On 1 January 2025, the Network Data Security Management Regulation enters into force. The Regulation implements and further specifies obligations under the Cybersecurity Law, Data Security Law, and Personal Information Protection Law (PIPL). Under the Regulation, companies shall improve their data security management systems. Moreover, data processors have to apply for cybersecurity review in accordance with the relevant regulations.
Original source