PRC Cybersecurity Law

A complete data protection framework in China’s history, PRC Cybersecurity Law/ China Internet Security Law was espoused in the National People’s Congress (NPC) in 2016 and took effect on June 1st, 2017 (Yam, & Xu, 2017). The law focusses on the protection of personal data and the privacy of an individual in the cyberspace. It imposes various standards that have shifted data privacy requirements, for instance, data localization to enhance economic and social development (Liu, 2019).

The law provides numerous cybersecurity obligations on network operators, network products and services providers, and Critical Information Infrastructure (CII) operators. It describes network operators as administrators and owners of network services providers and networks. A network according to the law is a system made of computers and other-related information terminals that are used to collect, transmit, exchange, store and process data information (Zhao & Xia, 2018). A network operator, on the ...