Core Points - The People's Bank of China (PBOC) has established a management approach for reporting cybersecurity incidents within its business domain [1] - The reporting requirements apply to incidents caused by human factors, cyberattacks, vulnerabilities, hardware and software defects, or force majeure that harm the PBOC's business networks or data [1] - Non-PBOC business domain cybersecurity incidents do not need to be reported under this new regulation [1] Summary by Categories - Scope of Application - The management approach is applicable to incidents affecting the PBOC's business areas, which include monetary credit, macro-prudential oversight, cross-border RMB transactions, interbank markets, comprehensive financial statistics, payment and settlement, RMB issuance and circulation, treasury management, credit reporting and rating, and anti-money laundering [1] - Reporting Requirements - Financial institutions must report incidents to the PBOC or its local branches as per the new guidelines [1] - Incidents involving state secrets must be handled according to relevant regulations [1]
《中国人民银行业务领域网络安全事件报告管理办法》明确适用范围
news flash·2025-05-30 09:07