Hogan Lovells - Asia-Pacific Data, Privacy and Cybersecurity Guide 2025 - Flipbook - Page 17
Asia-Pacific Data Privacy and Cybersecurity Guide 2025
the internal management of an enterprise is not
considered important data.
·
Data that, if leaked, tampered with, damaged,
or illegally obtained, used, or shared, would
directly cause moderate harm to
national security;
· Data that, if leaked, tampered with, damaged,
or illegally obtained, used, or shared,
would directly cause severe harm to
economic operations;
· Data that, if leaked, tampered with, damaged,
or illegally obtained, used, or shared, would
directly cause severe harm to social order
(e.g., affecting social stability);
· Data that, if leaked, tampered with, damaged,
or illegally obtained, used, or shared, would
directly cause severe harm to public interests
(e.g., endangering public health and safety);
· Data directly related to national security,
economic operations, social stability, public
health, and safety in specific fields, groups
or regions;
· Data of a certain accuracy, scale, depth, or
importance that directly affects national
security, economic operations, social
stability, public health, and safety;
· Important data as determined by the
competent (regulatory) authorities in the
industry sector.
In particular, Annex G of the 2024 Data
Classification GB states that the identification
of new important data should be based on
compliance with 6.5 (b) and data with one
of the following factors can be identified as
important data:
· Data directly affecting territorial security
and national unity, or reflecting the basic
condition of China’s natural resources,
17
