Blog Image
Profile Image Verifile
April 24 2017

Macau data transfer enforcement decision

On January 6, 2017, the Office for Personal Data Protection (GPDP) announced that it fined an organization MOP 12,000 (approx. £1,410) for breaching the data transfer restrictions under Articles 19 and 20 of the Personal Data Protection Act 2005, due to the fact that it did not notify the GPDP before such transfer, nor did it obtain consent. 

Michelle Chan and Clarice Yue, Partner and Senior Associate respectively at Bird & Bird, told DataGuidance, "In the digital era, it is unavoidable for international businesses to transfer data from one jurisdiction to another. However, as the data transfer requirements in different jurisdictions may vary, it is vital for international businesses to come up with an overall policy in respect of data transfers across the applicable jurisdictions.