The 64th APPA Forum, hosted by the Personal Data Protection Bureau, Macao, China

The Personal Data Protection Bureau (PDPB) Macao, China hosted the 64th Asia Pacific Privacy Authorities (APPA) Forum on 24 and 25, November 2025 in Macao, with both in-person and virtual attendance.

The forum was attended by 15 APPA members across the Asia Pacific Region. Several guests and observer from around the globe were also in attendance, including data protection and privacy authorities, together with guests from the think tanks, industry and academia.

Over the concentrated one and half day, APPA members, observer and guests discussed a wide array of global privacy issues, regulatory experiences, and enforcement challenges, particularly those arising from the use of Artificial Intelligence and other new technologies, Youth Privacy, Cross-Border Data Transfer, Data Protection by Design and Different Ways of Raising Awareness in Personal Data Protection. Members also shared their latest developments, expertise, insights and personal ideas, as well as introduced their latest publications and guidance materials. Their contributions have enriched collective understanding of the critical role that privacy authorities play in advancing the development of personal data protection and promoting a better privacy culture.

The one and half day’s meeting was divided into the Members-Only Session, the Closed Session for Members, Observers from Data Protection Authorities and Open Session for Members, Observers from Data Protection Authorities and Invited Guests from Academia and Industry.

The highlights of the forum are summarized below:

New member:

APPA welcomed the Office of the Personal Data Protection Committee, Thailand as a new member.

Day One

The morning sessions were limited to APPA member authorities. Ms. Joana Io, Head of Department of Supervision, Administration and Finance of the Personal Data Protection Bureau (PDPB) Macao, China opened the 64th APPA Forum and welcomed APPA members to Macao as well as those participating virtually and gave the opening remarks. The opening formalities ended with the approval of the 63rd APPA Forum’s meeting minutes.

Following the Opening Formalities, the formal agenda began with an update from the Personal Data Protection Commission (PDPC) of Singapore in its capacity as APPA Secretariat and Chair of the APPA Governance Committee. This was followed by activity reports delivered by the two APPA Working Groups – the Communications Working Group chaired by Personal Data Protection Bureau (PDPB) Macao, China, and the Technology Working Group chaired by Personal Data Protection Commission (PDPC) of Singapore.

APPA members then presented their jurisdiction reports and gave updates on key privacy developments in their jurisdictions.

Some of the themes discussed during the session included:

  • Legislative updates,
  • AI Governance and Emerging Technology Risks, and
  • Cybersecurity Resilience and Breach Response

At the end of the Members-only Session, the draft communiqué was discussed.

The afternoon session commenced with a discussion moderated by Personal Data Protection Bureau, Macao China on the Challenges and Roles of Data Protection Authorities (DPAs) in the era of Artificial Intelligence (AI) and Emerging Technologies. Members have highlighted on many occasions the challenges and the roles of DPAs in this new digital era.

This was followed by the presentations and discussion on the theme of New Developments in the Regulations of Cross-Border Data Transfer moderated by Personal Data Protection Commission of Singapore.

For the Open Session, this was opened to APPA Members, Observer from Data Protection Authorities and Invited Guests from Academia and Industry. The industries and academics from China and Greater Bay Area expressed their perspectives and discussed the topic of AI and Emerging Technologies. Through the comprehensive exchange of thoughts and ideas with industries and academics, DPAs can find the best balance between the compliance of data protection regulations and the support of ongoing technology advancement, as well as assistance to industries building more effective privacy-enhancing technologies.

Day one concluded with the closing remarks of Ms. Joana Io of PDPB.

Day Two

The second day of the Forum was opened with a short introduction from Ms. Joana Io of Personal Data Protection Bureau (PDPB) Macao, China.

It was followed by presentations from global privacy networks and organisations, including updates on the activities and initiatives of the:

  • Global Privacy Assembly
  • Global Privacy Assembly, International Enforcement Cooperation Working Group
  • Global Privacy Assembly, Working Group on Ethics and Data Protection in Artificial Intelligence
  • Global Privacy Assembly, Data Protection and Other Rights and Freedoms Working Group
  • Group of Seven (G7) DPA Roundtable
  • Global Cross-Border Privacy Rules (CBPR) Forum

This was followed by the presentations and discussion on the theme of Data Protection by Design – ASEAN’s Shared Journey moderated by Personal Data Protection Commission of Singapore.

Next was the discussion session on Youth Privacy. With the rapid development of new technologies, including AI, the youth are increasingly exposed to privacy risks. Although DPAs across the Asia Pacific region are making continuous efforts to safeguard youth privacy, there are inconsistencies in how youth privacy is protected across jurisdictions, and it is timely and meaningful for the discussion to address the role of DPAs.

This was followed by discussion on the topic of Different Ways of Raising Awareness in Personal Data Protection. It is believed that data protection awareness is crucial for both individuals and organisations. Though challenges in raising awareness in personal data protection may be encountered, we believe that through the APPA members’ joint efforts, we can continuously foster cooperation in privacy and data protection, particularly for raising awareness in personal data protection.

To end the proceedings, the announcement of the host of the 65th APPA Forum was made, and the draft communiqué was approved for release. Ms. Joana Io of PDPB  gave the closing remarks.

Next meeting

The 65th APPA Forum will be hosted by Office of the Privacy Commissioner for Personal Data, Hong Kong SAR, China.

64th APPA Forum attendees

  • Office of the Australian Information Commissioner, Australia
  • Information and Privacy Commission, New South Wales, Australia
  • Office of the Information Commissioner, Queensland, Australia
  • Office of the Victorian Information Commissioner, Victoria, Australia
  • Office of the Privacy Commissioner, Canada
  • Office of the Information and Privacy Commissioner, British Columbia, Canada
  • Office of the Privacy Commissioner for Personal Data, Hong Kong SAR, China
  • Personal Data Protection Bureau, Macao SAR, China
  • The Personal Information Protection Commission, Japan
  • Korea Personal Information Protection Commission, Korea
  • Office of the Privacy Commissioner, New Zealand
  • National Privacy Commission, Philippines
  • Personal Data Protection Commission of Singapore
  • California Privacy Protection Agency, United States of America
  • Office of the Personal Data Protection Committee, Thailand

64th APPA Forum observer and guests

  • The Office of the Information Commissioner (OIC), Western Australia
  • Hon Chi Tin, Professor, Department of Engineering Science, Macau University of Science Technology
  • Alan Hui, Hong Kong University of Science and Technology (Guangzhou)
  • Hong Yanqing, Professor, Beijing Institute of Technology
  • Allen Ting, Global Digital Legal Director of Huawei Consumer Business Group (former Chief Personal Data Officer with PCPD Hong Kong)
  • Global Privacy Assembly
  • Global Privacy Assembly, International Enforcement Cooperation Working Group
  • Global Privacy Assembly, Working Group on Ethics and Data Protection in Artificial Intelligence
  • Global Privacy Assembly, Data Protection and Other Rights and Freedoms Working Group
  • Group of Seven (G7) DPA Roundtable
  • Global Cross-Border Privacy Rules (CBPR) Forum
  • Global Cross-Border Privacy Rules (CBPR) ForumOffice of the Personal Data Protection Committee, Thailand