Cyberspace Administration of China, Measures for Security Reviews of Online Products and Services (Draft for Comments)
国家互联网信息办公室网络产品和服务安全审查办法 (征求意见稿)
February 21, 2017 | BY
Susan Mok &clp articles &Issued: February 4 2017 Main contents: In conducting cybersecurity reviews of online products, services and their providers, there shall be…
Issued: February 4 2017
Main contents: In conducting cybersecurity reviews of online products, services and their providers, there shall be an insistence on a combination of enterprise undertakings and public scrutiny, on a combination of third party assessment and governmental oversight, and on a combination of laboratory testing, onsite inspection, online monitoring and background checks (Article 3).
Reviews of online products and services shall focus on their security and controllability, mainly including:
(1) the risks of a product or service being illegally controlled, interfered with or its operation being interrupted;
(2) the risks involved in the processes of research, development and delivery of, and technical support for, a product and its key components;
(3) the risks of a product or service provider exploiting the conveniences available from the provision of its product or service to illegally collect, store, process and use relevant user information;
(4) the risks of a product or service provider exploiting users' reliance on its product or service to engage in unfair competition or harm users' interests; and
(5) other risks of jeopardizing national security and the public interest (Article 4).
issued:2017-02-04Issued: February 4 2017
Main contents: In conducting cybersecurity reviews of online products, services and their providers, there shall be an insistence on a combination of enterprise undertakings and public scrutiny, on a combination of third party assessment and governmental oversight, and on a combination of laboratory testing, onsite inspection, online monitoring and background checks (Article 3).
Reviews of online products and services shall focus on their security and controllability, mainly including:
(1) the risks of a product or service being illegally controlled, interfered with or its operation being interrupted;
(2) the risks involved in the processes of research, development and delivery of, and technical support for, a product and its key components;
(3) the risks of a product or service provider exploiting the conveniences available from the provision of its product or service to illegally collect, store, process and use relevant user information;
(4) the risks of a product or service provider exploiting users' reliance on its product or service to engage in unfair competition or harm users' interests; and
(5) other risks of jeopardizing national security and the public interest (Article 4).
issued:2017-02-04This premium content is reserved for
China Law & Practice Subscribers.
A Premium Subscription Provides:
- A database of over 3,000 essential documents including key PRC legislation translated into English
- A choice of newsletters to alert you to changes affecting your business including sector specific updates
- Premium access to the mobile optimized site for timely analysis that guides you through China's ever-changing business environment
Already a subscriber? Log In Now