China Announces Mandatory Security Reviews for Companies’ Data Exports From September 1

China's concerns regarding overseas data exports have recently bruised a number of Chinese companies, such as Full Truck Alliance and Didi.

China Announces Mandatory Security Reviews for Companies’ Data Exports From September 1

Previously it was unknown from which date the CAC would measure the size of companies and entities

Highlights
  • The CAC launched cybersecurity reviews into Chinese companies
  • China has concerns regarding overseas data exports
  • Full Truck Alliance and Kanzhun announced the resumption

China's cyberspace regulator on Thursday said that rules requiring data exports to undergo security reviews would be effective from September 1, the first time it has given a start date for a new regulatory framework that will affect hundreds, if not thousands, of Chinese companies.

The details of a new compulsory security review to be carried out by the Cyberspace Administration of China (CAC), which will be used to determine whether large quantities of Chinese user data in the possession of a private entity can be sent overseas, were also finalised and published on Thursday, the regulator said in a statement on its official WeChat account.

While much of what the security review will entail was already laid out by the CAC in draft rules published last October, the final version published on Thursday adds an important detail.

Companies or entities that have since January 1 of last year sent abroad the personal information of 100,000 or more users, or "sensitive" personal information belonging to 10,000 or more users, would also have to undergo the CAC security review.

Previously it was unknown from which date the CAC would measure the size of companies and entities' user data troves.

The January 1 date confirms that the scope of the security review will go far beyond just "operators of critical information infrastructure and data processors handling personal information of more than 1 million people", another category defined early on by the CAC draft rules.

“Clarifying the specific provisions of the data export security review is necessary to promote the healthy development of the digital economy, prevent and resolve cross-border data security risks, safeguard national security and the societal and public interest," CAC said on Thursday.

China's concerns regarding overseas data exports have recently bruised a number of Chinese companies.

The CAC launched cybersecurity reviews into Chinese companies Full Truck Alliance, Kanzhun Ltd, and ride-hailing giant Didi Global in July last year, ordering them to stop registering new users, citing national security and the public interest.

While Full Truck Alliance and Kanzhun announced the resumption of new user registration last week and said it had "rectified" the issues identified by the CAC's probe, Didi has yet to make a similar announcement.

© Thomson Reuters 2022


What are the best tablets? We discuss this on Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
Comments

For the latest tech news and reviews, follow Gadgets 360 on Twitter, Facebook, and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel.

Redmi K50S Pro Visits 3C Certification Site; Snapdragon 8+ Gen 1 SoC, 120W Fast Charging Tipped
Share on Facebook Tweet Snapchat Share Reddit Comment google-newsGoogle News
 
 

Advertisement

Follow Us

Advertisement

© Copyright Red Pixels Ventures Limited 2023. All rights reserved.