China: National Information Security Standardisation Technical Committee opened consultation on cybersecurity standard practice guidelines for deployment and use of openclaw-type intelligent agents

On 31 March 2026, the National Information Security Standardisation Technical Committee opened a consultation on cybersecurity standard practice guidelines for the deployment and use of openclaw-type intelligent agents, until 15 April 2026. The guidelines apply to organisations managing such deployments internally, though commercial agent deployments are excluded. The guide sets out security obligations across the full agent lifecycle, covering installation, configuration, usage, and uninstallation, including requirements to restrict network exposure, encrypt credentials, enforce allow lists, require human approval for high-risk operations, and thoroughly purge data upon removal. It also recommends that users select cloud environments with robust identity, network, and supply chain security capabilities. It also recommends organisations to establish internal governance measures including agent asset registries, shadow agent detection, and employee security training.