The following regulation, issued by the Cyberspace Administration of China (CAC) in 2020, affects PRC companies that run China’s “critical information infrastructure.” The regulation requires operators of key PRC network platforms to undergo a CAC cybersecurity review before launching products or services that may impact Chinese national security.

The Chinese source text is available online at: https://isccc.gov.cn/images/zxyw/cprz/wlaqsc/zcwj/2020/05/11/0F1F6BDCA010C8C7D0138724EFDF442B.pdf

An archived version of the Chinese source text is available online at: https://perma.cc/S6A3-257H

Order of the Cyberspace Administration of China (CAC), the National Development and Reform Commission (NDRC), the Ministry of Industry and Information Technology (MIIT), the Ministry of Public Security, the Ministry of State Security (MSS), the Ministry of Finance, the Ministry of Commerce, the People’s Bank of China (PBOC), the State Administration for Market Regulation, the National Radio and Television Administration (NRTA), the National Administration of State Secrets Protection, and the State Cryptography Administration

No. 6

CAC, NDRC, MIIT, the Ministry of Public Security, MSS, the Ministry of Finance, the Ministry of Commerce, PBOC, the State Administration for Market Regulation, NRTA, the National Administration of State Secrets Protection, and the State Cryptography Administration have jointly formulated and hereby promulgate the Measures for Cybersecurity Reviews.