China: Closed consultation on draft standard on Information Security Technology Requirements for Large-scale Internet Enterprises to Establish Personal Information Protection Supervision Institutions

On 24 October 2023, the Chinese National Information Security Standardization Technical Committee (TC260) closed its consultation on a draft standard on the Information Security Technology Requirements for Large-scale Internet Enterprises to Establish Personal Information Protection Supervision Institutions. The standard sets out requirements for creating and operating personal information protection supervisory agencies within large Internet companies, a requirement set up by the Personal Information Protection Law. This includes specifying requirements for the agency's establishment, responsibilities, work rules, and membership.