Required by regulatory authorities, driven by laws
Cybersecurity Law of the People's Republic of China stipulates that classified protection is the basic system for information security. Article 21 puts forward that the state implements cybersecurity classified protection system. Network operators shall, in accordance with the classified protection system requirements, protect network from being interrupted, damaged or accessed without authorization, and guard network data against being leaked, stolen or tampered with.
Notice on Comprehensively Strengthening Information Security Classified Protection in Education Industry No.2, Ministry of Education and Ministry of Public Security) stipulates that all organizations of education industry is the main liable body for information security practices, and shall be responsible for itself classified protection practices according to the principle of "self-grading, self-protection"
Opinion on Regulating Extramural Online Training aims to complete registration investigation of national extramural online training organization before Dec. 2019, to implement CCPS (Cybersecurity Classified Protection System), carry out cybersecurity early-warning system and user information protection system, and develop perfect technical measures for security protection, authenticate real identity information of training object with the permission of training object and his/her custodians, protect training object information and data from being leaked, sold, or provided to other parties illegally. The user's behavior log shall be retained over one year.
Required by regulatory authorities, driven by laws
Cybersecurity Law of the People's Republic of China stipulates that classified protection is the basic system for information security. Article 21 puts forward that the state implements cybersecurity classified protection system. Network operators shall, in accordance with the classified protection system requirements, protect network from being interrupted, damaged or accessed without authorization, and guard network data against being leaked, stolen or tampered with.
Notice on Comprehensively Strengthening Information Security Classified Protection in Education Industry No.2, Ministry of Education and Ministry of Public Security) stipulates that all organizations of education industry is the main liable body for information security practices, and shall be responsible for itself classified protection practices according to the principle of "self-grading, self-protection"
Opinion on Regulating Extramural Online Training aims to complete registration investigation of national extramural online training organization before Dec. 2019, to implement CCPS (Cybersecurity Classified Protection System), carry out cybersecurity early-warning system and user information protection system, and develop perfect technical measures for security protection, authenticate real identity information of training object with the permission of training object and his/her custodians, protect training object information and data from being leaked, sold, or provided to other parties illegally. The user's behavior log shall be retained over one year.