China: Adopted Guidelines for Network Security Standards - Implementation Guidelines for Network Data Security Risk Assessment
Description
Adopted Guidelines for Network Security Standards - Implementation Guidelines for Network Data Security Risk Assessment
On 26 May 2023, the Chinese National Information Security Standardisation Technical Committee (TC260) adopted Guidelines for Network Security Standards - Implementation Guidelines for Network Data Security Risk Assessment. The guidelines aim to support data processors in conducting risk evaluations. The primary objective of the risk assessment is to ensure data security and personal information protection by identifying data types, assessing data processing activities, and identifying potential security risks that could impact national security and public interests. Further, the guidelines aim to provide support in assessment preparation, risk identification, and evaluation.
Original sourceScope
Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body
Complete timeline of this policy change
Hide details
2023-04-14
in consultation
2023-05-02
processing consultation