China: Issued ruling in CAC's Cybersecurity Investigation into Didi Chuxing

On 21 July 2022, the Cyberspace Administration of China (CAC) announced that the cybersecurity review of Didi Chuxing, a leading ride-hailing and transportation platform, had been closed and resulted in fines being imposed on Didi for violations of China's cybersecurity and data protection rules. According to the CAC, Didi's violations consisted, among other points, in the excessive collection of customer data, compulsory collection of sensitive personal information, and improper notification of customers regarding the handling of personal information. The CAC imposed a fine of RMB 8.026 billion on the company, with the Chairman and President of Didi also being fined RMB 1 million each.