Description

Implemented Network Data Security Management Regulation including cybersecurity requirements

On 1 January 2025, the Network Data Security Management Regulation enters into force. The Regulation implements and further specifies obligations under the Cybersecurity Law, Data Security Law, and Personal Information Protection Law (PIPL). Under the Regulation, companies shall improve their data security management systems. Moreover, data processors have to apply for cybersecurity review in accordance with the relevant regulations.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body

Complete timeline of this policy change

Hide details
2021-11-14
under deliberation

On 14 November 2021, the Draft Regulations on the Administration of Network Data Security have been…

2021-11-14
in consultation

On 14 November 2021, the consultation for the Draft Regulations on the Administration of Network Da…

2021-12-13
processing consultation

On 13 December 2021, the consultation for the Draft Regulations on the Administration of Network Da…

2024-08-30
adopted

On 30 August 2024, the State Council of China approved the Network Data Security Management Regulat…

2025-01-01
in force

On 1 January 2025, the Network Data Security Management Regulation enters into force. The Regulatio…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.