What were the main digital policy regional updates in Asia? This space brings you the main updates month by month, summarised by the observatory's curators.
Follow the GIP's November 2019 briefing on Internet governance, which will include updates from the Asia region during November. Register to attend.
Curated by Amrita Choudhury
Data protection of children comes into effect in China
1 Oct 2019 | Privacy and data protection, Child safety online, Children’s rights
The regulation to protect personal data related to children, ‘Measures on Online Protection of Children’s Personal Data’ has come into effect in China. The regulation applies to the personal data of children under the age of 14 and stipulates the need for parental consent prior to the collection of information. It requires that online companies appoint someone to be in charge of protecting the personal data of children and report any data breaches affecting that data. However, it is unclear how the regulation will apply to service providers located outside China.
Fake news law comes into effect in Singapore
2 Oct 2019 | Content policy, Freedom of expression, Freedom of the Press, Intermediaries
Singapore's fake news law has now taken effect, raising new concerns about freedom of expression. The ‘Protection from Online Falsehoods and Manipulation Act’, passed in May this year, gives the government power take down any content deemed to be malicious and damaging to Singapore's interests. Journalists and activists fear this could stifle online dissent and discussion, as well as affect academic and press freedoms.
Report of data breach released by Australian National University
2 Oct 2019 | Cybersecurity
The Australian National University (ANU) has released a detailed incident report of a data breach suffered by the university in late 2018, which was discovered in May 2019, and revealed in June 2019. The report details how the attackers organised four separate spear phishing campaigns, and built their data exfiltration infrastructure on compromised web servers and legacy systems.
Sri Lanka introduces final draft of Data Protection Bill
10 Oct 2019 | Intermediaries, Privacy and data protection
The Sri-Lankan Ministry of Digital Infrastructure and Information Technology (MDIIT) has published the final draft of the Personal Data Potection Bill. The objectives of the proposed legislation are to: provide for the regulation of the processing of personal data; identify and strengthen the rights of data subjects; provide for the designation of the Data Protection Authority; regulate the dissemination of unsolicited messages using personal data; and, provide legislation for matters incidental to the processing of personal data. According to Daily FT, the bill will come into force within three years from the date it is ratified.
Facial recognition to be made mandatory in China for telecom and Internet access
10 Oct 2019 | Privacy and data protection, Cybersecurity, Telecommunications infrastructure, Other human rights
The Ministry of Industry and Information Technology (MIIT) in China has announced that starting 1 December, Chinese citizens will have to allow telecommunications carriers to scan their faces when signing up for Internet access and getting a new phone number.
Australian Cyber Security Center publishes cybersecurity guide for small businesses
11 Oct 2019 | Cybersecurity
The Australian Cyber Security Center (ACSC), has published a ‘Small Business Cyber Security Guide’ designed for small businesses to understand the various cyber-threats they face online, take action, and increase their cybersecurity resilience against growing cyber-threats online.
The 6th Wuzhen Internet Summit concludes in China
20 Oct 2019 | Emerging technologies
The 6th World Internet Conference - Wuzhen Internet Summit was organised in the town of Wuzhen, China on 20-22 October 2019. The theme this year was ‘Intelligent Interconnection for Openness and Cooperation - Building a Community with a Shared Future in Cyberspace’. Over 1500 participants from over 80 countries attended the conference.