{"id":65607,"date":"2024-04-03T18:55:41","date_gmt":"2024-04-03T09:55:41","guid":{"rendered":"https:\/\/monolith.law\/ro\/?p=65607"},"modified":"2024-08-04T18:10:00","modified_gmt":"2024-08-04T09:10:00","slug":"china-data-security-law","status":"publish","type":"post","link":"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law","title":{"rendered":"Ce este Legea Securit\u0103\u021bii Datelor din China? Explicarea m\u0103surilor pe care companiile japoneze ar trebui s\u0103 le ia"},"content":{"rendered":"\n<p>Legea securit\u0103\u021bii datelor din China este o lege \u00een domeniul datelor din China, care a fost implementat\u0103 \u00een septembrie 2021 (Reiwa 3). Aceasta se aplic\u0103 tuturor proces\u0103rilor de date care au loc \u00een interiorul Chinei, astfel \u00eenc\u00e2t companiile care \u00ee\u0219i desf\u0103\u0219oar\u0103 activitatea \u00een China sau cele care pl\u0103nuiesc s\u0103 intre pe pia\u021ba chinez\u0103 \u00een viitor trebuie s\u0103 revizuiasc\u0103 \u0219i s\u0103 modifice reglement\u0103rile \u0219i politicile de management existente. Cu toate acestea, exist\u0103 persoane care nu \u00een\u021beleg natura acestei legi sau care sunt \u00eengrijorate cu privire la m\u0103surile pe care ar trebui s\u0103 le implementeze.<\/p>\n\n\n\n<p>Prin urmare, \u00een acest articol, vom explica aspectele esen\u021biale ale Legii securit\u0103\u021bii datelor din China, punctele cheie de \u00een\u021beles, sanc\u021biunile aplicabile \u0219i m\u0103surile care trebuie luate \u00een Japonia.<\/p>\n\n\n\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_53 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Ce_este_Legea_Securitatii_Datelor_din_China\" title=\"Ce este Legea Securit\u0103\u021bii Datelor din China?\">Ce este Legea Securit\u0103\u021bii Datelor din China?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Aspecte_esentiale_pentru_intelegerea_Legii_Securitatii_Datelor_din_China\" title=\"Aspecte esen\u021biale pentru \u00een\u021belegerea Legii Securit\u0103\u021bii Datelor din China\">Aspecte esen\u021biale pentru \u00een\u021belegerea Legii Securit\u0103\u021bii Datelor din China<\/a><ul class='ez-toc-list-level-3'><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Categorii_de_reglementare\" title=\"Categorii de reglementare\">Categorii de reglementare<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Despre_stabilirea_normelor_de_clasificare_si_ierarhizare_a_datelor\" title=\"Despre stabilirea normelor de clasificare \u0219i ierarhizare a datelor\">Despre stabilirea normelor de clasificare \u0219i ierarhizare a datelor<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Despre_gestionarea_securitatii_datelor\" title=\"Despre gestionarea securit\u0103\u021bii datelor\">Despre gestionarea securit\u0103\u021bii datelor<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Despre_reglementarea_transferului_de_date\" title=\"Despre reglementarea transferului de date\">Despre reglementarea transferului de date<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Despre_examinarea_securitatii_nationale\" title=\"Despre examinarea securit\u0103\u021bii na\u021bionale\">Despre examinarea securit\u0103\u021bii na\u021bionale<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Sanctiunile_prevazute_de_legea_securitatii_datelor\" title=\"Sanc\u021biunile prev\u0103zute de legea securit\u0103\u021bii datelor\">Sanc\u021biunile prev\u0103zute de legea securit\u0103\u021bii datelor<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Masuri_pe_care_companiile_japoneze_trebuie_sa_le_ia_in_conformitate_cu_legea_securitatii_datelor\" title=\"M\u0103suri pe care companiile japoneze trebuie s\u0103 le ia \u00een conformitate cu legea securit\u0103\u021bii datelor\">M\u0103suri pe care companiile japoneze trebuie s\u0103 le ia \u00een conformitate cu legea securit\u0103\u021bii datelor<\/a><ul class='ez-toc-list-level-3'><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Gestionarea_datelor\" title=\"Gestionarea datelor\">Gestionarea datelor<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Evaluarea_si_raportarea_riscurilor\" title=\"Evaluarea \u0219i raportarea riscurilor\">Evaluarea \u0219i raportarea riscurilor<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Educatia_angajatilor\" title=\"Educa\u021bia angaja\u021bilor\">Educa\u021bia angaja\u021bilor<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Caracteristicile_celor_trei_legi_chinezesti_privind_cibernetica\" title=\"Caracteristicile celor trei legi chineze\u0219ti privind cibernetica\">Caracteristicile celor trei legi chineze\u0219ti privind cibernetica<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Rezumat_Raspuns_rapid_si_atent_la_reglementarile_chineze_privind_datele\" title=\"Rezumat: R\u0103spuns rapid \u0219i atent la reglement\u0103rile chineze privind datele\">Rezumat: R\u0103spuns rapid \u0219i atent la reglement\u0103rile chineze privind datele<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-15\" href=\"https:\/\/monolith.law\/ro\/general-corporate\/china-data-security-law\/#Ghidul_masurilor_oferite_de_firma_noastra\" title=\"Ghidul m\u0103surilor oferite de firma noastr\u0103\">Ghidul m\u0103surilor oferite de firma noastr\u0103<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Ce_este_Legea_Securitatii_Datelor_din_China\"><\/span>Ce este Legea Securit\u0103\u021bii Datelor din China?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2024\/01\/question.jpg\" alt=\"\u00centrebare\" class=\"wp-image-63910\" \/><\/figure>\n\n\n\n<p>Legea Securit\u0103\u021bii Datelor din China (Legea Securit\u0103\u021bii Datelor a Republicii Populare Chineze) este o lege referitoare la securitatea datelor \u00een China, care a intrat \u00een vigoare \u00een septembrie 2021. A fost adoptat\u0103 pentru a proteja securitatea na\u021bional\u0103, la fel ca Legea Securit\u0103\u021bii Cibernetice din China, care a fost implementat\u0103 \u00een iunie 2017.<\/p>\n\n\n<p class=\"has-small-font-size\">Legea Securit\u0103\u021bii Cibernetice din China: O lege pentru protejarea securit\u0103\u021bii \u201ere\u021belelor\u201d din China<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Obiectivele Legii Securit\u0103\u021bii Datelor din China sunt descrise dup\u0103 cum urmeaz\u0103 (Articolul 1):<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:list --><\/p>\n<ul>\n<li style=\"list-style-type: none\">\n<ul><!-- wp:list-item -->\n<li>Reglementarea activit\u0103\u021bilor de manipulare a datelor<\/li>\n<li>Asigurarea securit\u0103\u021bii datelor<\/li>\n<li>Promovarea dezvolt\u0103rii \u0219i utiliz\u0103rii datelor<\/li>\n<li>Protejarea drepturilor \u0219i intereselor legitime ale persoanelor \u0219i organiza\u021biilor<\/li>\n<li>Protec\u021bia suveranit\u0103\u021bii na\u021bionale, securit\u0103\u021bii \u0219i intereselor de dezvoltare<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><!-- \/wp:list-item --><\/p>\n<p><!-- \/wp:list --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>De\u0219i Legea Securit\u0103\u021bii Cibernetice din China reglementa datele electronice, Legea Securit\u0103\u021bii Datelor din China se remarc\u0103 prin includerea \u00een sfera sa de reglementare a datelor non-electronice, cum ar fi cele pe suport de h\u00e2rtie (Articolul 3). Legea Securit\u0103\u021bii Datelor din China stabile\u0219te clasificarea datelor, dezvoltarea unui sistem de certificare a securit\u0103\u021bii \u0219i obliga\u021biile de protec\u021bie a securit\u0103\u021bii datelor.<!-- \/wp:paragraph --><!-- wp:heading --><\/p>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Aspecte_esentiale_pentru_intelegerea_Legii_Securitatii_Datelor_din_China\"><\/span>Aspecte esen\u021biale pentru \u00een\u021belegerea Legii Securit\u0103\u021bii Datelor din China<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:image {\"id\":63912,\"sizeSlug\":\"full\",\"linkDestination\":\"none\"} --><\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" class=\"wp-image-63912\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2024\/01\/point.jpg\" alt=\"Aspecte esen\u021biale\" \/><\/figure>\n<p><!-- \/wp:image --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Legea Securit\u0103\u021bii Datelor din China cuprinde diverse reglement\u0103ri care pot fi dificil de \u00een\u021beles pentru mul\u021bi. \u00cen acest articol, vom explica \u00een detaliu urm\u0103toarele cinci aspecte esen\u021biale ale Legii Securit\u0103\u021bii Datelor.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:list --><\/p>\n<ul>\n<li style=\"list-style-type: none\">\n<ul><!-- wp:list-item -->\n<li>Entit\u0103\u021bile reglementate<\/li>\n<li>Elaborarea normelor de clasificare \u0219i ierarhizare a datelor<\/li>\n<li>Gestionarea securit\u0103\u021bii datelor<\/li>\n<li>Reglement\u0103rile privind transferul de date<\/li>\n<li>Examinarea securit\u0103\u021bii na\u021bionale<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Categorii_de_reglementare\"><\/span>Categorii de reglementare<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Legea reglementeaz\u0103 toate activit\u0103\u021bile de \u201eprelucrare a datelor\u201d care au loc \u00een interiorul Chinei. Activit\u0103\u021bile de prelucrare a datelor care se desf\u0103\u0219oar\u0103 \u00een afara Chinei sunt, de asemenea, supuse reglement\u0103rii dac\u0103 acestea aduc atingere securit\u0103\u021bii na\u021bionale a Chinei, interesului public sau intereselor cet\u0103\u021benilor \u0219i organiza\u021biilor.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Termenul \u201edate\u201d se refer\u0103 la \u00eenregistrarea informa\u021biilor prin mijloace electronice sau alte metode, inclusiv \u00een format tip\u0103rit, aspect care necesit\u0103 aten\u021bie. \u201ePrelucrarea datelor\u201d include colectarea, stocarea, utilizarea, procesarea, transmiterea, furnizarea \u0219i divulgarea datelor, iar persoanele care efectueaz\u0103 aceste ac\u021biuni sunt cunoscute ca \u201eprocesatori de date\u201d.<!-- \/wp:paragraph --><!-- wp:heading {\"level\":3} --><\/p>\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Despre_stabilirea_normelor_de_clasificare_si_ierarhizare_a_datelor\"><\/span>Despre stabilirea normelor de clasificare \u0219i ierarhizare a datelor<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Procesatorii de date trebuie s\u0103 asigure securitatea datelor pe baza sistemului de protec\u021bie prin clasificare. Acest sistem reprezint\u0103 un cadru de evaluare oficial pentru gestionarea securit\u0103\u021bii re\u021belelor, iar m\u0103surile necesare variaz\u0103 \u00een func\u021bie de clasificare. De asemenea, este necesar s\u0103 clasific\u0103m datele \u00een func\u021bie de gravitatea daunelor aduse securit\u0103\u021bii na\u021bionale, interesului public, persoanelor sau organiza\u021biilor, cauzate de distrugerea sau scurgerea de date.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Clasificarea se \u00eemparte \u00een trei categorii: \u201edate generale\u201d, \u201edate importante\u201d \u0219i \u201edate esen\u021biale\u201d. Conform \u201eRegulamentului de securitate a datelor \u00een re\u021bea (proiect pentru colectarea de opinii)\u201d, datele importante sunt definite ca datele \u201ecare, \u00een cazul alter\u0103rii, distrugerii, scurgerii, ob\u021binerii ilegale sau utiliz\u0103rii ilegale, pot aduce prejudicii securit\u0103\u021bii na\u021bionale sau interesului public\u201d. Datele esen\u021biale se refer\u0103 la datele legate de securitatea na\u021bional\u0103, linia vital\u0103 a economiei na\u021bionale, via\u021ba important\u0103 a cet\u0103\u021benilor \u0219i interesele publice majore (Articolul 21).<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>La momentul redact\u0103rii, nu exist\u0103 \u00eenc\u0103 un inventar concret pentru datele importante sau esen\u021biale, a\u0219adar este recomandabil s\u0103 clasifica\u021bi datele pe care le gestiona\u021bi folosind ca referin\u021b\u0103 exemplele de date importante men\u021bionate \u00een \u201eRegulamentul de securitate a datelor \u00een re\u021bea (proiect pentru colectarea de opinii)\u201d. Este de asemenea important s\u0103 monitoriza\u021bi inventarele publicate de departamentele competente.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:heading {\"level\":3} --><\/p>\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Despre_gestionarea_securitatii_datelor\"><\/span>Despre gestionarea securit\u0103\u021bii datelor<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Responsabilit\u0103\u021bile unui procesator de date includ urm\u0103toarele:<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:list --><\/p>\n<ul>\n<li style=\"list-style-type: none\">\n<ul><!-- wp:list-item -->\n<li>Implementarea educa\u021biei \u0219i instruirii \u00een securitatea datelor<\/li>\n<li>Obliga\u021bia de protec\u021bie a securit\u0103\u021bii datelor bazat\u0103 pe sistemul de clasificare a gradelor de protec\u021bie<\/li>\n<li>Monitorizarea continu\u0103 a riscurilor<\/li>\n<li>Stabilirea unui sistem de gestionare a securit\u0103\u021bii pe \u00eentregul ciclu de via\u021b\u0103 al datelor<\/li>\n<li>Desemnarea unui responsabil<\/li>\n<li>M\u0103suri tehnice<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><!-- \/wp:list-item --><\/p>\n<p><!-- \/wp:list --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>\u00cen esen\u021b\u0103, acestea sunt similare cu cerin\u021bele unui &#8216;Sistem de Management al Securit\u0103\u021bii Informa\u021biei (ISMS)&#8217;, dar este necesar\u0103 aten\u021bie special\u0103 pentru a implementa m\u0103suri de gestionare adecvate \u00een func\u021bie de clasificarea datelor.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>\u00cen cazul unui incident, trebuie s\u0103 se ac\u021bioneze imediat, s\u0103 se raporteze utilizatorilor \u0219i autorit\u0103\u021bilor competente. De asemenea, atunci c\u00e2nd se proceseaz\u0103 date importante, este necesar s\u0103 se efectueze evalu\u0103ri periodice ale riscurilor \u0219i s\u0103 se prezinte rapoarte de evaluare a riscurilor departamentelor relevante.<!-- \/wp:paragraph --><!-- wp:heading {\"level\":3} --><\/p>\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Despre_reglementarea_transferului_de_date\"><\/span>Despre reglementarea transferului de date<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>\u00cen ceea ce prive\u0219te transferul de date, reglement\u0103rile se aplic\u0103 \u00een cazul datelor importante. Este stipulat c\u0103, atunci c\u00e2nd operatorii de infrastructuri critice de informa\u021bii ob\u021bin sau genereaz\u0103 date importante \u00een cadrul activit\u0103\u021bilor desf\u0103\u0219urate \u00een China, ace\u0219tia trebuie s\u0103 se conformeze prevederilor Legii japoneze a Securit\u0103\u021bii Cibernetice atunci c\u00e2nd transfer\u0103 aceste date peste grani\u021be.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph {\"fontSize\":\"small\"} --><\/p>\n<p class=\"has-small-font-size\">Infrastructuri critice de informa\u021bii: Operatorii de facilit\u0103\u021bi care, \u00een caz de daune, pot amenin\u021ba securitatea na\u021bional\u0103 a unui domeniu (cum ar fi energie, transport, finan\u021be, servicii publice etc.) \u0219i care, prin deteriorare sau scurgeri de date, pot afecta semnificativ securitatea na\u021bional\u0103, via\u021ba cet\u0103\u021benilor \u0219i interesul public.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Dac\u0103 procesatorii de date nu sunt operatori de infrastructuri critice de informa\u021bii, ace\u0219tia trebuie s\u0103 se supun\u0103 unei evalu\u0103ri de securitate efectuate de autorit\u0103\u021bi conform &#8220;Metodologiei de evaluare a securit\u0103\u021bii transferului de date \u00een str\u0103in\u0103tate&#8221; \u0219i s\u0103 transfere datele numai dup\u0103 ce au trecut aceast\u0103 evaluare.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Conform &#8220;Regulamentului de administrare a securit\u0103\u021bii datelor \u00een re\u021bea (proiect pentru consultare public\u0103)&#8221;, chiar \u0219i \u00een cazul transferului de date care nu sunt considerate importante \u00een str\u0103in\u0103tate, este necesar s\u0103 se treac\u0103 evaluarea de securitate a autorit\u0103\u021bilor \u00een urm\u0103toarele situa\u021bii:<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:list --><\/p>\n<ul>\n<li style=\"list-style-type: none\">\n<ul><!-- wp:list-item -->\n<li>C\u00e2nd datele transfrontaliere includ date importante<\/li>\n<li>C\u00e2nd operatorii de infrastructuri critice de informa\u021bii sau procesatorii de date care gestioneaz\u0103 informa\u021biile personale a peste un milion de persoane ofer\u0103 informa\u021bii personale \u00een str\u0103in\u0103tate<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><!-- \/wp:list-item --><\/p>\n<p><!-- \/wp:list --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>De asemenea, sunt enumerate urm\u0103toarele obliga\u021bii pentru cei care transfer\u0103 date \u00een str\u0103in\u0103tate:<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:list --><\/p>\n<ul>\n<li style=\"list-style-type: none\">\n<ul><!-- wp:list-item -->\n<li>S\u0103 nu furnizeze informa\u021bii personale \u00een str\u0103in\u0103tate care dep\u0103\u0219esc scopul, domeniul, metoda, tipul \u0219i dimensiunea datelor specificate \u00een raportul de evaluare a impactului asupra protec\u021biei datelor personale prezentat departamentului de informa\u021bii de re\u021bea<\/li>\n<li>S\u0103 nu furnizeze informa\u021bii personale \u0219i date importante peste hotare care dep\u0103\u0219esc scopul, domeniul, tipul \u0219i dimensiunea datelor specificate \u00een evaluarea de securitate a departamentului de informa\u021bii de re\u021bea<\/li>\n<li>S\u0103 accepte \u0219i s\u0103 proceseze reclama\u021biile utilizatorilor legate de exportul de date<\/li>\n<li>S\u0103 p\u0103streze \u00eenregistr\u0103rile legate de loguri \u0219i \u00eenregistr\u0103rile de autorizare a exportului de date pentru cel pu\u021bin trei ani<\/li>\n<li>S\u0103 \u00ee\u0219i asume responsabilitatea conform legii \u00een cazul \u00een care exportul de date afecteaz\u0103 drepturile \u0219i interesele legitime ale persoanelor, organiza\u021biilor \u0219i interesul public<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><!-- \/wp:list-item --><\/p>\n<p><!-- \/wp:list --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>C\u00e2nd se transfer\u0103 date \u00een str\u0103in\u0103tate, exist\u0103 \u0219i obliga\u021bia de a elabora un raport de securitate a exportului de date \u0219i de a-l raporta departamentului de informa\u021bii de re\u021bea al districtului.<!-- \/wp:paragraph --><!-- wp:heading {\"level\":3} --><\/p>\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Despre_examinarea_securitatii_nationale\"><\/span>Despre examinarea securit\u0103\u021bii na\u021bionale<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Este necesar s\u0103 se acorde aten\u021bie faptului c\u0103, dac\u0103 guvernul chinez consider\u0103 c\u0103 activit\u0103\u021bile de procesare a datelor prejudiciaz\u0103 securitatea na\u021bional\u0103 a Chinei, se va efectua o examinare a securit\u0103\u021bii na\u021bionale. Rezultatele examin\u0103rii securit\u0103\u021bii na\u021bionale sunt definitive, astfel \u00eenc\u00e2t nu este posibil s\u0103 se conteste decizia prin proceduri administrative de contestare sau prin litigii.<!-- \/wp:paragraph --><!-- wp:heading --><\/p>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Sanctiunile_prevazute_de_legea_securitatii_datelor\"><\/span>Sanc\u021biunile prev\u0103zute de legea securit\u0103\u021bii datelor<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:image {\"id\":63913,\"sizeSlug\":\"full\",\"linkDestination\":\"none\"} --><\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" class=\"wp-image-63913\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2024\/01\/yellowcard.jpg\" alt=\"B\u0103rbat care avertizeaz\u0103\" \/><\/figure>\n<p><!-- \/wp:image --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>\u00cen cazul \u00eenc\u0103lc\u0103rii legii securit\u0103\u021bii datelor, se pot aplica m\u0103suri precum ordine de corectare \u0219i avertismente, amenzi, suspendarea activit\u0103\u021bilor pentru corectare, oprirea activit\u0103\u021bilor conexe \u0219i anularea licen\u021bei de func\u021bionare a afacerii.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>De exemplu, dac\u0103 nu se respect\u0103 obliga\u021biile stabilite \u00een articolele 27, 29 \u0219i 30 ale Legii Securit\u0103\u021bii Datelor din China, se pot emite ordine de corectare \u0219i avertismente, iar persoanele direct responsabile \u0219i alte persoane cu responsabilitate direct\u0103 pot fi supuse unor amenzi cuprinse \u00eentre 50.000 \u0219i 500.000 de yuani.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Este important de re\u021binut c\u0103, \u00een cazul \u00eenc\u0103lc\u0103rii legii securit\u0103\u021bii datelor, nu doar persoana juridic\u0103, ci \u0219i persoanele direct responsabile \u0219i alte cadre cu responsabilitate direct\u0103 pot fi sanc\u021bionate. Av\u00e2nd \u00een vedere c\u0103 sanc\u021biunile pot avea un impact semnificativ asupra \u00eentregii organiza\u021bii, este esen\u021bial s\u0103 se ia m\u0103suri preventive \u00een conformitate cu legea.<!-- \/wp:paragraph --><!-- wp:heading --><\/p>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Masuri_pe_care_companiile_japoneze_trebuie_sa_le_ia_in_conformitate_cu_legea_securitatii_datelor\"><\/span>M\u0103suri pe care companiile japoneze trebuie s\u0103 le ia \u00een conformitate cu legea securit\u0103\u021bii datelor<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:image {\"id\":63914,\"sizeSlug\":\"full\",\"linkDestination\":\"none\"} --><\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" class=\"wp-image-63914\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2024\/01\/man-guiding.jpg\" alt=\"B\u0103rbat care ghideaz\u0103\" \/><\/figure>\n<p><!-- \/wp:image --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Legea securit\u0103\u021bii datelor se aplic\u0103 tuturor proceselor de date care au loc \u00een China, astfel c\u0103 multe companii japoneze trebuie s\u0103 se conformeze. \u00cen continuare, vom explica \u00een detaliu m\u0103surile pe care companiile japoneze trebuie s\u0103 le ia \u00een conformitate cu legea securit\u0103\u021bii datelor.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:heading {\"level\":3} --><\/p>\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Gestionarea_datelor\"><\/span>Gestionarea datelor<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>\u00cen primul r\u00e2nd, vom revizui gestionarea datelor. Este esen\u021bial s\u0103 clarific\u0103m ce tipuri de date sunt generate, acumulate \u0219i \u0219terse \u00een cadrul companiei \u0219i s\u0103 \u00een\u021belegem situa\u021bia actual\u0103 a manipul\u0103rii datelor. Prin maparea datelor, este important s\u0103 verific\u0103m \u00een prealabil clasificarea datelor, situa\u021bia transferului de date \u00een afara Chinei \u0219i m\u0103surile actuale de gestionare a datelor, astfel \u00eenc\u00e2t s\u0103 putem r\u0103spunde adecvat pentru fiecare categorie de date.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Conform legii securit\u0103\u021bii datelor din China, sunt necesare m\u0103suri de protec\u021bie specifice pentru datele importante \u0219i datele nucleare. Prin urmare, va fi necesar s\u0103 redefinim clasificarea confiden\u021bialit\u0103\u021bii informa\u021biilor \u00een func\u021bie de categorii.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Totu\u0219i, la acest moment, nivelurile de securitate pentru diferitele categorii sunt \u00eenc\u0103 neclare. Deoarece acestea ar putea fi clarificate \u00een viitor, este esen\u021bial s\u0103 monitoriz\u0103m cataloagele publicate de autorit\u0103\u021bile de jurisdic\u021bie din China. \u00cen acela\u0219i timp, este prudent s\u0103 stabilim niveluri de securitate care s\u0103 ia \u00een considerare clasificarea, inclusiv controlul accesului, autentificarea, securitatea comunica\u021biilor \u0219i m\u0103surile fizice.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>De asemenea, vom revizui politica de securitate \u0219i vom aplica politici adecvate categoriilor de date clasificate prin maparea datelor.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:heading {\"level\":3} --><\/p>\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Evaluarea_si_raportarea_riscurilor\"><\/span>Evaluarea \u0219i raportarea riscurilor<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Dac\u0103, prin maparea datelor, se constat\u0103 c\u0103 datele gestionate de companie includ date importante, se va efectua o evaluare a riscurilor asociate proces\u0103rii datelor. De asemenea, rezultatele trebuie raportate autorit\u0103\u021bilor.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Evaluarea riscurilor trebuie efectuat\u0103 periodic, deci este crucial s\u0103 stabilim reguli pentru a o putea efectua constant.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:heading {\"level\":3} --><\/p>\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Educatia_angajatilor\"><\/span>Educa\u021bia angaja\u021bilor<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>\u00cen China, sunt implementate pe r\u00e2nd diverse reglement\u0103ri legate de securitate. \u00cen plus, gestionarea datelor \u0219i evaluarea riscurilor nu se termin\u0103 dup\u0103 o singur\u0103 realizare. Prin urmare, este necesar\u0103 educa\u021bia angaja\u021bilor pentru a revizui \u0219i \u00eembun\u0103t\u0103\u021bi periodic procesele, astfel \u00eenc\u00e2t acestea s\u0103 devin\u0103 parte integrant\u0103 a culturii corporative.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Deoarece nu doar departamentele juridice \u0219i administrative sunt implicate, ci \u0219i cele de gestionare a riscurilor, colaborarea \u00eentre departamente este esen\u021bial\u0103. De\u0219i legea are \u00eenc\u0103 aspecte neclare, exist\u0103 cazuri \u00een care s-au aplicat sanc\u021biuni pentru \u00eenc\u0103lc\u0103ri, a\u0219adar conformitatea cu legea securit\u0103\u021bii datelor este indispensabil\u0103.<!-- \/wp:paragraph --><!-- wp:heading --><\/p>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Caracteristicile_celor_trei_legi_chinezesti_privind_cibernetica\"><\/span>Caracteristicile celor trei legi chineze\u0219ti privind cibernetica<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:image {\"id\":63915,\"sizeSlug\":\"full\",\"linkDestination\":\"none\"} --><\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" class=\"wp-image-63915\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2024\/01\/3-pieces.jpg\" alt=\"\" \/><\/figure>\n<p><!-- \/wp:image --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Cele trei legi chineze\u0219ti privind cibernetica se refer\u0103 la denumirea colectiv\u0103 a &#8220;Legii securit\u0103\u021bii cibernetice&#8221;, &#8220;Legii securit\u0103\u021bii datelor&#8221; \u0219i &#8220;Legii protec\u021biei informa\u021biilor personale&#8221; implementate de China. Legea securit\u0103\u021bii cibernetice vizeaz\u0103 m\u0103surile \u00eempotriva atacurilor cibernetice, Legea securit\u0103\u021bii datelor se concentreaz\u0103 pe conservarea datelor, iar Legea protec\u021biei informa\u021biilor personale are ca scop \u00eent\u0103rirea securit\u0103\u021bii informa\u021biilor personale.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Articolul asociat: <a title=\"Ce este Legea securit\u0103\u021bii cibernetice a Chinei? Explicarea punctelor cheie pentru conformitate\" href=\"https:\/\/monolith.law\/corporate\/china-cyber-security-law\" target=\"_blank\" rel=\"noopener\">Ce este Legea securit\u0103\u021bii cibernetice a Chinei? Explicarea punctelor cheie pentru conformitate[ja]<\/a><\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Astfel, de\u0219i fiecare are diferen\u021bele sale, un aspect comun este c\u0103 toate prev\u0103d sanc\u021biuni administrative, desp\u0103gubiri civile pentru daune \u0219i responsabilitate penal\u0103 pentru \u00eenc\u0103lc\u0103ri. \u00cen plus, subiec\u021bii \u00eenc\u0103lc\u0103rii nu sunt doar persoanele juridice, ci \u0219i responsabilii direc\u021bi, care pot fi interzi\u0219i s\u0103 participe la acelea\u0219i activit\u0103\u021bi comerciale sau pot fi inclusi \u00een informa\u021biile despre infractori ale \u021b\u0103rii, exist\u00e2nd riscul de a fi publica\u021bi.<!-- \/wp:paragraph --><!-- wp:heading --><\/p>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Rezumat_Raspuns_rapid_si_atent_la_reglementarile_chineze_privind_datele\"><\/span>Rezumat: R\u0103spuns rapid \u0219i atent la reglement\u0103rile chineze privind datele<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><!-- \/wp:heading --><\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" class=\"wp-image-63916\" src=\"https:\/\/monolith.law\/wp-content\/uploads\/2024\/01\/japan-china.jpg\" alt=\"\" \/><\/figure>\n<p><!-- wp:paragraph --><\/p>\n<p>Legea Securit\u0103\u021bii Datelor din China este o lege aplicabil\u0103 proces\u0103rii datelor \u00een China \u0219i stabile\u0219te clasificarea \u0219i protec\u021bia gradelor de date, evaluarea riscurilor \u0219i alte aspecte. \u00cen plus fa\u021b\u0103 de Legea Securit\u0103\u021bii Cibernetice, au fost publicate diverse legi, cum ar fi &#8220;Legea Protec\u021biei Informa\u021biilor Personale&#8221; \u0219i &#8220;Regulamentul privind gestionarea vulnerabilit\u0103\u021bilor de securitate a produselor de internet&#8221;, iar conformitatea cu acestea este esen\u021bial\u0103.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>De\u0219i \u00een prezent exist\u0103 aspecte neclare, cum ar fi lipsa concretiz\u0103rii nivelurilor de securitate pe categorii, cazuri de amenzi pentru \u00eenc\u0103lc\u0103ri arat\u0103 c\u0103 este indispensabil s\u0103 se r\u0103spund\u0103 la aceste legi. Este crucial s\u0103 monitoriz\u0103m reglement\u0103rile legale din China \u0219i s\u0103 implement\u0103m m\u0103surile posibile \u00een acest moment.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Dac\u0103 desf\u0103\u0219ura\u021bi sau inten\u021biona\u021bi s\u0103 desf\u0103\u0219ura\u021bi afaceri \u00een China, v\u0103 recomand\u0103m s\u0103 consulta\u021bi un avocat familiarizat cu legisla\u021bia chinez\u0103.<!-- \/wp:paragraph --><!-- wp:heading --><\/p>\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Ghidul_masurilor_oferite_de_firma_noastra\"><\/span>Ghidul m\u0103surilor oferite de firma noastr\u0103<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><!-- \/wp:heading --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Firma de avocatur\u0103 Monolith este specializat\u0103 \u00een IT, av\u00e2nd o experien\u021b\u0103 bogat\u0103 \u00een domeniul internetului \u0219i al legii. \u00cen ultimii ani, afacerile globale s-au extins semnificativ, iar necesitatea verific\u0103rilor legale efectuate de exper\u021bi este \u00een cre\u0219tere. Firma noastr\u0103 ofer\u0103 solu\u021bii pentru problemele legale interna\u021bionale, inclusiv \u00een China, Statele Unite \u0219i \u021b\u0103rile Uniunii Europene.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>Domeniile de expertiz\u0103 ale firmei de avocatur\u0103 Monolith: <a title=\"Afaceri interna\u021bionale \u0219i drept interna\u021bional\" href=\"https:\/\/monolith.law\/global-jpn2fgn\" target=\"_blank\" rel=\"noopener\">Afaceri interna\u021bionale \u0219i drept interna\u021bional[ja]<\/a><\/p>\n<p><!-- \/wp:paragraph --><\/p>","protected":false},"excerpt":{"rendered":"<p>Legea securit\u0103\u021bii datelor din China este o lege \u00een domeniul datelor din China, care a fost implementat\u0103 \u00een septembrie 2021 (Reiwa 3). Aceasta se aplic\u0103 tuturor proces\u0103rilor de date care au loc \u00een inte [&hellip;]<\/p>\n","protected":false},"author":32,"featured_media":66042,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[18],"tags":[24,29],"acf":[],"_links":{"self":[{"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/posts\/65607"}],"collection":[{"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/comments?post=65607"}],"version-history":[{"count":2,"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/posts\/65607\/revisions"}],"predecessor-version":[{"id":66043,"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/posts\/65607\/revisions\/66043"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/media\/66042"}],"wp:attachment":[{"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/media?parent=65607"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/categories?post=65607"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/monolith.law\/ro\/wp-json\/wp\/v2\/tags?post=65607"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}