China approved more than 90 per cent of data exports in 2024, the country’s top internet regulator said.

The less than 10 per cent blocked were either deemed as unnecessary or did not meet security standards, according to the update from the Cyberspace Administration of China (CAC).

“Most projects failed the assessment primarily because the data processors did not obtain the necessary consent from individuals as required by law, except for a few that did not pass due to insufficient necessity for important data exports or security risks,” Wang Qi, deputy director of the CAC’s network data management bureau, said on Tuesday.

Do you have questions about the biggest topics and trends from around the world? Get the answers with SCMP Knowledge, our new platform of curated content with explainers, FAQs, analyses and infographics brought to you by our award-winning team.

This is the first CAC report since it eased rules on cross-border data flows in March, introducing security review exemptions for some information exports.

Businesses also no longer have to submit information on cross-border e-commerce, shipping, payments or visa processing for official security checks, a step reported to have eased operational concerns among foreign companies in China.

The eased rules also apply to data related to activities including opening bank accounts and booking flights or hotels.

The CAC has called it an effort to facilitate global exchanges and the sharing of capital, information, technology, talent, goods and other resources.

However, transfers must still undergo a security assessment if they relate to critical information infrastructure, involve non-sensitive personal information of over one million people within a year, or include “sensitive information” of more than 10,000 people.

“Security management of data exiting the country is limited to important data and personal information, not applicable to all data,” Wang said at a press conference hosted by the National Data Administration (NDA) in Beijing.

Even important data may be exported if it is not seen as a threat to national security or is in the public interest, he added.

Set up in October 2023, the NDA underlines China’s aims to develop the digital economy and strengthen regulation of its massive data pool. Beijing at the time said the new agency would take over many responsibilities from the CAC, the country’s top watchdog in charge of web regulation.

Wang said that for sending personal information abroad, processors could opt to apply for the related outbound data transfer security assessment, obtain a personal information protection certification, or sign a contract with overseas recipients.

General data that did not involve important data or personal information could flow freely across borders, he emphasised.

The CAC carried out 285 security assessment projects and recorded 1,071 contracts as of December, with 27 applications failing to clear security assessment, according to Wang.

Processing time for online applications had been reduced to less than 30 working days after submission by the company concerned, from 45 days earlier, he noted.

Wang also said the Beijing and Tianjin pilot free trade zones had created a “negative list” for outbound data transfers. Industries not on the list are open to investment by all businesses, without the need for government approval.

This had eased data transfer in sectors including automobiles, pharmaceuticals, civil aviation and retail, he said, with other administrations also speeding up the formulation of similar exclusion lists.

Meanwhile, major cities such as Beijing, Shanghai, Guangzhou and Hangzhou have set up data outbound service centres and service platforms to offer guidance to companies.

“The administration will continue to enhance data export management, promote efficient, convenient and secure cross-border data flows, as well as support the healthy and sustainable development of the digital economy,” he said.

This article originally appeared in the South China Morning Post (SCMP), the most authoritative voice reporting on China and Asia for more than a century. For more SCMP stories, please explore the SCMP app or visit the SCMP’s Facebook and Twitter pages. Copyright © 2025 South China Morning Post Publishers Ltd. All rights reserved.

Copyright (c) 2025. South China Morning Post Publishers Ltd. All rights reserved.





Source link