Comments to TC260 on Guidelines for Data Cross-border Transfer Security Assessment

2017-06-27 | Beijing, Shanghai

The Cybersecurity, ICT, Banking and Insurance Working Groups submitted collated comments to the National Information Security Standardisation Technical Committee (TC260) on the Guidelines for Data Cross-border Transfer Security Assessment.

The Guidelines has been formulated to support the implementation of the Cybersecurity Law and the Measures on the Security Assessment of Cross-border Transfer of Personal Information and Important Data. While it defines to certain extent personal information and important data, and specifies the security assessment procedures and key items, there are issues that still require further clarification and improvement, such as the application scope of the Guidelines and the extensive and unclear scope of important data. In order to guide companies in conducting security assessments more effectively, the European Chamber also called for more detailed guidance on the assessment criteria.