Data hk is an online portal that provides access to public data collected by the Hong Kong government and other public sources. The site allows users to download and view datasets in various formats including line graphs, cross sectional plots, maps, etc. The website also offers tools to visualize and analyze the data.
Data security is an important aspect of data hk. The site uses SSL encryption to ensure that the data provided by the public is protected from unauthorized access and modification. It also provides a variety of ways for users to access the data, such as through a search engine or by browsing categories. The portal also provides statistics on the number of views of each dataset.
As the world becomes more interconnected, it is vital that businesses understand how to comply with global data privacy regulation when transferring personal information across borders. Padraig Walsh from Tanner De Witt takes you through the key points to consider when dealing with personal data transfers.
Modernisation of Hong Kong’s data protection laws is mooted, but until that happens it is essential that businesses take care to ensure they meet their statutory obligations in respect of data transfer. These are largely defined by DPP1 (Purpose and collection of personal data) and DPP3 (Use of personal data).
It is a key principle that personal data must only be collected for a lawful purpose and that the collection must be adequate but not excessive in relation to that purpose. This requirement is reflected in the definition of personal data in the PDPO and in other regimes around the world, such as the Personal Data Protection Act that applies in mainland China and the General Data Protection Regulation that applies in the European Economic Area.
Another of the key requirements in respect of data transfer is that a data user must expressly inform a data subject on or before collecting his personal data of the purposes for which it will be used and the classes of persons to whom it may be transferred. This obligation is usually met through the issue of a PICS.
A further requirement in respect of data transfer is that a Hong Kong data exporter should verify whether the proposed transfer of personal data meets the requirements of DPP5 (Data subject consent). This is an important but less onerous step than under GDPR, as the PCPD does not require a data exporter to obtain a specific form of consent from each data subject before he can transfer his personal information to a data processor outside of Hong Kong.
Finally, a data exporter should ensure that any personal data being transferred to a third party in a jurisdiction outside of Hong Kong is covered by DPP6 (Data security measures). This involves the data exporter making sure that any safeguards agreed with the recipient are in place to protect personal data against unauthorised or accidental access, processing or destruction, and to prevent it from being disclosed or used for purposes other than those agreed with the recipient.