Skip to main content
NOPE
In Effect Guidance AI Safety Context Relevance

HK AI Framework

Hong Kong PCPD Model AI Personal Data Protection Framework

Comprehensive AI guidance from Hong Kong Privacy Commissioner. Governance, risk assessment, human oversight, data stewardship. Three core values: respect, benefit, fairness.

Jurisdiction

Hong Kong

HK

Enacted

Unknown

Effective

Jun 11, 2024

Enforcement

Privacy Commissioner for Personal Data (PCPD)

Who Must Comply

This law applies to:

  • Organizations deploying AI processing personal data in Hong Kong

Who bears obligations:

DeveloperDeployer

This regulation places direct obligations on deployers (organizations using AI systems).

Safety Provisions

  • AI Governance: Cross-functional committees recommended
  • Risk Assessment: AI-specific methodology
  • Human Oversight: Review for high-impact decisions
  • Data Stewardship: Respect, benefit, fairness
  • Transparency: Disclosure of AI use and limitations
  • AI Incident Response Plans
  • Training data governance

Enforcement

Enforced by

Privacy Commissioner for Personal Data (PCPD)

Quick Facts

Binding
No
Mental Health Focus
No
Child Safety Focus
No
Algorithmic Scope
Yes

Why It Matters

Most detailed AI governance guidance in APAC. PCPD actively conducting compliance inquiries. Sets expectations that may become mandatory.

What You Need to Comply

You need: AI governance structure; documented risk assessment; human oversight; incident response; transparency disclosures.

NOPE can help

Cite This

APA

Hong Kong. (2024). Hong Kong PCPD Model AI Personal Data Protection Framework. Retrieved from https://nope.net/regs/hk-pcpd-ai-framework

BibTeX

@misc{hk_pcpd_ai_framework,
  title = {Hong Kong PCPD Model AI Personal Data Protection Framework},
  author = {Hong Kong},
  year = {2024},
  url = {https://nope.net/regs/hk-pcpd-ai-framework}
}

Related Regulations

In Effect NP AI Safety

Nepal AI Policy

Nepal national AI policy establishing governance framework and development priorities. Creates AI Governance Council (chaired by Minister for Communications and IT), AI Regulation Council, National AI Centre, and AI Regulatory Authority. Six pillars including ethics, human resource development, and sectoral application.

In Effect PK AI Safety

Pakistan AI Policy

Pakistan's national AI roadmap establishing six strategic pillars: AI Innovation Ecosystem, Awareness and Readiness, Research and Development, Infrastructure, Governance, and International Cooperation. Creates National AI Fund (NAIF), Centres of Excellence in 7 cities, and targets training 200,000 individuals annually.

In Effect RU AI Safety

Russia AI Strategy 2024

Presidential decree updating Russia's national AI development strategy through 2030, establishing key principles including human rights protection, security, technological sovereignty, non-discrimination, and accountability.

In Effect BN Data Protection

Brunei PDPO

Brunei's personal data protection order requiring DPIA and imposing penalties up to 10% Brunei turnover or $1M.

In Effect IN Data Protection

India DPDP Act

STRICTEST children's provisions in APAC. Children = under 18; verifiable parental consent MANDATORY; PROHIBITION on tracking, behavioral monitoring, targeted advertising to children.

In Effect MM Online Safety

Myanmar Cybersecurity Law

Myanmar's cybersecurity law requiring platforms with 100,000+ users to register and imposing data retention requirements. Enacted post-2021 coup with uncertain enforcement.

Back to all regulations Check if this applies to you