Compare with different regulatory event:

Description

TC260 closes consultation on security requirements for pre-installed applications

On 8 December 2022, the National Information Security Standardization Technical Committee (TC260) closed its public consultation on its national standard of "Information Security Technology - Basic Security Requirements for Pre-Installed Applications on Smartphones". It is aimed at smartphone manufacturers as well as third-parties app security assessors. The standard requires pre-installed applications to be generally uninstallable unless they fulfil a basic device function. The standard further stipulates that uninstallation should not compromise device security. The document contains security requirements regarding personal information, with some varying requirements for uninstallable and essential apps. Further, the standard sets out the requirements for third-party security audits.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
technological consumer goods, software provider: other software
Implementation Level
national
Government Branch
executive
Government Body
central government

Complete timeline of this policy change

Hide details
2022-10-09
in consultation

On 9 October 2022, the National Information Security Standardization Technical Committee (TC260) op…

2022-12-08
processing consultation

On 8 December 2022, the National Information Security Standardization Technical Committee (TC260) c…