个人信息出境安全评估 (gèrén xìnxī chūjìng ānquán pínggū): Outbound personal information security evaluation

Hot words: Outbound personal information security evaluation

个人信息出境安全评估 (gèrén xìnxī chūjìng ānquán pínggū)

The Cyberspace Administration is soliciting public opinions until July 13 on draft measures for security evaluations of outbound personal information.

According to the draft, there should be a security evaluation of personal information that network operators have collected when they intend to provide such information to foreign clients. If the export of such information may undermine national security or public interests or it can't be effectively protected, it will be prohibited from being given to foreign clients.

The draft clarifies that personal information refers to various kinds of individuals' personal identification information recorded in a digital way or other ways, including but not limited to the individuals' name, date of birth, identification card number, personal biological recognition information, address and phone number.

The draft requires network operators to apply for a security evaluation before the personal information they have collected is provided to overseas clients. And the security evaluation will focus on whether it is in accordance with China's laws and regulations and whether individuals' legal rights and interests can be fully protected.

Network operators are required to keep records of outbound personal information for at least five years.

In addition, any individual and organization can report violations of the regulation to cyberspace administration departments at the provincial-level and above.