The national standards GB/T 35273-2017 of the Information Security Technology – Personal Information Security Specification (the “Specification”) formulated by the National Information Security Standardization Technical Committee has come into effect as of May 1, 2018. The Specification mainly targets at the personal information controllers and provides detailed guidelines for the collection, retention, use, sharing, transfer and public disclosure of personal information with more than 130 specific measures for personal information protection. In particular, the Specification provides specific implementing standards for the “scope of personal information and sensitive personal information” and “legitimacy and minimization requirement”, the mode of express consent and formation of privacy policy, offering best practices guides to the enterprises. Each enterprise may review the legitimacy of processing personal information, formulate privacy policy and establish user information protection system according to the Specification.
(Source: Zhong Lun Publications)
The Watson & Band website is intended for informational purposes only. Nothing in this site is to be construed as creating an attorney-client relationship between the reader and Watson & Band or as offering legal advice on any specific matter. Since we are not providing legal advice through this website, you should not act upon any information that you might receive here without first seeking professional counsel. No client or other reader should act or refrain from acting on the basis of any information contained in the Watson & Band website without seeking appropriate legal or other professional advice based on the particular facts and circumstances at issue.
