Skip to content

Menu

LexBlog, Inc. logo
NetworkSub-MenuBrowse by SubjectBrowse by PublisherJoin the NetworkGet StartedSubscribeSupport
Contact Us
Search
Close

China’s second draft of the Cyber Security Law continues to propose more stringent regulation of cyberspace

By Jun Wei, Liang Xu, Sherry Gong, Nick Shaw, Philip Cheng, Andrew McGinty & Mark Parsons on July 28, 2016
Email this postTweet this postLike this postShare this post on LinkedIn

shutterstock_85035682-300x225On 6 July 2016, a second draft of the People’s Republic of China Cyber Security Law was released to the public for comment following its second reading by the Standing Committee of the National People’s Congress.  The deadline for submitting comments on the second draft is 4 August 2016.

Given the growing cyber threat globally, the Chinese move towards more rigorous cyber security regulation is in line with international trends.  However, the specific approach to regulation being taken in China is a clear outlier, primarily for the broad and often imprecise terminology used in the draft law and also for the invasive and potentially discriminatory nature of the regulation.  Reaction to the draft law, therefore, has been confusion as to who the law will apply to and what requirements the law will bring to those within its reach.  More broadly, the Cyber Security Law has raised fundamental concerns about regulatory intention, and in particular whether or not the law is meant to close certain areas of business to foreign participation.

In our commentary on the first draft of the Cyber Security Law, we categorised three principal areas of interest in the cyber security regulation as:

– Technology regulation: Pre-market certification requirements for technology that may be catalogued as being “critical network equipment” or “specialized cyber security products”.
– Co-operation with authorities: Imposed duties on “network operators” to provide technical support and assistance in national security and criminal investigations; and.
– Data localisation: Requirements for “critical information infrastructure operators” to store data gathered and produced in China on Chinese soil.

Our briefing here focusses on how these key aspects are carried forward in the second draft.  We also place the Cyber Security Law within the greater context of increased regulation of cyber space in China generally, as seen in recent laws and regulations on counter-terrorism, online publishing, and sector-specific draft regulations for banking and insurance, among others.

For our full briefing, please click here.  For a copy of our in-house English translation of the second draft, please email one of our listed contacts or your usual contact person within our firm.

Photo of Jun Wei Jun Wei
Read more about Jun WeiEmail
Photo of Sherry Gong Sherry Gong
Read more about Sherry GongEmail
Photo of Nick Shaw Nick Shaw
Email
Photo of Andrew McGinty Andrew McGinty
Read more about Andrew McGintyEmail
Photo of Mark Parsons Mark Parsons
Read more about Mark ParsonsEmail
  • Posted in:
    Privacy and Cybersecurity
  • Blog:
    Global Media and Communications Watch
  • Organization:
    Hogan Lovells
  • Article: View Original Source

Call us at 1-800-913-0988 or email sales@lexblog.com.

Facebook LinkedIn Twitter RSS
  • About LexBlog
  • The Field We Built
  • Our Beliefs
  • Our Team
  • Contact LexBlog
  • Disclaimer
  • Editorial Policy
  • Terms of Service
  • Get Started
  • Publishing Solutions
  • Compass
  • Submit a Request
  • Support Center
  • System Status
Copyright © 2026, LexBlog, Inc. All Rights Reserved.
Law blog design & platform by LexBlog LexBlog Logo