Digital Policy Alert logo

China: Implemented Network Data Security Management Regulation including cybersecurity requirements

Policy overview

Description

Implemented Network Data Security Management Regulation including cybersecurity requirements

On 1 January 2025, the Network Data Security Management Regulation enters into force. The Regulation implements and further specifies obligations under the Cybersecurity Law, Data Security Law, and Personal Information Protection Law (PIPL). Under t…

Scope

Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body

Complete timeline of this policy change

Hide details
2021-11-14
under deliberation

On 14 November 2021, the Draft Regulations on the Administration of Network Data Security have been…

2021-11-14
in consultation

On 14 November 2021, the consultation for the Draft Regulations on the Administration of Network Da…

2021-12-13
processing consultation

On 13 December 2021, the consultation for the Draft Regulations on the Administration of Network Da…

2024-08-30
adopted

On 30 August 2024, the State Council of China approved the Network Data Security Management Regulat…

2025-01-01
in force

On 1 January 2025, the Network Data Security Management Regulation enters into force. The Regulatio…