Core Viewpoint - The rapid growth of apps within the Huawei HarmonyOS ecosystem has prompted the National Cybersecurity Review and Certification Center to enhance app user privacy protection and support the sustainable development of the Harmony ecosystem [1][2] Group 1: App Certification and Compliance - The National Cybersecurity Review and Certification Center is conducting research on the certification of mobile applications within the Harmony ecosystem, focusing on core technologies such as the microkernel architecture and security access mechanisms [1] - The center is analyzing risks related to personal information collection and usage in a distributed environment, particularly concerning privacy leakage during cross-device data transfer and permission synchronization across different terminals [1] - The center aims to continuously optimize compliance detection strategies and certification standards for HarmonyOS apps [1] Group 2: Monitoring and Data Support - The mobile application monitoring platform is being upgraded to adapt to the Harmony system's technical architecture, enabling comprehensive dynamic monitoring of both Android and Harmony ecosystems [1] - The platform utilizes behavior analysis and real-time data processing technologies to monitor app behavior during operation, identifying security vulnerabilities related to personal information safety [1] - This data-driven approach provides strong support for precise governance of apps [1] Group 3: Future Initiatives - The National Cybersecurity Review and Certification Center has issued "App Security Certification" and "Financial Technology Product Certification" to several Harmony apps in the education and finance sectors [2] - Future efforts will focus on deepening research into mobile application certification within the Harmony ecosystem, aligning with the 2025 personal information protection initiative led by multiple government agencies [2]

| | Android SDK | 技股份有限公司 | H 1.2 | | | | --- | --- | --- | --- | --- | --- | | | | | | | 信息窗口乱跳转 | | | | | | | SDK 信息公示不到位 | | 21 | 目睹直播播 | 杭州雅顾科技有 | 官网 | 1.1175317 | 强制、频繁,过度索 取权限 | | | 放器 SDK | 限公司 | | 505 | | | | | | | | SDK 信息公示不到位 | | 22 | 剧星-精品短 | 浙江出海数字技 | 官网 | 1.1.13 | 超范围收集个人信息 | | | 剧 SDK | 术有限公司 | | | SDK 信息公示不到位 | | 23 | NSAGClient- | 格尔软件股份有 | 官网 | 1.0.0 | 超范围收集个人信息 | | | SDK | 限公司 | | | SDK 信息公示不到位 | (责任编辑：柯晓霁) | | 17L | 两位不达几 | | | | | --- | --- | --- | --- | --- | --- | | 11 | 恐惧迷宫 | 海南星空跳动 ...

Core Viewpoint - The Ministry of Industry and Information Technology (MIIT) has reported on the infringement of user rights by 23 apps and SDKs, highlighting ongoing efforts to protect personal information in compliance with relevant laws and regulations [1] Group 1: Regulatory Actions - The MIIT's actions are part of a broader initiative announced by four government departments, including the Central Cyberspace Administration, to conduct a series of special actions for personal information protection in 2025 [1] - The report indicates that the identified apps and SDKs are required to rectify their violations, with potential legal consequences for non-compliance [1] Group 2: Legal Framework - The governance actions are based on several laws, including the Personal Information Protection Law, Cybersecurity Law, Telecommunications Regulations, and the Regulations on the Protection of Personal Information of Telecommunications and Internet Users [1] - The MIIT has engaged third-party testing organizations to conduct inspections, which led to the discovery of the violations [1]

根据中央网信办、工业和信息化部、公安部、市场监管总局等四部门联合发布的《关于开展2025年个人 信息保护系列专项行动的公告》，依据《个人信息保护法》《网络安全法》《电信条例》《电信和互联 网用户个人信息保护规定》等法律法规，工信部对APP、SDK违法违规收集使用个人信息等问题开展治 理。近期，经组织第三方检测机构进行抽查，共发现23款APP及SDK存在侵害用户权益行为（详见附 件），现予以通报。 中国经济网北京8月5日讯（记者 殷俊红） 4日，工信部发布关于侵害用户权益行为的APP（SDK）通报 （2025年第4批，总第49批）。 ...

Core Viewpoint - The article highlights the increasing issue of insurance telemarketing calls and messages affecting individuals' daily lives, raising concerns about potential personal information leaks and privacy violations by insurance intermediaries [2][3]. Group 1: Consumer Experience - Many users report receiving frequent insurance sales calls, especially when their policies are nearing renewal, leading to frustration and confusion about how their personal information was obtained [3][4]. - Users express concerns about receiving targeted marketing calls despite not having purchased insurance from the companies contacting them, indicating a possible breach of privacy [3][4]. Group 2: Privacy Policies and Information Collection - Some insurance intermediaries, like "Toubao Paipai," include clauses in their user agreements that allow for extensive personal information collection, including browsing history, which raises legal and ethical questions [4][8]. - The privacy policies of these intermediaries often blur the lines between legally required information collection and data gathered for commercial purposes, potentially infringing on consumer rights [7][9]. Group 3: Regulatory Environment - Regulatory bodies have been actively addressing the issue of excessive personal information collection by financial institutions, emphasizing the need for clear, reasonable purposes for data processing [10][11]. - Recent regulations mandate that financial institutions must limit personal information collection to what is necessary for business purposes, highlighting the importance of consumer consent and transparency [11][12].

记者8月4日从工业和信息化部获悉，依据相关法律法规，工业和信息化部对APP、SDK（第三方软件开发工具包）违法违规收集使用个人信息 等问题开展治理。近期，经组织第三方检测机构进行抽查，共发现23款APP及SDK存在侵害用户权益行为。 | 序号 | 应用名称 | 应用开发者 | 应用来源 | 应用版本 | 所涉问题 | | --- | --- | --- | --- | --- | --- | | 1 | 保卫萝卜2 | 北京凯罗天下科 | 三星应用 | 5.2.6 | 违规收集个人信息 | | | | 技有限公司 | 商店 | | | | 2 | 多屏互动 | Shenzhen Falcon Network Media | App Store | 4.5.10 | 违规收集个人信息 | | | | Co., Ltd. | | | | | 3 | 进圈 | 厦门勇气网络科 | 应用宝 | 2.2.2.4 | APP 强制、频繁、过 | | | | 技有限公司 | | | 度索取权限 | | 4 | 掌上大学 | 杭州新麦科技有 | OPPO 软件 | 3.24.6 | 违规收集个人信息 | | | | 限公司 ...

Core Viewpoint - The Ministry of Industry and Information Technology (MIIT) has released a notice regarding the infringement of user rights by certain apps and SDKs, highlighting the ongoing efforts to protect personal information in compliance with relevant laws and regulations [1] Group 1: Regulatory Actions - The MIIT's notice is part of a broader initiative launched by four government departments, including the Central Cyberspace Administration, to conduct a special action series for personal information protection in 2025 [1] - The notice cites violations of the Personal Information Protection Law, Cybersecurity Law, Telecommunications Regulations, and the Regulations on the Protection of Personal Information of Telecommunications and Internet Users [1] Group 2: Findings and Compliance - A recent inspection by third-party testing agencies identified 23 apps and SDKs that were found to infringe on user rights, including specific versions of Multi-Screen Interaction and Flower Diary, which were noted for excessive and inappropriate data collection practices [1] - The MIIT has mandated that the identified apps and SDKs must rectify their issues in accordance with the regulations, with potential legal actions for non-compliance [1]

新京报贝壳财经讯 8月4日，据工信微报消息，根据中央网信办、工业和信息化部、公安部、市场监管总局等四部门联合发布的《关于开展 2025年个人信息保护系列专项行动的公告》，依据《个人信息保护法》《网络安全法》《电信条例》《电信和互联网用户个人信息保护规定》 等法律法规，我部对APP、SDK违法违规收集使用个人信息等问题开展治理。近期，经组织第三方检测机构进行抽查，共发现23款APP及SDK 存在侵害用户权益行为（详见附件），现予以通报。 | | DUN | 什仅有限公司 | | | 日心图片 儿/五大内 | | --- | --- | --- | --- | --- | --- | | | | | | | SDK 信息公示不到位 | | | | | | | 超范围收集个人信息 | | | | | | | 强制用户使用定向推 | | | 果玩游戏联 | 山东新岱宗网络 | | | 送功能 | | 19 | 运 SDK | 文化有限公司 | 官网 | 4.6.6 | 强制、频繁、过度索 | | | | | | | 取权限 | | | | | | | SDK 信息公示不到位 | | | | | | | 超范围收集个人 ...

中国网络空间安全协会：5款App完成个人信息收集使用优化改进 智通财经8月4日电，中国网络空间安全协会8月4日发布公告称，为规范App收集使用个人信息行为，保 护个人信息权益，中国网络空间安全协会组织指导邮件快件寄递、二手车交易、旅游服务等3类5款App 运营方，对照《中华人民共和国网络安全法》等法律法规，重点针对超范围收集个人信息、过度调用敏 感权限、权限设置和账号注销不便等个人信息收集使用问题完成了优化改进。5款App运营方已在应用 商店或者官网上架优化改进版本，并承诺升级版本持续保持合规水平。 ...

Core Viewpoint - The conference highlighted the importance of personal information security in the AI era, emphasizing the role of domestic tools like Quark AI in protecting privacy and preventing risks [1][3]. Group 1: Personal Information Security Challenges - The current AI era presents severe challenges for personal information protection, including data breaches and the intelligent upgrading of fraud methods [3]. - The use of domestic systems and software is emphasized as a crucial path to building a security defense [3]. Group 2: Quark AI Applications - Quark AI's high school entrance examination product has served over 160 million users, providing deep search, intelligent selection of subjects, and reports, ensuring data autonomy and compliance with legal frameworks [3][4]. - Quark AI camera innovatively prevents online fraud through multi-modal recognition technology, allowing users to quickly identify suspicious links and images without direct interaction [4]. Group 3: Collaborative Governance and User Responsibility - The need for collaboration among government, enterprises, and social organizations to build a governance system is stressed, with citizens encouraged to choose reliable domestic tools as the first line of defense for personal information protection [4]. - Domestic platforms like Quark adhere to national regulations in data storage and algorithm design, empowering users to take control of their information security [4].