With the growing number of digital industrial enterprises in China and the explosion of data from the industrial Internet, data security is becoming increasingly important for the smooth operation of enterprises in China. On April 8, 2022, the China Industrial Information Security Development Research Center (CIC) released the China Industrial Internet Industry Integration Development Report… Continue reading Data Lifecycle Security Management on the Industrial Internet
Category: Compliance
Important Data in Industry and Information Technology
The Data Security Law (DSL) requires companies to categorize their data as “general data,” “important data,” and “core data.” Which data falls into these categories varies from industry to industry. The definition of important data for the automotive industry has received the most attention so far, and also for the financial industry a detailed explanation… Continue reading Important Data in Industry and Information Technology
Data Protection: Obstacle to the Digital Economy?
There are new proposals for data management and cross-border data transfer. For example, the issues of data ownership, use, processing and control should be clarified. Data privacy, trade secrets and national security should be regulated in certain use scenarios such as Big Data marketing, corporate data sharing and cross-border data flows. Regulation of cross-border data… Continue reading Data Protection: Obstacle to the Digital Economy?
IP Compliance Guidelines
The Shanghai Pudong New Area Procuratorate has released China’s first intellectual property rights (IPR) compliance guidelines. The goal is to highlight IPR-related risks and drive the establishment of a robust IP compliance system. IP compliance includes patents, trademarks, copyrights, and trade secrets. The guidelines distinguish IPR risks according to their level. For example, changes in… Continue reading IP Compliance Guidelines
China’s Strict IT Compliance Competes with RCEP
The world’s largest free trade agreement, the Regional Comprehensive Economic Partnership (RCEP), has been in effect since Jan. 1, 2022. It allows companies in participating countries to engage in cross-border partnerships, tariff reductions and trade simplification. Over the next 20 years, up to 90% of tariffs incurred in the zone are expected to be eliminated.… Continue reading China’s Strict IT Compliance Competes with RCEP
First Corporate Data Compliance Guideline in China
On January 30, 2022, Shanghai issued the first official Corporate Data Compliance Guideline. The 38-article document guides companies to strengthen their data management in terms of data compliance, identification, assessment and elimination of data risks. The guideline emphasizes that a company’s management is responsible for data compliance and recommends that a dedicated data compliance management… Continue reading First Corporate Data Compliance Guideline in China
National Standard Provides Insight into Future Data Requirements
The requirements of the internationally widely discussed Data Security Law (DSL, effective since Sep 1, 2021) are a challenge for many companies operating in China. To establish a hierarchical protection system for data classification, China’s National Information Security Standardization Technical Committee has issued the National Standard – Guide for Important Data Identification (Draft, hereinafter referred… Continue reading National Standard Provides Insight into Future Data Requirements
Legal Requirements for Vulnerability Management
For some time now, CIOs around the world have been busy fixing the Log4j2 vulnerability. From a technical perspective, there are solutions such as patches and system upgrades. However, vulnerability management is not just a technical issue in China; there are also legal requirements that companies must meet. For example, service providers are required by… Continue reading Legal Requirements for Vulnerability Management
Measures of the Cyber Security Review
China continues to strengthen its control of operators of large Internet platforms. In addition to the regulation on the use of algorithms to influence user behavior, such as recommendation algorithms, which will come into force on March 1, 2022, the Cybersecurity Review Measures will come into force on February 15, 2022. In addition to operators… Continue reading Measures of the Cyber Security Review
Cyber Security and Data Protection: What’s in Store for 2022?
The year 2021 was – not only, but also – a turbulent year in the areas of cyber security and data protection in China. In addition to increased enforcement of the Multi-Level Protection Scheme (MLPS) in China, the implementation of which has been legally binding for companies in China since 2017 (see our webinars), many… Continue reading Cyber Security and Data Protection: What’s in Store for 2022?
China Intellectual Property Blog 