BEIJING -- China's Internet regulator started to solicit public opinions on data security regulation on Tuesday.
According to a draft regulation released by the Cyberspace Administration of China, network operators must not force or mislead users to agree to the collection of their personal information on the pretext of improving service quality, enhancing user experience, sending customized push messages or developing new products.
The regulation applies to network-based collection, storage, transmission, processing and use of data, as well as data security protection and supervision in China, said the draft.
The draft requires network operators to make and release the rules of data collection and usage via websites or applications. The operators must not provide discriminatory services to users based on whether they accept personal information collection and the collection scope.
The draft also requires operators to take remedial measures immediately when personal information leakage, damage, or loss happens, or when data security risks increase significantly.
The draft will be open for suggestions until June 28.