People's Republic of China
China has recently taken steps toward a comprehensive and stringent regulatory framework focused on cybersecurity and data privacy. These recent changes create more challenges for companies that operate in China while significantly affecting business activities. The Standing Committee of China’s National People’s Congress promulgated China’s Personal Information Protection Law (PIPL) that moves enterprises into a new reality.
Expand your business into China and stay compliant
Compliance and Security
InCountry is committed to protecting customers' information worldwide and to helping them comply with applicable data residency laws in the countries in which they operate.
PIPL
China’s Personal Information Protection Law
CSL
Cybersecurity Law
DSL
Data Security Law
InCountry adheres to international information security standards best practices.
ISO 27001
Information Security Management Standart
ISO 27017
Code of Practice for Cloud-Specific Information Security Control
ISO 27018
Code of Practice for Protecting Personal Data in the Cloud
ISO 27701
Extension to ISO 27001 for Privacy Information Management
SOC 1 Type II
Information Security Management Standart
SOC 2 Type II
Information Security Management Standart
SOC 3
Information Security Management Standart
Manage regulated data with InCountry
With minimum configuration, you can define what to localize within China with InCountry, without requiring application changes that affect the existing functionality and workflows. Your application continues operation with two data stores. The native application data store retains non-regulated data while the local data store keeps the highly regulated data in compliance with Chinese data protection regulation.
customer success story
IBM Consulting implemented the InCountry platform for Fortune 500 enterprises that fulfills regulatory requirements both in China and globally for complex matrix organizations. Using InCountry for Salesforce, the customer was able to continue to leverage their existing Salesforce instance with minimal changes. This allowed the company to manage localized data in a single secure cloud platform that’s a major win for companies looking to keep costs down as they enter China or other markets with strict data compliance regulations.
Features and benefits
Frequently asked questions
The InCountry platform allows you to localize personal data of Chinese citizens within the domestic borders of China so regulated data does not leave its country of origin.
Yes, if you capture the consent from the PII data owner that personal data can be replicated somewhere else, anyway this can be done only when the primary copy of this data was created in China.
No, personal data cannot cross borders without a given PII data owner’s consent. This means that you cannot even read this data outside China, only acceptable within domestic borders.
No, Alibaba Cloud covers this, so you don’t need to get an ICP license to start using the InCountry platform.