Group 1: Domestic Regulations - From January 1, 2026, China will implement a provisional import tariff lower than the most-favored-nation rate on 935 items, including key components, advanced materials, and energy resources [2] - The new VAT law will take effect on January 1, 2026, consisting of 6 chapters and 54 articles, aimed at implementing the VAT law of the People's Republic of China [4] - The "Personal Information Export Certification Measures" will be enforced starting January 1, 2026, detailing the application process and requirements for personal information export certification [5] - A one-time credit repair policy will be implemented on January 1, 2026, allowing automatic adjustments to credit records for overdue payments made between January 1, 2020, and December 31, 2025, under specific conditions [6] - The revised National Common Language and Writing Law will come into effect on January 1, 2026, establishing the third week of September as the National Promotion Week for Common Language and Writing [8] - The modified "Civil Case Cause Regulations" will be effective from January 1, 2026, increasing the total number of causes to 1,055, including new categories related to data and virtual property [9] Group 2: International Developments - Mexico will increase import tariffs on non-free trade partners starting January 1, 2026, affecting a wide range of products including automotive parts, textiles, furniture, plastics, and steel [11] - Germany will raise child benefits by 4 euros per month starting January 2026, bringing the total to 259 euros [12] - Haikou Meilan Airport will launch a direct flight route to Hanoi, Vietnam, starting December 28, 2025, with flights operated by Hainan Airlines [13] - Chengdu will open its first direct flight route to Kazakhstan, with flights to Almaty starting December 30, 2025, using Airbus A320 aircraft [14]

Domestic Regulations - From January 1, 2026, China will implement a temporary import tariff lower than the most-favored-nation rate on 935 items, including key components, advanced materials, and energy resources [2] - The new Value-Added Tax Law will take effect on January 1, 2026, consisting of 54 articles covering tax rates, taxable amounts, tax incentives, and collection management [4] - The Personal Information Export Certification Measures will be enforced starting January 1, 2026, aimed at protecting personal information rights and regulating cross-border data flow [5] - A one-time credit repair policy will be implemented on January 1, 2026, allowing for automatic adjustments of overdue records under specific conditions, which will not appear on personal credit reports [6][18] - The revised National Common Language and Writing Law will come into effect on January 1, 2026, promoting the use of standardized language and writing across the country [7][14] - The revised Civil Case Cause Regulations will also take effect on January 1, 2026, expanding the scope of legal causes to include data and virtual property [8] International Developments - Mexico will increase import tariffs on non-free trade partners starting January 1, 2026, affecting a wide range of products including automotive parts, textiles, and plastics [8] - Germany will raise child benefits by 4 euros per month starting January 2026, bringing the total to 259 euros [9]

Group 1 - The core viewpoint of the article is the completion of personal information outbound certification registration by the National Internet Information Office in collaboration with the National Data Bureau and other institutions [1] - Personal information processors can apply for outbound certification to provide personal information to overseas entities through the aforementioned institutions [1]

Core Viewpoint - The National Market Supervision Administration and the National Internet Information Office have announced changes to the standards for personal information protection certification related to cross-border processing activities [1] Group 1 - The announcement modifies the certification standards for personal information protection to GB/T35273 and GB/T46068 [1] - The changes take effect immediately upon the announcement [1] - The announcement is part of the implementation of the personal information protection certification rules established in 2022 [1]

Core Viewpoint - The announcement by the National Market Supervision Administration and the National Internet Information Office regarding changes to the standards for personal information protection certification for cross-border processing activities is significant for companies handling personal data internationally [1] Group 1: Regulatory Changes - The new standards for personal information protection certification for cross-border processing are now based on GB/T35273 and GB/T46068 [1] - The announcement modifies the previous implementation rules outlined in the 2022 notice regarding personal information protection certification [1]

Core Points - The rapid development of the global digital economy has made cross-border data flow a key factor in the global allocation of data elements and high-level international cooperation and competition [1] - The National Internet Information Office and the State Administration for Market Regulation have jointly announced the "Personal Information Exit Certification Measures," detailing the applicable scenarios and application methods for personal information exit certification [1] - The measures will take effect on January 1, 2026 [1]

Core Points - The National Internet Information Office and the State Administration for Market Regulation have jointly announced the "Personal Information Export Certification Measures," which will take effect on January 1, 2026 [1] - The measures provide detailed regulations on various aspects, including applicable scenarios for personal information export certification, application methods, certification requirements, and obligations of professional certification agencies [1] Group 1 - The certification is applicable to non-critical information infrastructure operators [1] - Personal information processors must meet specific criteria to export personal information, including providing information to more than 100,000 but less than 1 million individuals (excluding sensitive personal information) or less than 10,000 individuals for sensitive personal information [1] - The exported personal information must not include important data, and processors are prohibited from using methods like quantity splitting to bypass security assessments [1]

Core Viewpoint - The newly released "Personal Information Outbound Certification Measures" aims to regulate the outbound transfer of personal information, ensuring the protection of personal data rights and promoting safe cross-border data flow, effective from January 1, 2026 [1][2]. Group 1: Certification Applicability and Requirements - The certification applies to non-critical information infrastructure operators that provide personal information to overseas entities, specifically those that have cumulatively provided information to over 100,000 but less than 1 million individuals, or less than 10,000 individuals for sensitive information, without including important data [1]. - Personal information processors must apply for certification through professional certification agencies, which are required to follow basic certification norms and personal information protection rules. The validity of the certification is set for three years [2]. Group 2: Obligations of Certification Agencies - Professional certification agencies must report certification-related information to the national certification and accreditation information public service platform. If a certified entity's outbound activities do not align with the certification scope, the agency must suspend or revoke the certification [2]. - Agencies are also required to report any violations of laws or regulations regarding outbound personal information activities to the relevant national departments [2]. Group 3: Supervision and Management - Certification agencies must file with the national internet information department within 10 working days of obtaining certification qualifications. The national market supervision and internet information departments will oversee the certification activities [2]. - Provincial-level internet departments can conduct interviews with certified entities if significant risks or personal information security incidents are identified [2]. Group 4: Legal Responsibilities - The measures outline legal responsibilities for violations of the certification rules and specify the applicability of the regulations [3].

Core Points - The National Internet Information Office and the State Administration for Market Regulation have jointly announced the "Personal Information Outbound Certification Measures," which will take effect on January 1, 2026 [1][2] - The measures aim to protect personal information rights, regulate outbound personal information certification activities, and promote the efficient and secure cross-border flow of personal information [1] Group 1: Certification Applicability - The certification applies to personal information processors that are not critical information infrastructure operators and have provided personal information to overseas entities, meeting specific thresholds [1] - Specifically, processors must have provided personal information to more than 100,000 but less than 1 million individuals (excluding sensitive personal information) or less than 10,000 individuals for sensitive personal information [1] Group 2: Certification Process and Requirements - Personal information processors must apply for certification through professional certification agencies, which must follow established certification norms and rules [2] - The validity period of the certification is set at three years [2] Group 3: Obligations of Certification Agencies - Professional certification agencies are required to report certification information to the national certification and accreditation information public service platform [2] - If a certified personal information processor's outbound activities are found to be inconsistent with the certification scope, the agency must suspend or revoke the certification [2] Group 4: Supervision and Management - Certification agencies must file with the National Internet Information Department within 10 working days of obtaining certification qualifications [2] - Provincial-level internet information departments can conduct interviews with certified processors if significant risks or personal information security incidents are identified [2] Group 5: Legal Responsibilities - The measures outline legal responsibilities for violations of the certification regulations and specify their applicability [3]