(Reuters) – Thailand's military-appointed parliament on Thursday passed a controversial cybersecurity law that gives sweeping powers to state cyber agencies, despite concerns from businesses and activists over judicial oversight and potential abuse of power.
approved unanimously, is the latest in a wave of new laws in Asian countries that assert government control over the internet.
Civil liberties advocates, internet companies and business groups have protested the legislation, saying it would sacrifice privacy and the rule of law burdens could drive foreign businesses out of Thailand.
The military government has pushed for several laws it said would support the country's digital economy, including an amendment to the Computer Crime Act in 201
Internet freedom activists have called the legislation a "cyber martial law," as the encompass s all procedures from everyday encounters of slow internet connections to nationwide attacks on critical infrastructure.
For cyber security, the military led the National Security Council to overrule all procedures with its own law. ] "Under some wording improvements, the contentious issues are all there," Arthit Suriyawongkul, a lawyer with the Thai Netizen Network, told Reuters.
enter private property without court orders in case of actual or anticipated "serious cyber threats."
An additional Cybersecurity Regulating Committee will have sweeping powers to access computer data and networks, make copies of information and seize computers or any devices. ] Court warrants are not required for those actions in emergency cases and criminal penalties
The Asia Internet Coalition, a Singapore-based industry group that represents US giants Google and Facebook Inc., and nine other major technology companies, said it was "deeply disappointed" the law was passed.
"This would give the regime sweeping powers to monitor online traffic in the name of an emergency or as a preventive measure, potentially compromising private and corporate data, "said Jeff Paine, the group's managing director, in a statement.
Legislators also unanimously passed the Personal Data Protection Act, intended to imitate the European Union's General Data Protection Regulation.  The legislation does not require internationally large data locally, but businesses have raised concerns about its territorial applicability.
The data protection law, effective after a one-year transition period, will apply not only to companies located in Thailand. but also overseas companies that collect, use or disclose personal data of subjects in Thailand, specifically for advertisements and behavior monitoring.
"It is unrealistic for any one regime to aspire to centralize the delivery of Privacy Protections for the entire world in just one regulator," Mr.
"The two laws are crucial to help Thailand keep up with the neighbors and the world," said Saowanee Suwannacheep, a chairman. of the ad hoc parliamentary committee that worked on the legislation.