On June 12, the National Technical Committee 260 on Cyber-security Standardization Administration of China (TC260) released the Practical Guide to Cyber-security Standard - Guide for Identifying Sensitive Personal Information (Draft for Comment) (the "Draft"), which is open for public comments until June 24, 2024. 

The Draft proposes methods for identifying sensitive personal information and provides categories and examples of common sensitive personal information. This standard is designed to guide organizations in identifying the scope of sensitive personal information and  serve as a reference for the processing, cross-border transfer, and protection of sensitive personal information. The Draft stipulates that any personal information that meets any of the conditions such as "if leaked or illegally used, it is likely to infringe upon the personal dignity of a natural person" should be identified as sensitive personal information. Common sensitive personal information includes biometric information, religious belief information, specific identity information, medical and health information, financial account information, and several other categories.

(Source: National Technical Committee 260 on Cyber-security Standardization Administration of China)