Global menu

Our global pages

Close

China Cybersecurity Law One Year On

China Cybersecurity Law One Year On
  • Hong Kong
  • China
  • Other

01-06-2018

It’s been one year since China’s Cybersecurity Law took effect, and while businesses are keenly aware of the need to comply, many are still trying to fully understand its implications. There is an abundance of new guidelines and regulations clarifying the scope and applicability of concepts introduced by the Cybersecurity Law, and others which expand on existing security requirements in order to promote cybersecurity.

The guidelines cover technical, security and data protection in specific contexts (including cloud computing, mobile terminals and big data) and such issues as security incident management and publication of “Internet News”.

Other guidelines and regulations exist in draft form and are in various stages of development, typically through a public consultation process.

Although more guidelines and regulations are expected, businesses must be alert to existing obligations that are in force – and enforced – today. We have seen enforcement action being taken by various enforcing authorities to enforce the Cybersecurity Law.

Eversheds Sutherland have undertaken a comprehensive review of the development of the cybersecurity legislative landscape in China and summarized the information in an easy-to-read format. Our new interactive timeline, “China Cybersecurity Law - One Year On”, provides a high level summary of the key legislation, regulations and guidelines in this area, and also describes some interesting enforcement actions that have already been taken.

Please click here to view the information and timeline.

Jack Cai, Partner
Michael Bahar, Partner
Joanne Finch Veitch, Principal Associate

< Go back

Print Friendly and PDF

© Eversheds Sutherland 2022. All rights reserved. Eversheds Sutherland is a global provider of legal and other services operating through various separate and distinct legal entities.

Eversheds Sutherland is the name and brand under which the members of Eversheds Sutherland Limited (Eversheds Sutherland (International) LLP and Eversheds Sutherland (US) LLP) and their respective controlled, managed and affiliated firms and the members of Eversheds Sutherland (Europe) Limited (each an "Eversheds Sutherland Entity" and together the "Eversheds Sutherland Entities") provide legal or other services to clients around the world. Eversheds Sutherland Entities are constituted and regulated in accordance with relevant local regulatory and legal requirements and operate in accordance with their locally registered names. The use of the name Eversheds Sutherland, is for description purposes only and does not imply that the Eversheds Sutherland Entities are in a partnership or are part of a global LLP. The responsibility for the provision of services to the client is defined in the terms of engagement between the instructed firm and the client.