The National Information Security Standardization Technical Committee ("NISSTC") recently issued the national standards entitled the Information Security Technology - Security Requirements of Vehicle Collected Data (Draft for Comment) (the "Draft for Comment") to solicit public opinions by December 18, 2021.

The Draft for Comment specifies the security requirements on the transfer, storage, export and other disposal activities related to vehicle collected data, which shall be applicable to the vehicle design, manufacturing, sale, use, operation and maintenance by vehicle manufacturers, as well as the supervision, management and assessment of the disposal activities related to vehicle collected data conducted by competent authorities and third-party assessment agencies. Regarding the cross-border transfer of vehicle collected data, the Draft for Comment makes clear that data outside vehicle, cabinet data and location and route data shall not be transferred outside China; any operational data that need to be transferred outside China shall be subject to the data cross-border transfer security assessment conducted by national cyberspace authorities.

(Source: National Information Security Standardization Technical Committee)