China issued the
Regulation on Security Management of Automotive Data (for Trial
Implementation), shortly the Auto Data Regulation, which will come into effect
from October 1, 2021.
The Auto Data
Regulation is brought in to change the supervisory landscape of the auto
industry concerning the processing of automobile data. Automotive data includes
personal information data and important data involved in the process of
automobile design, production, sales, use, operation and maintenance. This
would impact the operation of multinational enterprises, new energy vehicles,
unmanned and autonomous driving.
If this data
needs to be sent overseas, it has to go through the security assessment by the
State Cyberspace Administration. MNCs with operations involving data that is
transferred from within China will now have to relocate parts of their data
processing into China.
to adhere to classified protection which would help plug loopholes and tackle
vulnerabilities in network systems.
implementation of the Regulation will make collecting automotive data more
difficult as the preference is for the automotive data processor to adhere to
the principles of in-car handling, non-collection by default, accuracy within
application and desensitization treatment.
automotive data processor should carry out a risk assessment in accordance with
the regulations and submit risk assessment reports to the government.
Source – JD Supra
Image Source: Photo by Samuele Errico
Piccarini on Unsplash