China: Closed consultation on the Guidelines for Network Security Standards - Implementation Guidelines for Network Data Security Risk Assessment

On 2 May 2023, the National Information Security Standardization Technical Committee (TC260) closed its consultation on the Guidelines for Network Security Standards - Implementation Guidelines for Network Data Security Risk Assessment. The guidelines provide the approach, process, and methods for network data security risk assessment, clarifying the steps and content of network data security risk assessments based on data security management, data processing activities, data security technologies, and personal information protection. The guidelines would apply to the activities of data handlers when conducting security assessments on their own or for relevant supervisory authorities to organise such inspections and assessments.