The Cyberspace Administration of China (CAC) has proposed a series of amendments to the country’s cybersecurity law. The proposal includes raising the size of fines for some violations to improve coordination with other new laws. China’s cyberspace regulator also seeks to introduce a penalty that would see operators of critical information infrastructure, which used products or services that had not undergone security reviews, be fined by up to an equivalent of 5% of their previous year’s revenue, or 10 times the amount they paid for the product. It also wants to raise the fines for some violations, from up to CNY100,000 previously to CNY1m. China’s 2017 cybersecurity law marked the first major set of rules governing the storage and transfer of data of Chinese origin.
top of page
bottom of page