Recently, more and more personal information protection and data protection legislations in various countries take effective. This talk covers the outline and main points of GDPR (Personal Information Protection in Europe), PDPA (Personal Information Protection Act in Singapore) and PIPL (Personal Information Protection Law in China). Privacy impact analysis methodology is proposed to meet the requirement of ISO21434 (Road Vehicle – Cybersecurity Engineer). Finally, we discuss what “potential data” in automotive is private related information followed by two use cases from Singapore PDPA.