TC260 Seeks Comments on the National Data Security Standards System (2025 Edition) and Other Drafts

Recently, the National Technical Committee 260 on Cybersecurity Standardization Administration of China (TC260) has issued the National Data Security Standards System (2025 Edition) (Draft for Comment) (the "Draft") and the National Personal Information Protection Standards System (2025 Edition) (Draft for Comment) for public consultation. The deadline for feedback is August 29, 2025.

The Draft centers on data, with data classification and grading protection as its foundation, covering the lifecycle data processing activities, including collection, storage, use, processing, transmission, provision, disclosure, and deletion. The scope of standardization involves organizations, products, services, systems, technologies, management, and activities closely related to data. The Draft consists of six categories of standards: general and common standards, data security technologies and products, data security management, data security assessment and certification, product and service data security, and industry- and application-specific data security. Among them, data security technology and product standards define frameworks, specifications, and guidelines for data security technologies and products; and data security management standards set forth requirements, methods, and guidelines for secure data processing, data security management, and secure operations.



(Source: https://www.tc260.org.cn/front/postDetail.html?id=20250731172556)

Note: The link to the Chinese official website of the document is for your reference.