DiDi positive showcases the stringent implementation of cybersecurity regulation
A brand of Chinese language ride-hailing large DiDi at its headquarters in Beijing, July 2,
A brand of Chinese language ride-hailing large DiDi at its headquarters in Beijing, July 2, 2021. /CFP
A brand of Chinese language ride-hailing large DiDi at its headquarters in Beijing, July 2, 2021. /CFP
Editor’s word: Kong Qingjiang is Dean of the College of Worldwide Regulation at China College of Political Science and Regulation. The article displays the creator’s opinions and never essentially the views of CGTN.
The Our on-line world Administration of China (CAC), the nation’s cybersecurity authority fined ride-hailing large DiDi World 8.026 billion yuan (about $1.2 billion) on July 21, 2022 for violation of China’s community safety regulation, information safety regulation and private info safety regulation. The positive units a document excessive of the nationwide security-related fines imposed by the Chinese language authorities. The positive is simply subsequent to the one in all 18.22 billion yuan that imposed on Alibaba by China’s State Administration of Market Regulation (SAMR) one 12 months in the past for violation of the Anti-monopoly Regulation.
In current many years, China has emerged as a rustic with a lot of web purposes. Many on-line platforms like Alibaba and DiDi cowl nearly all facets of every day life. These platforms both accumulate large quantities of residents’ private information, and even have monopolistic entry to consumer info in a single or one other space. As soon as such information or info is leaked, the sanctity of non-public info shall be at a danger; and if such information or info is manipulated by overseas powers, nationwide safety shall be endangered.
Whereas digital economic system is changing into a brand new driver of China’s high-quality improvement, nationwide safety has emerged as a central problem within the political and financial panorama of China. A outstanding reform is thus being undertaken to have in place a system for our on-line world and information safety.
From the Cybersecurity Regulation of 2017, to the Information Safety Regulation and the Private Data Safety Regulation of 2021, China has shaped a authorized system that governs community safety, information safety and private info safety.
Whereas the Cybersecurity Regulation entails the general governance of our on-line world safety, specializing in methods corresponding to essential info infrastructure safety, cybersecurity evaluate, and cross-border information movement, the Information Safety Regulation regulates the information safety, improvement and utilization, and the Private Data Safety Regulation determines the essential ideas and institutional guidelines for the safety of non-public info.
The Cybersecurity Regulation, Information Safety Regulation and Private Data Safety Regulation, which represent the three pillars of knowledge safety within the nation, has formed the reform agenda within the subject of our on-line world, corresponding to tightened curbing of cross-border movement of information, misuse and abuse of non-public info through the our on-line world, in addition to laws on on-line platforms.
The colossal penalty showcases, once more, how critical the authority is about cybersecurity and information safety. The DiDi case was first introduced final 12 months, simply days after DiDi’s preliminary public providing (IPO) on the New York Inventory Alternate (NYSE). DiDi had come underneath fireplace after it reportedly pushed forward with its preliminary public providing regardless of excellent regulatory considerations concerning the influence of cross-border information outflow on nationwide safety.
Alibaba Group was fined for the violation of the Anti-monopoly Regulation in 2021. /CFP
Alibaba Group was fined for the violation of the Anti-monopoly Regulation in 2021. /CFP
In an obvious effort to appease the regulatory anger, DiDi introduced lower than six months later that it will delist from the NYSE and made plans to listing in Hong Kong Particular Administrative Area, which is topic to the Nationwide Safety Regulation.
The DiDi case was not the only remoted occasion. One 12 months in the past, Alibaba Cloud, the cloud computing subsidiary of Alibaba, was reportedly suspended for six months from a nationwide community safety information-sharing platform by the Ministry of Business and Data Expertise (MIIT), China’s web know-how regulator, for failing to report a software program safety glitch.
Alibaba Cloud first detected and reported the intense Apache Log4j 2 safety glitch to the U.S.-based Apache Software program Basis, however didn’t report the safety danger to the Chinese language regulator throughout the two-day reporting timespan as required, failing to successfully assist the MIIT to detect community safety threats and vulnerabilities.
The incident was a blow to the corporate’s credibility and status, notably together with the unprecedented SAMR anti-monopoly positive.
In concluding, the DiDi case, in addition to others, have continuously despatched warnings to different home and worldwide know-how firms in China: whereas they have to put community safety first above enterprise, they need to not underestimate the Chinese language authorities’ dedication to safeguard cybersecurity.
In the event that they ignore their obligations of cyber safety, information safety, and private info safety in accordance with related legal guidelines and laws and the necessities of regulatory authorities, the regulatory storm will are available its personal approach. For the aim of safeguarding nationwide safety and selling the wholesome improvement of the digital economic system, “too huge to fail” has no place in entrance of cyber safety and information safety.
(If you wish to contribute and have particular experience, please contact us at [email protected]. Comply with @thouse_opinions on Twitter to find the most recent commentaries on CGTN Opinion Part.)