannibal El-Mohtar

(Attribution: George Becker)

Antitrust law is growing in importance in China. Penalties from Chinese antitrust cases continue to grow, and Chinese regulators are known for taking swift action against conduct they believe is anticompetitive. In February 2015, Qualcomm paid almost $1 billion US to end an investigation by Chinese antitrust authorities, and this spring Chinese authorities imposed maximum fines  (10% of a firm’s annual turnover) against three suppliers of pharmaceutical ingredients for unfair pricing (Shandong Kanghui Medicine, Weifang Puyunhui Pharmaceutical, and Weifang Taiyangshen Pharmaceutical).

Alongside increasing administrative action, Chinese firms increasingly bring private antitrust actions against rival companies, particularly in the technology sphere. Often, these suits will be accompanied by an administrative complaint that could lead to an investigation and sanctions. In order to better understand the antitrust risks facing foreign enterprises in China, this legal brief clarifies China’s hybrid antitrust system.

In China, Plaintiffs can enforce the Anti-Monopoly Law themselves through private antitrust actions

China’s anti-monopoly and antitrust regime is a hybrid system that includes public enforcement alongside private rights of action. Public enforcement refers to the administrative anti-monopoly investigation and law enforcement activities carried out by authorized enforcement agencies. Private rights of action mean rights held by private entities or natural persons impacted by anti-competitive conduct to enforce the Anti-Monopoly Law (the “AML”) through a civil court proceeding.

The basis of civil anti-monopoly litigation in China is Article 50 of the AML. This provision stipulates, “[t]he business operators that carry out the monopolistic conducts and cause damages to others shall bear the civil liability according to the law.” For its part, the basis for antitrust investigation is Article 38 of the AML. This provision stipulates, “[t]he Anti-monopoly Law Enforcement Agency shall investigate any suspicious monopolistic conducts according to law. Any entities or individuals may tip off any suspicious monopolistic conduct to the Anti-monopoly Law Enforcement Agency. The Antimonopoly Law Enforcement Agency shall keep the informer confidential.”

To file a civil lawsuit against an undertaking which engages in monopolistic behavior in accordance with Article 50 of China’s AML, an individual or a company must first prove that they meet the necessary requirements under Article 119 of the Civil Procedure Law (CPL). These requirements are as follows:

  • The plaintiff is a citizen, legal person or other organization that has a direct interest in the case,
  • There is a definite defendant,
  • There are concrete claims and factual reasons, and
  • Claim(s) within the accepted scope of civil actions by the people’s court and within the jurisdiction of the people’s court.

However, in China the plaintiff need not always suffer a direct loss. Although in practice that is most often the case, according to Article 1 of Provisions of the Supreme People’s Court on Several Issues concerning the Application of Law in the Trial of Civil Dispute Cases Arising from Monopolistic Conduct, any natural person, legal person or other entity can have standing to bring an antitrust claim as long as it suffers losses. Specifically, they may bring such a claim based on disputes over contractual terms, articles of association, and terms of other agreements which might fall afoul of the AML.

An increasingly common source of claims flowing from direct losses are consumer complaints. While the AML mainly aims at safeguarding consumers’ interests, protecting fair market competition and public interests, in practice, it was uncommon in the past for consumers to bring an antitrust lawsuit. Reasons may have included the high cost of litigation, imbalanced positions in legal proceedings, low rewards, and that there are no “class actions” in China like there are in the US and other jurisdictions. Accordingly, the plaintiff is often a competitor or a firm that is upstream or downstream relative to the defendant. However, consumer antitrust actions are increasingly common in China, and may continue to rise in importance relative to commercial antitrust suits.

Of note, the AML may have extraterritorial application. There is reason to believe that private actions can be brought against firms for their conduct outside China, as long as this conduct has anti-competitive effects within China’s market. In Hytera v. Motorola System, Hytera filed a lawsuit against Motorola Systems in the Shenzhen Intermediate People’s Court on March 25, 2019, for abusing its dominant market position with respect to one of its Standard Essential Patents (“SEP”).  It sought a court order against the defendant to immediately stop abusing its dominant market position and filed a claim for damages totaling 70 million yuan.  Even though the anticompetitive conduct happened outside China, the case was accepted after the plaintiff showed prima facie evidence proving anti-competitive influence in China’s market. This suggests that the AML has extraterritorial application.

Plaintiffs Often Strategically Launch Parallel Administrative and Private Actions in China

(Attribution: Syed Hasan)

In China, administrative enforcement by an antitrust enforcement agency is not a precondition for initiating a private anti-monopoly claim. Article 2 of the Provisions of the Supreme People’s Court on Several Issues concerning the Application of Law in the Trial of Civil Dispute Cases Arising from Monopolistic Conduct provides that, “[n]o matter whether the plaintiff brings a civil suit directly to the court, or brings a civil suit to the court after the anti-monopoly law enforcement agency’s effective decision that the action constitutes a monopoly act, if other requisite requirements for acceptance stipulated by law have been fulfilled, the court shall accept the case.”

At this juncture, it is noteworthy to highlight a distinction between private and public actions in China. With regard to civil litigation, according to the Civil Procedure Law and other relevant laws of China, as long as the plaintiff meets the conditions for initiating a claim, the court is required to file a case. However, the State Administration for Market Regulation (“SAMR”) is not obliged to start an investigation after receiving tip-off materials from a natural person or private entity and retains full discretion on whether or not to initiate an action.

However, in practice complaining to the antitrust authority and lodging a civil antitrust claim in parallel has become a “strategy” that plaintiffs increasingly use in China. The plaintiff may bring a civil action before a court and also report the suspected antitrust violation to SAMR. This can lead to multiple, simultaneous proceedings involving the same or related facts. In the case of Huawei v. InterDigital Technology Corporation (“IDC”), Huawei sued IDC for abusing its dominant position in March 2013 before the Intermediate People’s Court of Shenzhen and obtained a favourable judgment. IDC appealed. The judgement from the High People’s Court of Guangdong was entered in October 2013. Meanwhile, in June 2013, the National Development and Reform Commission (“NDRC”, which prior to SAMR’s formation in 2018 had antitrust authority) launched an antitrust investigation against IDC. This case was suspended and ultimately terminated after IDC made commitments that NDRC accepted.

At law, courts do have discretion to stay a private antitrust claim pending resolution of an administrative action, but in practice it is rare. Based on our experience with parallel private antitrust suits and administrative antitrust investigations, courts do not avail themselves of this discretion to stay the hearing.

In considering such parallel antitrust proceedings, it is also unclear whether China’s civil law judges approach evidence collection differently than common law judges. As regards the evidence, parties to the action are entitled to apply to the court to collect relevant evidence from the parallel administrative investigation. Chinese courts do have discretion to use their inquisitorial powers (China’s civil law judges have greater fact-finding powers than common law judges) to request such evidence from antitrust authorities of their own initiative. However, whether and to what extent they elect to use this discretion in practice is still unclear.

(Attribution: Sk)

Conclusion

This year marks the 12th year of the implementation of the AML, and the newly drafted AML (Draft for public comment) was published in January 2020. In both public enforcement and private actions since the AML’s passing, caselaw has developed considerably, alongside greater institutional experience. However, there are still some issues, in particular coordination between administrative and judicial proceedings, which need to be solved through legislation or judicial practice. Especially considering the unavailability of class actions in China, it is hoped that coordination and unity between administrative law enforcement and civil judicial practice can help both play a greater guiding role in the antitrust compliance of operators and the protection of market competition.

Have questions about complying with China’s antitrust laws? AnJie is a leading Chambers ranked firm with a leading PRC Antitrust practice. AnJie’s practice features one of the largest and most experienced antitrust teams in mainland China.

Feel free to send consultation requests to An Na (anna@anjielaw.com) or An Chencheng (anchencheng@anjielaw.com).