《中华人民共和国网络安全法》

(Adopted at the 24th Meeting of the Standing Committee of the 12th NationalPeople’s Congress on November 7, 2016.1Amended at the 18th Meeting of the Table ofContents Chapter IGeneral ProvisionsChapter IISupport and Promotion of CybersecurityChapter IIINetwork Operations SecuritySection 1General RegulationsSection 2Operations Security for Critical Information Infrastructure Chapter I Article 1This Law is formulated to ensure cybersecurity; safeguardcyberspace sovereignty and national security as well as the public interest; protect the Article 2This Law applies to the construction, operation, maintenance, anduse of networks within the People’s Republic of China,2as well as the supervision and Article 3Cybersecurity work upholds the leadership of the ChineseCommunist Party, implements theholistic approach to national security (总体国家安全 Article 4The state adheres to giving equal emphasis to cybersecurity andinformatization development, follows thedirectivesof active utilization, scientificdevelopment, law-based management, and ensuring security; advances the Article 5The state formulates and continuously improves the nationalcybersecurity strategy, clarifies the basic requirements and primary objectives for Article 6The state adopts measures to monitor, prevent, and addresscybersecurity risks and threats originating from within and outside4the People’sRepublic of China;protectscritical information infrastructure from attacks, intrusions, Article 7The state advocates honest, trustworthy, healthy, and civilizedonline conduct; promotes the dissemination ofthe socialist core values concept (社会主 Article 8The state actively conducts international exchanges and cooperationin areas including cyberspace governance, research and development of networktechnologies and standards setting, and combating cyber-related illegal and criminal Article 9Thenational cyberspace affairs (网信) departments areresponsiblefor overall coordination of cybersecurity work and related supervision and within the scope of their respective duties. The cybersecurity protection, supervision, and administrationresponsibilities ofthe relevant departments of local people’s governments at or above the county level Article 10When conducting business and service activities, networkoperatorsmustcomply with laws and administrative regulations; respect socialmorality; observe business ethics;be honest and trustworthy; fulfill cybersecurity Article 11Thosewhoconstruct or operate networks, or provide servicesthrough networks, shall, in accordance with the provisions of laws and administrativeregulations and the mandatory requirements of national standards, adopt technical Article 12Network-related industry organizations shall, in accordance withtheir charters, strengthen industry self-discipline, formulate codes of conduct for Article 13The state protects the right of citizens, legal persons, and otherorganizations to use networks in accordance with law; promotes the widespread Any individual or organization using networks shall abide by the Constitution andlaws, observe public order, and respect social morality; shall not endangercybersecurity; and shall not use networks to engage in activities that endangerthenation'ssecurity, reputation, or interests, including inciting subversion of state power network products and services conducive to the healthy growth of minors, punishes inaccordance with law activities that use networks to harm the physical or mental health Article 15Any individual or organization has the right to report actsendangering cybersecurity to cyberspace affairs, telecommunications, public security,and other relevant departments. Departments receiving such reports shall promptly Relevant departments shall keepsecretrelevant informationonthe Chapter IISupport and Promotion of Cybersecurity Article 16The state establishes and improves the cybersecurity standardssystem. TheState Council main oversight department for standardizationadministrationand other relevant departments of the State Council shall, in The state supports enterprises, research institutions, institutions of higherlearning, and network-related industry organizations in participating in the formulation Article 17The State Council and the people’s governments of provinces,autonomous regions, and province-level municipalities shall engage in overallplanning; increase investment, support key cybersecurity technology industries and Article 18The state advances the construction of asociety-oriented5cybersecurity services system and encourages relevant enterprises and institutions to services. Article 19The state encourages the development of technologies for theprotection and utilization of network data, promotes the openingup (开放)of public Article 20The state supports basic theoretical research in artificial intelligence(AI)and the research and development of key technologies such as algorithms;advances the construction of infrastructure such as training