Core Viewpoint - The National Cybersecurity Notification Center reported that 34 mobile applications were found to illegally collect and use personal information, violating laws such as the Cybersecurity Law and the Personal Information Protection Law [1][2][3]. Group 1: Violations in Personal Information Collection - 17 mobile applications failed to specify the purpose, method, and scope of personal information collection [1][5]. - 1 mobile application did not inform users of the purpose when requesting permission to collect personal information [2]. - 1 mobile application did not inform users of the purpose when collecting sensitive personal information [3]. - 4 mobile applications began collecting personal information before obtaining user consent [4]. - 17 mobile applications collected personal information beyond the scope authorized by users [5]. Group 2: Inadequate User Information and Consent - 1 mobile application had a personal information protection policy that described the need to collect personal information beyond what was necessary for its functions [6]. - 4 mobile applications declared permissions to collect personal information that exceeded what was necessary for their functions [7]. - 2 mobile applications collected personal information beyond what was necessary for their functions [8]. - 3 mobile applications collected personal information more frequently than necessary for their functions [9][10]. - 3 mobile applications required users to enable permissions not needed for the current function [11]. Group 3: User Rights and Misleading Practices - 4 mobile applications forced users to provide unnecessary personal information [12]. - 3 mobile applications did not provide users with a channel for complaints regarding personal information [13]. - 1 mobile application did not offer a specific way for users to correct or supplement their personal information [14]. - 2 mobile applications set unreasonable conditions or additional requirements in the account cancellation process [15]. - 2 mobile applications engaged in misleading or deceptive advertising practices [16].

本文转自【国家网络安全通报中心】； 《房车生活家》（版本5.7.9，vivo应用商店）。 4、征得用户同意前就开始收集个人信息。涉及4款移动应用如下： 《凹凸租车》（版本6.7.5，vivo应用商店）、《圆梦志愿》（版本7.3.1，豌豆荚）、《亲宝宝》（版本 11.7.5，豌豆荚）、《云集》（版本4.20.09041，vivo应用商店）。 5、实际收集的个人信息超出用户授权范围。涉及17款移动应用如下： 《王者代练》（版本2.2.28，华为应用市场）、《首汽租车》（版本6.2.2，应用宝）、《去上网（去 哒）》（版本1.9.37，vivo应用商店）、《潮自拍》（版本5.5.84，小米应用商店）、《极速二维码》 （版本3.2.8，小米应用商店）、《闪电扫码大师》（版本2.2.1，小米应用商店）、《艺愿星》（版本 3.6.22，vivo应用商店）、《UU跑腿》（版本7.5.1.0，vivo应用商店）、《酒便利》（版本3.12.02， vivo应用商店）、《爱口袋》（版本5.0.12，vivo应用商店）、《蝶变志愿》（版本5.1.4，vivo应用商 店）、《二三里》（版本7.7.4，vivo应用商店）、《爱宠游》（ ...

去年"双11"，广西贵港警方端掉一个诈骗窝点。现场堆着15万个快递，拆开全是一张彩页，印着"扫码 领红包""周年庆抽奖"。犯罪嫌疑人韦某某交代，他们通过非法渠道买了487万人的地址，每天寄出两三 万件。成本？一张彩页3毛钱，加上快递费，总成本不到2块钱。广西南宁的张女士就是其中的一位受害 者。她收到写有"扫一扫领红包奖品"的包裹，扫二维码后显示中奖，随后三天收到大米、洗护用品和数 十元红包。之后在聊天群"老师"指引下，她把4万多元存款转到了陌生账户。 专题：北京公募基金高质量发展系列活动 新时代、新基金、新价值 编者按：9月8日，在北京证监局指导下，北京证券业协会携手北京公募基金管理人、基金销售机构、基 金评价机构及多家主流媒体，共同启动"北京公募基金高质量发展系列活动"。活动以"新时代·新基金·新 价值——北京公募基金高质量发展在行动"为主题，旨在贯彻落实《推动公募基金高质量发展行动方 案》，进一步提升北京作为国家金融管理中心的引领作用，打造北京金融高质量发展新名片。 当下，网购已成为全民生活常态，快递包裹从早到晚穿梭于街头巷尾，成为我们生活的"日常风景"。但 你可能想不到，一个看似普通的快递、一条简短的取 ...

近期，一些山寨订票软件，趁旅游高峰活跃起来，它们与官方平台的界面、标志相似，普通用户难以辨 别是"李逵"还是"李鬼"。额外收费、捆绑售险、无法出票、退款难等陷阱，让不少用户蒙受经济损失。 网络不是法外之地，手机屏幕后自然也不应处处是"坑"。多管齐下、合力围堵，才能筑牢个人信息保护 和财产安全屏障。（中国经济网 武晓娟） 当然，仅靠平台自律是不够的，消费者更要上点心，提升防诈意识，否则最终遭受损失的是自己。从操 作层面来讲，消费者务必通过官方认证的应用商店或官方网站下载，从搜索引擎和AI工具上都可以找 到官方的下载地址或可靠的下载方法。特别是，切勿点击不明链接或扫描来源不明的二维码，更不能随 意填写个人信息、银行卡账号等，这样才能避免上当受骗，守好自己的"钱袋子"。 从治理的角度来讲，法规和技术同步施治，才能切断不法之源。为此，也需要市场监管、网信、公安等 部门加强联合执法，实现线索共享，从而更快锁定违法行为，形成合力打击。只有不断加强事前、事 中、事后监管，提高违法成本，才能让山寨订票App无所遁形。 科技向善，让生活越来越美好；科技作恶，第一步就偏离了正道。不是每个消费者都能练就一双"火眼 金睛"。"李逵" ...

随着数字时代的到来，信用免押租车、在线预订酒店等网络消费方式日益受到游客青睐。然而，便捷背 后也潜藏着"数字陷阱"。黄金周前夕，南都记者盘点了广州互联网法院审理的相关案例，分析其典型特 征。 【案例一】 "信用免押"租车发生事故未经同意划扣用户6000元 2020年11月7日，王某通过某租车平台预订租车服务并支付服务费208元。下单时，王某使用"信用免 押"服务，商家为其免除租车押金3000元及违章押金3000元。 【法官说法】 服务协议里应明确扣款情形、流程 广州互联网法院主审法官指出，当前，越来越多的企业接入网络支付平台以"信用免押"模式向消费者提 供租赁服务。 故租车平台仅依据车辆出租方出具的授权文件，向网络支付平台发出划扣王某支付宝账户资金的指令， 缺乏合同依据。 法院遂依法作出判决，租车平台应当退还王某划扣的款项6000元。 次日，王某驾驶租赁车辆发生涉水事故。因租赁车辆未投保涉水险，王某与车辆出租方就损失赔偿问题 发生纠纷。 随后，租车平台根据车辆出租方申请，于2021年1月6日，通过网络支付平台划扣王某银行账户6000元。 王某要求租车平台退款未果，于2021年4月9日将租车平台诉至广州互联网法 ...

隐藏在网络和信息中的 国庆中秋假期已经开启 在享受旅途惬意的同时 "安全陷阱"可不能忽视 这份超实用的 假期网络安全指南 帮你规避风险 玩得安心又尽兴 01 公共Wi-Fi安全 公共Wi-Fi主要危害 窃听风险 黑客可轻松窃听您未加密的网络数据，获取账号、密码、聊天记录等隐私。 伪造热点 黑客架设与酒店、咖啡馆同名的虚假Wi-Fi，您一连接，所有数据就直接送入对方口袋。 恶意攻击 在同一网络下，黑客可能直接攻击您的设备，植入病毒或勒索软件。 防范指南 避免连接 除非紧急情况，尽量避免使用公共Wi-Fi处理敏感事务（如支付、登录网银）。 关闭自动 关闭手机的"自动连接Wi-Fi"功能，防止手机在您不知情时连入恶意网络。 禁输敏感 在公共Wi-Fi下，不要输入银行卡密码、登录重要账号（如邮箱、社交账号）。 牢记：出游联网，公共Wi-Fi需谨慎，敏感操作绝不做。 02 个人信息保护 信息泄露的风险 精准诈骗 犯罪分子利用您的姓名、电话、住址、消费习惯等信息，实施冒充客服、冒充公检法等精准诈骗，或进行骚扰营销。 身份盗用 利用您的身份证号、照片等信息，非法办理贷款、注册公司、从事违法活动。 账号撞库 您在A网站泄露的 ...

Core Viewpoint - The article discusses the newly released "Shenzhen Plan" which includes 15 clear guidelines aimed at enhancing personal information protection, reflecting a shift towards stricter compliance for companies handling personal data [1][4]. Summary by Sections Privacy Policy Standards - The guidelines require application distribution platforms and apps to provide easily accessible and long-term effective privacy policies, which must include rules for personal information processing, user rights, and complaint channels. Special rules must be established for handling minors' personal information [1][2]. User Consent Management - Operators must inform users about personal information processing in a prominent manner, prohibiting default selections or bundled authorizations. Sensitive personal information requires "separate consent," and users must have effective means to withdraw consent [2][4]. Data Processing Compliance - Operators are mandated to adhere to the principles of "minimum and necessary" data processing, prohibiting blanket authorizations and frequent pop-up requests. Personalized recommendations must offer non-targeted options or easy refusal methods. Generative AI services are restricted from indiscriminately collecting or retaining personal information, and any training data involving personal information must comply with legal standards [2][4]. User Rights Protection - Operators are required to inform users of their rights to access, copy, correct, delete, and restrict processing of their personal information. User requests must be processed within 15 working days without artificial barriers [2][4]. Multi-Party Governance Framework - The initiative aims to establish a multi-party governance framework for personal information protection, involving government regulation, corporate autonomy, industry self-discipline, and social oversight. Key application software distribution platforms have signed a compliance commitment to enhance personal information protection [4][5]. Ongoing Efforts and Future Directions - Shenzhen's efforts include exploring a "law enforcement + service" model, transitioning from punitive measures to proactive legal education and rectification. The city plans to continuously improve long-term mechanisms for personal information protection and enhance collaborative enforcement capabilities [5].

Group 1 - The importance of personal information security is increasingly recognized in the digital age, prompting Minsheng Bank's Jinan Tianqiao Branch to actively promote awareness and protection measures [1][2] - The branch employs a multi-faceted promotional approach, combining online and offline methods to educate consumers about personal information protection [1] - Online efforts include using platforms like WeChat and mobile banking apps to simplify complex information security concepts for consumers [1] Group 2 - Offline initiatives involve one-on-one education for customers visiting the branch, emphasizing the importance of safeguarding personal items and not sharing sensitive information [1][2] - Staff also distribute informational brochures in local communities, highlighting key points of the Personal Information Protection Law and analyzing prevalent fraud tactics [2] - The branch aims to continuously improve its information protection processes and innovate financial knowledge dissemination to enhance consumer protection and contribute to a stable financial environment [2]

Core Points - Major companies including Tencent, Huawei, and OPPO signed a compliance operation commitment to enhance personal information protection [1][2] - The commitment includes strict adherence to app listing review standards and responsibilities for managing personal information [1] - The initiative aims to improve privacy policies, user consent management, data processing compliance, and user rights protection [2] Group 1: Compliance Commitment - Six key application distribution platform companies committed to strict enforcement of app listing review standards and legal responsibilities [1] - The commitment emphasizes the importance of managing personal information collection and usage in compliance with the Personal Information Protection Law [1] Group 2: Privacy Policy and User Consent - Applications must provide accessible and long-term effective privacy policies, detailing personal information processing rules and user rights [2] - Operators are required to inform users about personal information processing in a clear manner, prohibiting default selections for consent [2] Group 3: Data Processing and User Rights - Operators must adhere to the principles of data minimization and necessity, avoiding blanket authorizations and frequent pop-up requests [2] - Users should be informed of their rights to access, copy, correct, delete, and restrict processing of their personal information, with a response time of 15 working days for requests [2]

21世纪经济报道记者 雷若馨 深圳报道 在此次会议上，腾讯、华为、中兴、荣耀、OPPO、酷派等6家属地重点应用软件分发平台企业负责人 签署了加强个人信息保护《合规运营承诺书》。 面对网络空间各类业务场景广泛涉及个人信息采集与应用的现实情况，6家企业代表就严格执行上架审 核标准、全面履行主体管理责任、强化日常监管与动态管理、依法接受监管并承担相应法律责任等方面 作出郑重承诺，表示将督促上架APP规范个人信息收集与使用，严格落实《个人信息保护法》等法律法 规。 2021年以来，《数据安全法》《个人信息保护法》等一系列重要法律法规相继颁布施行，为我国数据安 全与个人信息保护构筑了坚实的法治基石。今年3月，中央网信办等四部门联合发文，部署在全国范围 内开展2025年个人信息保护系列专项行动。 随着个人信息保护成为社会广泛关注的热点问题，带有15条明确指引的"深圳方案"新鲜出炉。 9月28日，据深圳本地媒体报道，深圳市委网信办组织召开全市个人信息保护领域网络执法工作推进 会，重点发布了《深圳市加强应用程序个人信息保护若干指引（2025年版）》（简称《指引》），围绕 隐私政策规范、用户同意管理、数据处理合规、用户权益保障 ...