Proya Cosmetics Co., Ltd. organized a special legal training on “Enterprise Data Compliance Legal Practices” on September 29 in order to further enhance employees’ legal awareness of data compliance and strengthen the enterprise’s capabilities for preventing data security risks. Lawyer Zhou Jianzhong, a partner of Grandall Law Firm (Hangzhou) and deputy director of the Intellectual Property Committee of the Lawyers Association of Zhejiang, was invited to give a lecture for this training. More than 50 employees from the Company’s Information Platform Department, Data Department, Strategic Brand Center, Consumer Operation Center, E-commerce Business Department, Legal Department and other departments participated in the training.

    At the beginning of the training, Angela, Legal Director of Proya Cosmetics Co., Ltd., delivered the opening speech. She pointed out that in recent years, the Cybersecurity Law, Data Security Law and Personal Information Protection Law, as a “troika”, indicate that China has started to impose stringent regulations on network security and data compliance. In the fast-moving consumer goods industry, fully understanding data protection standards, compliance points and regulatory trends is particularly important for a company to ensure its compliance and sound development.

    During the training, lawyer Zhou Jianzhong comprehensively explained relevant rules, cases and practices of data compliance from many aspects, including frontier studies, compliance practices and application of laws. His explanations were based on his more than 10 years of professional experience in intellectual property and the Company’s obligations arising from data interaction in its business operations. He also elaborated on compliance points, such as “principle of least privilege for collecting personal information”, “data anonymization and de-identification processing”, as well as “privacy policies and user agreements”. In addition, he presented an in-depth analysis of the legal issues relating to Proya’s collection, storage, usage, processing, sharing, and transferring of customers’ personal information in its marketing activities, and put forward many reasonable and feasible risk prevention and control suggestions.

    The training has enhanced employees’ data security awareness and data application skills, and clarified the enterprises’ network security obligations and key points of compliance risks. Proya takes the construction of a corporate compliance management system as a starting point. To empower the industry with data and promote development via compliance efforts, we will continue conducting legal compliance and risk control training, providing a solid foundation and guarantee for our healthy and sustainable development.