China: Closed consultation on draft Guidance on Social Responsibility of Data Security and Personal Information Protection

On 19 August 2024, China's National Information Security Standardization Technical Committee (TC260) closes its consultation on the draft Guidance on Social Responsibility of Data Security and Personal Information Protection. The draft Guidance outlines social responsibilities in relation to data security and personal information protection. The draft Guidance groups these social responsibilities under the five key themes of organisational governance, compliance, innovation and value expression, fair operation, competition and cooperation, user rights protection, public welfare participation, and social development. For each theme, the draft Guidance sets out sub-topics and best practices for organisations to follow in order to comply with social responsibilities in relation to data security and personal information protection. The draft Guidance also provides an extensive list of practical examples and templates.