China: Network data security management regulations including government access to data rules enters into force

On 1 January 2025, the Network data security management including government access to data rules enters into force. The regulations introduce measures for data security supervision and inspection, applying to data processors handling personal and important data. The regulations grant authorities powers to request explanations, review security-related documents, conduct technical tests, verify data exports, and take other necessary actions under relevant laws. Data processors must cooperate by providing access to security-related data, explaining algorithms, and offering technical support. A data security audit system is also established, requiring regular compliance audits by professional institutions, with authorities overseeing audits of important data processing activities.