China issues draft regulation on the security of critical information infrastructure

China releases new rules on the protection of China's critical information infrastructure which will potentially affect the companies which operate a critical information infrastructure or conduct business on these infrastructures.
  • Contact

This article first appeared in Cyber Security Practitioner September 2017.

The Cyberspace Administration of China (CAC) released a draft Regulation on Security Protection for Critical Information Infrastructure (the CII Regulation), which aims to provide elaborated rules on protection of China’s critical information infrastructure (CII). The CII Regulation, if adopted in its current form, would significantly affect the companies which operate CII or conduct business on a CII.

Read full article


This document is provided for information purposes only and does not constitute legal advice. Professional legal advice should be obtained before taking or refraining from any action as a result of the contents of this document. Simmons & Simmons is registered in China as a foreign law firm. We are permitted by Chinese regulations to provide information on the impact of the Chinese legal environment and also to provide a range of other services. We are not admitted to practise in China and cannot, and do not purport to, provide Chinese legal services. We are, however, able to co-ordinate with local counsel to issue a formal legal opinion should this be required.