China revises draft rules on data security for business sectors

A computer network cable is seen above a Chinese flag in this July 12, 2017 illustration photo. REUTERS/Thomas White/Illustration

SHANGHAI, Feb 10 (Reuters) - China's industry ministry published revisions to draft rules on Thursday dictating how companies and localities should manage data, bringing more specificity to the country's evolving data governance regime.

The updated rules, which China's Ministry of Industry (MIIT) and Information Technology first published in September, removes a previous statement that "core data," defined as data that poses a "serious threat" to China's national and economic interests, must not leave the country.

In addition, the rules add electromagnetics to the wide range of categories that contain data that could be considered "core data" or "important data."

Register now for FREE unlimited access to

The updated rules also specify that industry-specific local regulators must be responsible for the management and supervision of data in the three categories of "industrial data," "telecommunications data," and "wireless data."

The updated revisions will be open to public feedback until February 21, according to MIIT.

The Ministry of Industry and Information Technology first published the draft rules in September which were aimed at bolstering the country's new data security law. read more

Legal and technology experts expect the law to have ramifications for nearly all entities engaged in some form of mass data collection.

The law broadly requires Chinese companies and localities to to categorize data based on its relevance to national security and the economy.

It also calls for steeper regulation of exporting data out from China to other locations, which has raised concern among multinational corporations operating in China.

Register now for FREE unlimited access to
Reporting by Brenda Goh and Josh Horwitz in Shanghai; Yingzhi Yang in Beijing; Additional reporting by the Shanghai newsroom; Editing by Shri Navaratnam and Raju Gopalakrishnan

Our Standards: The Thomson Reuters Trust Principles.