China Regulator Proposes Amendments to Cybersecurity Law – DataBreaches.Net

The Cyberspace Administration of China recently released draft amendments to China’s Cybersecurity Law for public consultation until April 27, 2025. These amendments aim to align the law with newer legislation including the Personal Information Protection Law, Data Security Law, and Law of Administrative Penalties. Key changes focus on liability provisions, introducing stricter penalties for major data breaches and critical infrastructure failures, imposing liability for selling uncertified cybersecurity equipment, and clarifying penalties for critical information infrastructure operators using unapproved network products or services.​​​​​​​​​​​​​​​​