On December 8, the Cyberspace Administration of China (CAC) drafted the Administrative Measures for the Reporting of Cybersecurity Incidents (Draft for Comment) (the "Draft") to solicit public opinions by January 7, 2024.

The Draft requires operators to promptly initiate their contingency plan and take measures when a cybersecurity incident occurs. Subject to the Guide to the Classification of Cybersecurity Incidents, a relatively major, major, or particularly major cybersecurity incident shall be reported within one hour. It clarifies that operators shall report the incident pursuant to the Cybersecurity Incident Reporting Form, in which eight contents shall be specified, including "the name of the entity where the incident occurs and basic information on the facilities, systems and platforms involved in the incident". The Draft also stresses that where an organization or individual providing services to an operator finds that a relatively major, major or particularly major cybersecurity incident has occurred on the operator, it shall remind the operator to report the incident in accordance with the Measures. If the operator intentionally conceals or refuses to make a report, such organization or individual may report the incident to the local cyberspace administration authority or the national cyberspace administration authority.

(Source: Cyberspace Administration of China)