Cyberspace Administration of China, Decision on Amending the «PRC Cybersecurity Law» (Draft for Comments)
国家互联网信息办公室关于修改《中华人民共和国网络安全法》的决定 (征求意见稿)
September 23, 2022 | BY
Susan MokCAC proposes to revise the Cybersecurity Law to impose fines for cybersecurity violations according to size of business
Issued: September 12, 2022
Main contents: The Decision revises the legal liability systems for the violation of general provisions on the security of network operations, the security protection of critical information infrastructure and network information security. The proposed revisions are also aimed to align with the penalties of the PRC Law on the Protection of Personal Information.
If an operator of critical information infrastructure violates Article 35 hereof by using a network product or service that has not undergone or failed a security review, the relevant competent department shall order it to cease using the same and impose a fine of not less than the equivalent of and not more than 10 times the procurement amount thereof, or a fine of up to 5% of the business turnover of the previous fiscal year; and it shall fine the manager directly responsible and the other directly responsible persons not less than Rmb10,000 and not more than Rmb100,000 (Article 65).
This premium content is reserved for
China Law & Practice Subscribers.
A Premium Subscription Provides:
- A database of over 3,000 essential documents including key PRC legislation translated into English
- A choice of newsletters to alert you to changes affecting your business including sector specific updates
- Premium access to the mobile optimized site for timely analysis that guides you through China's ever-changing business environment
Already a subscriber? Log In Now