《个人信息出境认证办法》公布——我国数据跨境流动制度体系全面建立

Core Points - The "Personal Information Outbound Certification Measures" will take effect on January 1, 2026, aiming to protect personal information rights and regulate outbound certification activities [1] - The measures are seen as a significant improvement in China's legislative and regulatory framework for outbound personal information, marking the completion of the outbound personal information system [1][6] Group 1: Certification Conditions - The measures specify conditions for personal information outbound certification, excluding critical information infrastructure operators and important data [2] - It requires that the number of personal information provided to overseas entities must exceed 100,000 but be less than 1 million, or less than 10,000 for sensitive personal information [2] Group 2: Certification Requirements - The measures outline the key requirements for professional certification institutions and standardize the certification process for outbound personal information [3] - The certification is voluntary and market-driven, allowing third-party institutions to implement it, which reduces the administrative burden on regulatory bodies [3] Group 3: Regulatory Framework - The measures clarify the application process, certification requirements, and the validity period of certification, which is set at three years [4] - It establishes a collaborative regulatory framework among various departments, ensuring comprehensive oversight of the certification process [4][5] - The measures also mandate that regulatory bodies share certification information to enhance accountability and compliance [4][5]