Core Viewpoint - The article highlights the increasing prevalence of personal information infringement in China, emphasizing the need for stronger legal protections and governance mechanisms to combat the illegal acquisition and sale of personal data [1][2][3]. Group 1: Legal and Regulatory Framework - In recent years, China has accelerated its legislative process to protect personal information, including the introduction and revision of relevant laws such as the Personal Information Protection Law [2]. - Despite these legal advancements, personal information infringement remains high due to low penalties for offenders and the high profitability of illegal data trading [2]. Group 2: Challenges in Personal Information Protection - The channels for collecting personal information have become more diverse, increasing the risk of data breaches as consumers frequently provide personal data in various scenarios such as shopping and online services [2][3]. - The leakage and sale of personal information have become widespread, necessitating a multi-faceted approach to governance that includes both technological advancements and source governance [3]. Group 3: Recommendations for Improvement - There is a need for continuous upgrades in technical measures and stricter penalties to address the evolving challenges posed by data privacy violations, including new issues arising from technologies like AI [3]. - Establishing robust mechanisms for proactive monitoring and regulation of third-party platforms and merchants that handle personal information is crucial to prevent mishandling and protect consumer rights [3].

Core Points - The implementation of the "Facial Recognition Technology Application Security Management Measures" aims to regulate the use of facial recognition technology in China, addressing privacy and security concerns [2][3][5] Group 1: Regulatory Framework - The new regulations are based on existing laws such as the Cybersecurity Law, Data Security Law, and Personal Information Protection Law, and apply to activities involving facial recognition technology within China [2][3] - The regulations require personal information processors to inform individuals about the processing of their facial information, including the purpose, method, and duration of storage [3][5] Group 2: Special Considerations - The regulations emphasize the protection of vulnerable groups, including the elderly and disabled, ensuring that their facial information is handled in compliance with accessibility standards [3][4] - For minors under the age of fourteen, parental consent is required for processing their facial information, and specific rules must be established to safeguard their data [4] Group 3: Data Storage and Security - Facial information must be stored locally on recognition devices and cannot be transmitted over the internet unless legally permitted or with explicit consent [5][6] - The regulations discourage the use of facial recognition as the sole verification method, promoting alternative identification methods when individuals do not consent to facial recognition [5][6] Group 4: Supervision and Compliance - Organizations processing facial information for over 100,000 individuals must register with provincial-level cybersecurity departments within 30 working days [6][7] - The registration process requires detailed information about the processing activities, including the purpose, methods, and security measures in place [7]

Group 1 - The core viewpoint of the article highlights the issue of data misuse and the need for stronger regulations to protect personal information, as emphasized by the recent implementation plan from the National Development and Reform Commission and other departments [1][11]. - The article discusses a specific incident involving a customer, L, who experienced unauthorized access to her personal information by a third party posing as a China Unicom employee, raising concerns about data privacy and security [9][10]. - The article mentions the response from China Unicom's customer service, which failed to address L's concerns adequately, indicating potential gaps in the company's handling of customer data and complaints [10][11]. Group 2 - The article provides details about the timeline of events related to L's experience with China Unicom, including her application for a new phone number and subsequent interactions with customer service and on-site personnel [5][6][7]. - It emphasizes the importance of regulatory measures to prevent data misuse, as outlined in the implementation plan, which aims to combat illegal data acquisition and enhance the protection of sensitive personal information [1][11]. - The article concludes with a mention of stock price trends for China Unicom, although it refrains from providing commentary on the stock performance [13][14].

Core Viewpoint - The China Securities Regulatory Commission (CSRC) has communicated concerns regarding personal information protection issues within the industry, highlighting compliance failures among certain institutions' mobile applications, mini-programs, and software development kits (SDKs) [1] Group 1: Regulatory Concerns - The CSRC reported that some institutions have not strictly implemented the Personal Information Protection Law during the collection, storage, transmission, and utilization of personal information, leading to compliance issues and potential risks [1] - Institutions are required to enhance their focus on personal information protection, conduct timely inspections of their apps, mini-programs, and SDKs, and rectify identified issues [1] Group 2: Recommendations for Improvement - Institutions can improve their professional capabilities in personal information protection through app detection certification and external evaluations [1] - There is an emphasis on the need for institutions to strengthen problem analysis and risk assessment to proactively prevent and mitigate potential risks [1]

据国家网络与信息安全信息通报中心通报，依据《中华人民共和国网络安全法》《中华人民共和国个人 信息保护法》等法律法规，按照《中央网信办、工业和信息化部、公安部、市场监管总局关于开展2025 年个人信息保护系列专项行动的公告》要求，经国家计算机病毒应急处理中心检测， 63款移动应用存 在违法违规收集使用个人信息情况 ，现通报如下。 1、 在App首次运行时未通过弹窗等明显方式提示用户阅读隐私政策等收集使用规则 ；个人信息处理者 在处理个人信息前，未以显著方式、清晰易懂的语言真实、准确、完整地向个人告知个人信息处理者的 名称或者姓名、联系方式、个人信息的保存期限等。 涉及6款移动应用如下：《一键登录SDK》（版本2.0.6，官网）、《厦门银行企业银行》（版本8.0.0， vivo应用商店）、《云挂卡》（版本1.1.6，华为应用市场）、《极验身份验-一键登录号码认证SDK》 （版本2.9.6，官网）、《推手管家》（版本5.4.4，苹果应用商店）、《神蓍广告安卓SDK》（版本 6.5.1.8，官网）。 2、 隐私政策未逐一列出App（包括委托的第三方或嵌入的第三方代码、插件）收集使用个人信息的目 的、方式、范围等。 涉 ...

Core Viewpoint - The announcement by four government departments highlights the initiation of a series of special actions for personal information protection by 2025, focusing on the governance of APPs and SDKs that illegally collect and use personal information [1] Group 1: Government Actions - The Ministry of Industry and Information Technology is leading efforts to address issues related to illegal collection and use of personal information by APPs and SDKs [1] - A third-party testing organization conducted random checks, revealing that 49 APPs and SDKs were found to infringe on user rights, which are now being publicly reported [1]

据"网信中国"微信公众号，2025年5月28日，中国国家互联网信息办公室副主任王京涛在京应约会见韩 国个人信息保护委员会副委员长崔壮赫一行，双方围绕个人信息保护、数据跨境流动、人工智能治理等 议题进行深入交流。 ...

Core Viewpoint - The Chinese internet is facing significant challenges from the "open box" black and gray industry, which has evolved from "human flesh search" in the era of big data, prompting the Central Cyberspace Administration to implement a comprehensive strategy to combat this issue. Group 1: Regulatory Measures - The Central Cyberspace Administration has issued a notice to block the spread of "open box" information, improve early warning mechanisms, increase punitive measures, optimize protective measures, and enhance public awareness [1] - Platforms are urged to abandon the "traffic is king" mentality and eliminate toxic traffic, as their ambiguous positioning has contributed to the problem [2] Group 2: Platform Responsibilities - Platforms must take responsibility for regulating the dissemination of personal information, as many incidents of "open box" occur on foreign social media platforms, highlighting the need for domestic platforms to close loopholes [3] - Transparency in personal information protection practices among platform companies needs to be improved, as many leading apps have not published dedicated reports on personal information protection [3] Group 3: Enforcement and Accountability - The current approach of platforms, which focuses on limiting traffic and banning IDs rather than holding actual users accountable, is insufficient [4] - Regulatory bodies are committed to enhancing the enforcement of laws against the leakage, theft, and sale of personal information, utilizing technology to ensure that such activities are effectively addressed [4]

Core Viewpoint - The article highlights the increasing risks of personal information leakage in the digital age, emphasizing the need for proactive measures and regulatory improvements to protect consumer data [1][2][3]. Group 1: Current Situation of Personal Information Protection - Personal information leakage has become a pressing issue, with cases like the recent Shanghai incident revealing how easily sensitive data can be sold and misused [1]. - The challenges in personal information protection have shifted from overt rights violations to more covert technological abuses, often linked to new business models [2]. Group 2: Regulatory and Technological Responses - New regulations, such as the "Facial Recognition Technology Application Safety Management Measures," have been introduced to prevent the misuse of technology and protect personal information rights [3]. - Companies are encouraged to adopt proactive measures, such as allowing users to revoke historical data authorizations and employing privacy-preserving technologies to enhance data security [3]. Group 3: Future Directions - There is a call for a more refined governance approach that balances development and security, aiming to create a comprehensive governance system that integrates rules, technology, and social collaboration [3].

Core Viewpoint - The central government is taking a "zero tolerance" approach to combat the "open box" phenomenon, which involves the illegal collection and dissemination of personal information online, emphasizing the need for stricter regulations and platform accountability [1][4]. Group 1: Definition and Impact of "Open Box" - "Open box" refers to a new form of online violence where individuals illegally gather and publish personal information such as names, photos, ID numbers, and contact details [2]. - Victims of "open box" often face online harassment, including insults, defamation, and real-life disturbances like incessant calls and messages from strangers [3]. Group 2: Regulatory Measures and Responsibilities - The Central Cyberspace Administration of China has already penalized three major online platforms, signaling that all platforms, regardless of size, must comply with laws protecting personal information [4]. - The emphasis on punishing large platforms is due to their greater technical capabilities and user bases, which impose a higher legal and social responsibility to monitor and prevent personal information leaks [4]. Group 3: Future Actions and Expected Outcomes - The next steps include blocking dissemination channels, enhancing protective measures, and increasing punitive actions against violators [7]. - If these measures are effectively implemented, they could significantly reduce the illegal collection and misuse of personal information, thereby enhancing the protection of individual rights [7]. Group 4: Systematic Approach and Collaboration - Addressing the "open box" issue requires a coordinated effort among various government departments, including the Ministry of Industry and Information Technology, the State Administration for Market Regulation, and the Ministry of Public Security [8]. - The irreversible nature of personal information leaks necessitates a focus on preventing new incidents from occurring at the source [8]. Group 5: Vulnerabilities in Personal Information Security - The primary vulnerability in personal information security is the ease and prevalence of obtaining personal data, often required for various online services [9]. - The frequent sharing of personal information increases the likelihood of it being illegally accessed [9]. Group 6: Legal Framework and Enforcement - China has a comprehensive legal framework for protecting personal information, including laws like the Cybersecurity Law, Data Security Law, and Personal Information Protection Law, along with relevant provisions in the Civil Code and Criminal Law [11]. - In 2024, law enforcement agencies have already cracked over 7,000 cases related to the infringement of personal information rights, indicating active measures are being taken to address these issues [11].