China Justice Observer

中司观察

EnglishArabicChinese (Simplified)DutchFrenchGermanHindiItalianJapaneseKoreanPortugueseRussianSpanishSwedishHebrewIndonesianVietnameseThaiTurkishMalay

China to Revise Cybersecurity Law to Strengthen Liabilities for Information Security

Mon, 24 Oct 2022
Categories: China Legal Trends

On 14 Sept. 2022, the Cyberspace Administration of China released the “Decision to Amend the Cybersecurity Law of the People’s Republic of China (Draft for Public Comment)” (关于修改〈中华人民共和国网络安全法〉的决定(征求意见稿)).

China’s Cybersecurity Law came into effect in 2017. Thereafter, in 2021, China amended the Administrative Penalty Law, and enacted the Data Security Law and the Personal Information Protection Law successively. The amendments to the Cybersecurity Law seek to improve consistency between these new laws.

The Draft for Comment mainly makes the following revisions to the current Cybersecurity Law with respect to the legal liability system.

  1. The headline fine on enterprises is significantly raised from CNY 50,000 (USD 7,026) to CNY 100,000 (USD 14,052), to CNY 50 million (USD 7 million) or 5% of the previous year’s turnover.
  2. The scope of violations for which critical information infrastructure operators are liable is more clearly defined, including “use of non-compliant products” and “improper data export”.
  3. Persons who are personally liable for cybersecurity will be banned from acting as directors, supervisors, and senior managers of related enterprises or from engaging in cybersecurity management and key positions of network operation for a certain period of time.

 

 

Cover Photo by Liam Li on Unsplash

 

 

Contributors: CJO Staff Contributors Team

Save as PDF

Related laws on China Laws Portal

You might also like

China Defines Rules for Calculating Trademark Infringement Gains

In October 2024, the China National Intellectual Property Administration (CNIPA) and the State Administration for Market Regulation (SAMR) jointly issued the “Measures for Calculating Illegal Business Revenue in Trademark Infringement Cases”, which provide detailed operational guidelines for trademark enforcement authorities to calculate illegal business revenue.

SPC Releases Typical Cases on Tourism Disputes

In September 2024, China's Supreme People's Court (SPC) released five typical tourism dispute cases, including health rights disputes caused by wild monkey attacks in Mount Emei, to guide courts in resolving common tourism conflicts and safeguarding tourists' legitimate rights and interests.

China Regulates Network Data Security

China's newly adopted “Regulation on Network Data Security Management”, effective January 1, 2025, seeks to standardize data processing, strengthen personal information protection, and tackle issues such as data security, risk assessments, and personalized profiling.

Beijing & Shanghai Unveil Low-Altitude Economy Plans

Beijing and Shanghai have announced plans to develop the low-altitude economy, aiming to grow the industry to CNY 100 billion and CNY 50 billion respectively by 2027, with a focus on aerial rescue, logistics, and passenger transport.

SPC Releases Typical Antitrust Cases

In September 2024, China's Supreme People's Court (SPC) published eight typical cases on antitrust and unfair competition, highlighting issues like price-fixing, market dominance abuse, and deceptive practices.