国家网络安全事件报告管理办法

Core Points - The regulation aims to standardize the management of cybersecurity incident reporting to mitigate losses and harms caused by such incidents [1] - Network operators in China are required to report cybersecurity incidents according to specified guidelines, with different reporting timelines based on the severity of the incident [2][4] - The regulation encourages social organizations and individuals to report significant cybersecurity incidents [5] Group 1: Reporting Requirements - Network operators must report significant cybersecurity incidents to relevant authorities within specified timeframes, with critical incidents requiring immediate reporting [2][4] - The reporting process includes detailed information about the incident, such as the affected unit, time, location, type, level, impact, and measures taken [6][7] - If new significant developments occur after the initial report, the involved unit must provide timely updates [8] Group 2: Incident Classification - Cybersecurity incidents are classified into four categories: particularly major, major, significant, and general, based on their impact and severity [9][32] - Particularly major incidents include severe system losses, loss of critical data, or incidents that threaten national security [14][19] - Major incidents involve significant system disruptions or data breaches that pose serious threats to national security [19][22] Group 3: Responsibilities and Penalties - Network operators are responsible for ensuring that their service providers report cybersecurity incidents promptly [4] - Failure to report incidents as required can lead to penalties for the network operators and responsible individuals [10][11] - Operators that take reasonable protective measures and report incidents in a timely manner may receive leniency in penalties [11]