China: National Information Security Standardisation Technical Committee opened consultation on standard practice guide-personal information protection compliance audit requirements
Description
National Information Security Standardisation Technical Committee opened consultation on standard practice guide-personal information protection compliance audit requirements
On 28 April 2025, China's National Information Security Standardisation Technical Committee (TC260) opened a public consultation on the Cybersecurity Standard Practice Guide-Personal Information Protection Compliance Audit Requirements (Draft for Comments V1.0-202504) until 6 May 2025. The draft guide provides technical guidance for conducting compliance audits related to personal information protection, aligning with China's Personal Information Protection Law (PIPL) and other relevant regulations, aiming to standardise audits, protect personal information rights, and regulate data processing activities.
Original sourceScope
Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body