Will Asia-Pacific trade agreements collide with EU adequacy and Asian laws?
Increasingly common data export and data localisation clauses create a complex privacy landscape in the Asia-Pacific. By Graham Greenleaf.
In Asia and the Pacific, two levels of “free trade agreements” (FTAs)(1) are operating to limit the scope of data export restrictions, and to prevent enactment of data localisation requirements. They have implications for relationships between Europe and the Asia-Pacific region.(2) On the one hand, the multilateral CPTPP (Comprehensive and Progressive Agreement for Trans-Pacific Partnership) contains such restrictions, and has become more relevant because the UK has made clear its desire to accede to it. Other multilateral agreements and proposals in the Asia-Pacific contain different versions. Restrictions on data localisation are even stronger in the trilateral US - Mexico - Canada FTA (USMCA), and may influence other agreements involving the US. At the same time, bilateral FTAs involving various Asia-Pacific countries, including Singapore, Japan, Australia and Sri Lanka, and proposed for the United Kingdom, also include provisions on data exports and data localisation. This article focuses on these Asia-Pacific agreements, the extent to which they are consistent, and their possible relationship with EU adequacy decisions.