Click above|Follow us
Recently, the National Technical Committee 260 on Cybersecurity of Standardization Administration (hereinafter referred to as "TC260") has publicly solicited opinions on the "Security Requirements for Data Processing in the Event of Internet Platform Suspension of Service", and many places have issued compliance guidelines for specific areas such as live-streaming e-commerce and generative artificial intelligence services. On the practical front, after the release of the "Draft Measures for the Administration of National Network Identity Authentication Public Services", the National Network Identity Authentication APP (pilot version) has been launched, and various government and internet APPs have initiated a pilot program of "Network ID"; various regions have announced the filing of generative artificial intelligence services on a regular basis, carried out APP compliance inspections and announcements, and promoted the compliance of vehicle network OTA and other work. Overseas, the German Federal Financial Supervisory Authority, the German Federal Office for Information Security, the Norwegian data protection authority and other organizations continue to focus on the compliance of algorithms and artificial intelligence; the state of Illinois, the state of Pennsylvania in the United States, Israel, the UAE and other places have made progress in data legislation.
HOTSPOT
HOTSPOT
TC260 publicly solicited opinions on the "Cybersecurity Standard Practice Guide - Data Processing Security Requirements for Internet Platform Suspension of Service (Draft for Comments)"
On August 7, 2024, TC260 publicly solicited opinions on the "Cybersecurity Standard Practice Guide - Data Processing Security Requirements for Internet Platform Suspension of Service (Draft for Comments)" (hereinafter referred to as the "Requirements for Data Processing During Service Suspension").
The "Requirements for Data Processing During Service Suspension" provide standardized practical guidelines for the basic requirements of data processing after the suspension of internet platforms, especially the requirements for the processing of personal information and important data.
According to the "Requirements for Data Processing During Service Suspension," after the suspension of an internet platform, operators should follow the requirements to promptly deal with apps and mini-programs not providing services for a long time, publish announcements for the disposal of personal information, stop collecting personal information and important data from the date of service suspension, and delete, continue to store under conditions, or transfer personal information in compliance. It also clarifies that operators who hold personal information of more than 10 million people should also comply with the same requirements as those handling important data, including reporting important data disposal plans and assessing the effectiveness of important data deletion.
For more information, please click here.
Source: TC260
Apps such as WeChat, Taobao, and Xiaohongshu have launched pilot programs for "online ID cards."
According to media reports, since the Cyberspace Administration of China released the "National Cybersecurity Identity Authentication Public Service Management Measures (Draft for Comments)" on July 26, the national cybersecurity identity authentication public service has started pilot work. On the one hand, the National Cybersecurity Identity Authentication APP (Pilot Version), which can be applied for and used for "web numbers" and "web certificates," has been launched in multiple app stores. Users can apply for a "cybersecurity identity authentication voucher" after verifying with their ID card, associating their mobile phone number, and setting a voucher password. On the other hand, the cybersecurity identity authentication has been launched in more than 60 pilot APPs and scenarios, including some government affairs APPs and multiple internet APPs, such as the National Government Service Platform, Railway 12306, and internet applications like Taobao, WeChat, Xiaohongshu, etc.
To read the "National Cybersecurity Identity Authentication Public Service Management Measures (Draft for Comments)," please click here.
Source: Daily Economic News
NEWSLETTER
NEWSLETTER
(Click on the source or copy the corresponding link to view the details)
LEGISLATION
TC260 is openly soliciting opinions on the "Cybersecurity Standard Practice Guide - Data Processing Security Requirements for Internet Platform Suspension of Service (Draft for Comments)"
Source: TC260
The Ministry of Natural Resources has announced the list of normative documents that continue to be effective
Source: The Ministry of Natural Resources
The China Financial Regulatory Bureau has issued a notice on strengthening and improving the supervision of internet property insurance business
Source: The China Financial Regulatory Bureau
https://www.cbirc.gov.cn/cn/view/pages/ItemDetail.html?docId=1173683&itemId=928
The Ministry of Industry and Information Technology has released the "Opinions on Innovating Information and Communication Industry Management and Optimizing the Business Environment"
Source: MIIT
https://wap.miit.gov.cn/jgsj/xgj/scgl/art/2024/art_023e9daae1a64f3aa989cab9679f170f.html
Beijing has released the "Beijing Live-streaming E-commerce Compliance Guidelines"
Source: Beijing Municipal Bureau of Market Supervision
https://scjgj.beijing.gov.cn/hdjl/zxft/rdbb/202408/t20240809_3771213.html
Guangdong has released the "Guangdong Province Science and Technology Innovation Regulations"
Source: Guangdong People's Congress
Hefei has released the "Hefei City Enterprise Data Compliance Guidelines (Trial)"
Source: Hefei Municipal Data Resources Bureau
https://sjzyj.hefei.gov.cn/content/article/18741755
Guangzhou has released the "Guangzhou Micro-Short Play Industry Self-Regulation Convention" and "Guidelines for the Safety and Compliance of Generative Artificial Intelligence Services".
Source: Guangzhou Internet Association
The Western Data Exchange Center is openly soliciting opinions on the "Western Data Exchange Social Data Asset Inventory Substantive Review Implementation Rules (Trial) (Draft for Comments)" and "Western Data Exchange Social Data Asset Compliance and Rights Ownership Substantive Review Implementation Rules (Trial) (Draft for Comments)"
Source: Western Data Exchange Center
INDUSTRY TRENDS
The CAC states that the country has more than 190 generative AI models that are filed, online, and ready to provide services, with registered users exceeding 600 million
Source: Cyberspace Administration of China
The CAC has released the seventh batch of deep synthesis service algorithm filing information announcements
Source: Cyberspace Administration of China
The Hubei Cyberspace Administration has issued a notice on the filing of generative artificial intelligence service information
Source: Hubei Cyberspace Administration
The Sichuan Cyberspace Administration has issued a notice on the filing of generative artificial intelligence service information
Source: Sichuan Cyberspace Administration
The Ministry of Industry and Information Technology (MIIT) is organizing the collection of typical cases of digital transformation in the manufacturing industry for the year 2024
Source: MIIT
https://www.miit.gov.cn/zwgk/zcwj/wjfb/tz/art/2024/art_9c348c0fdf5f4764b0864b8b2cbd6e61.html
The MIIT is organizing the collection of typical application cases where artificial intelligence empowers the new industrialization
Source: MIIT
https://www.miit.gov.cn/zwgk/zcwj/wjfb/tz/art/2024/art_eb70e19c3b75499ea7b7e67b7114354c.html
The Shanghai Communications Administration Bureau held a policy dissemination meeting on the network and data security management of intelligent connected vehicles
Source: Shanghai Communications Administration Bureau
The Shanghai Cyberspace Administration and others have conducted regulatory talks with six coffee companies that have poor personal information protection rectification
Source: Shanghai Cyberspace Administration
The Shandong Communications Administration Bureau has issued a notice on APPs infringing on user rights and interests (the 7th batch of 2024)
Source: Shandong Communications Administration Bureau
The Tibet Cyberspace Administration has carried out law enforcement inspections on personal information protection for local APPs
Source: Tibet Cyberspace Administration
Guangzhou pioneers the high-precision map review platform
Source: Guangzhou Daily
https://www.gz.gov.cn/zt/gzlfzgzld/gzld/content/post_9798253.html
Hubei has established the country's first comprehensive service station for data intellectual property rights
Source: Hubei Cyberspace Administration
The Guangdong Provincial Consumer Council has released the "Communication Services Consumer Rights Protection Report"
Source: China Consumer Association
https://cca.org.cn/Detail?catalogId=496363743973445&contentType=article&contentId=579147934937157
Jinan City, Shandong Province, has issued the country's first data asset insurance policy
Source: Jining Big Data Center
Apps such as WeChat, Taobao, and Xiaohongshu have launched a pilot program for "online IDs"
Source: Daily Economic News
OVERSEAS
European Union: The RU Commission is openly soliciting opinions on the first-year review of the EU-US Data Privacy Framework (DPF)
Source: EU Commission
https://ec.europa.eu/info/law/better-regulation/have-your-say/initiatives/14379-EU-US-Data-Privacy-Framework-report-of-the-Commission-on-how-the-framework-is-functioning_en
Germany
German Federal Financial Supervisory Authority (BaFin) releases guidelines for artificial intelligence-based financial service providers
Source: BaFin
https://www.bafin.de/SharedDocs/Veroeffentlichungen/DE/Fachartikel/2024/fa-bj_0801_KI_Finanzindustrie.html
The Federal Office for Information Security (BSI) in Germany has published a white paper on the transparency of artificial intelligence systems
Source: BSI
https://www.bsi.bund.de/DE/Service-Navi/Presse/Alle-Meldungen-News/Meldungen/Whitepapier_KI-Systeme_240805.html
US
The Cybersecurity and Infrastructure Security Agency (CISA) has released the "On-Demand Security Guide: How Software Customers Can Drive the Secure Technology Ecosystem"
Source: CISA
https://www.cisa.gov/news-events/news/cisa-releases-secure-demand-guide
The Attorney General of Texas has filed a lawsuit against an automotive company for illegally collecting and selling private driving data.
Source: The Attorney General of Texas
https://www.texasattorneygeneral.gov/news/releases/attorney-general-ken-paxton-sues-general-motors-unlawfully-collecting-drivers-private-data-and
The Governor of Illinois has signed into law the revised Biometric Information Privacy Act
Source: Illinois State Government
https://www.ilga.gov/legislation/publicacts/fulltext.asp?Name=103-0769
Pennsylvania has passed amendments to the Personal Information Breach Notification Act
Source: Pennsylvania General Assembly
https://www.legis.state.pa.us/cfdocs/billinfo/bill_history.cfm?syear=2023&sind=0&body=S&type=B&bn=824
United Kingdom: ICO has published a report on the barriers to the development of privacy-enhancing technologies
Source: ICO
https://ico.org.uk/about-the-ico/research-reports-impact-and-evaluation/research-and-reports/technology-and-innovation/tackling-barriers-to-privacy-enhancing-technologies-adoption/
Austria: The Federal Administrative Court has issued a ruling regarding restrictions on the right of access
Source: The Federal Administrative Court of Austria
https://www.ris.bka.gv.at/Dokumente/Bvwg/BVWGT_20240708_W137_2278780_1_00/BVWGT_20240708_W137_2278780_1_00.html
Switzerland: The Federal Supreme Court recognizes the Switzerland-U.S. data privacy framework and grants an adequacy decision
Source: The Federal Court of Switzerland
https://www.admin.ch/gov/en/start/documentation/media-releases.msg-id-102054.html
Norway: Datatilsynet includes the application of algorithms and AI in its supervisory activities for 2024
Source: Datatilsynet
https://www.datatilsynet.no/om-datatilsynet/tilsynsvirksomheten-var/
Israel: The Knesset passes amendments to the Privacy Protection Bill
Source: Israel Knesset
https://www.gov.il/he/pages/13_amendment?utm_source=go.gov.il&utm_medium=referral
Turkey: KVKK publishes guidelines on the conditions for personal data processing
Source: KVKK
https://kvkk.gov.tr/Icerik/7823/Kanunlarda-Ongorulme-Kisisel-Veri-Isleme-Sartina-Iliskin-Bilgi-Notu
United Arab Emirates: The Cabinet Resolution on Regulating Telephone Marketing is made public
Source: UAE Government
https://uaelegislation.gov.ae/ar/legislations/2519
South Korea: PIPC and the Ministry of Science discuss the use of personal information in autonomous vehicles
Source: PIPC
https://www.pipc.go.kr/np/cop/bbs/selectBoardArticle.do?bbsId=BS074&mCode=C020010000&nttId=10396
Philippines: NPC issues recommendations on the processing of sensitive personal data
Source: NPC
https://privacy.gov.ph/wp-content/uploads/2024/08/NPC-Advisory-No.-2024-02-Personal-Data-Processing-Based-on-Section-13-f.pdf
Note
本文由AIGC翻译,仅供参考。
Translated by AIGC service. For reference only.
本期编辑:陈瑊 陈煜烺 林婉琪 陈瑞庭 张丽
