China Justice Observer

中司观察

EnglishArabicChinese (Simplified)DutchFrenchGermanHindiItalianJapaneseKoreanPortugueseRussianSpanishSwedishHebrewIndonesianVietnameseThaiTurkishMalay

China to Revise Cybersecurity Law to Strengthen Liabilities for Information Security

Mon, 24 Oct 2022
Categories: China Legal Trends

On 14 Sept. 2022, the Cyberspace Administration of China released the “Decision to Amend the Cybersecurity Law of the People’s Republic of China (Draft for Public Comment)” (关于修改〈中华人民共和国网络安全法〉的决定(征求意见稿)).

China’s Cybersecurity Law came into effect in 2017. Thereafter, in 2021, China amended the Administrative Penalty Law, and enacted the Data Security Law and the Personal Information Protection Law successively. The amendments to the Cybersecurity Law seek to improve consistency between these new laws.

The Draft for Comment mainly makes the following revisions to the current Cybersecurity Law with respect to the legal liability system.

  1. The headline fine on enterprises is significantly raised from CNY 50,000 (USD 7,026) to CNY 100,000 (USD 14,052), to CNY 50 million (USD 7 million) or 5% of the previous year’s turnover.
  2. The scope of violations for which critical information infrastructure operators are liable is more clearly defined, including “use of non-compliant products” and “improper data export”.
  3. Persons who are personally liable for cybersecurity will be banned from acting as directors, supervisors, and senior managers of related enterprises or from engaging in cybersecurity management and key positions of network operation for a certain period of time.

 

 

Cover Photo by Liam Li on Unsplash

 

 

Contributors: CJO Staff Contributors Team

Save as PDF

Related laws on China Laws Portal

You might also like

First Tort Suit Under China’s Anti-Foreign Sanctions Law

In March 2025, China’s Supreme People’s Court (SPC) reported the first-ever tort suit under the Anti-Foreign Sanctions Law, enabling a Chinese firm to recover over CNY 84 million after a European partner withheld payment invoking a third country’s sanctions.

ABLI-HCCH webinar: Cross-Border Commercial Dispute Resolution – Electronic Service of Documents and Remote Taking of Evidence (July 10, 2025)

The Asian Business Law Institute (ABLI) and the Hague Conference on Private International Law (HCCH) will host their fourth joint webinar on July 10, 2024 (5:00–6:10 PM SGT), focusing on electronic service of documents and remote taking of evidence under the Service and Evidence Conventions, featuring expert speakers, with an early bird discount available until June 10.

China Tightens Corporate Personal Data Audit Rules

In February 2025, China's Cyberspace Administration issued the "Measures for the Administration of Personal Information Protection Compliance Audits", effective May 1, 2025, mandating regular audits for companies, especially those processing data of over 10 million individuals, to ensure transparency and legality in personal data handling.

SPC Releases Typical Cases on Telecom Fraud Crimes

In February 2025, China's Supreme People's Court (SPC) released eight typical telecom fraud cases, exposing new criminal methods and highlighting intensified judicial efforts after handling 31,000 such cases in 2023.

SPC Targets Cyber Extortion with Typical Cases

In February 2025, China’s Supreme People’s Court (SPC) released six typical cases showcasing its crackdown on emerging cyber extortion crimes, including spreading rumors and sextortion, to encourage victims to seek legal protection.

China Issues New Rules on Foreign-Related IP Disputes

In March 2025, China issued regulations effective May 1, 2025, to enhance dispute resolution, evidence collection, and countermeasures for foreign-related intellectual property disputes, strengthening services and enterprise capabilities.

SPC Issues China’s First Anti-Anti-Suit Injunction (AASI) in IP Case

In December 2024, China’s Supreme People’s Court (SPC) issued its first anti-anti-suit injunction in a patent dispute, Huawei v. Netgear, prohibiting Netgear from obstructing Huawei’s Chinese litigation, marking a significant step in global standard-essential patent governance.