Information SecurityChina
China Cybersecurity Law (CSL)
The Cybersecurity Law of the People's Republic of China (effective June 2017) is China's foundational cybersecurity legislation. It establishes requirements for network operators and critical information infrastructure (CII) operators including multi-level protection scheme (MLPS), personal information protection, CII security, data localization, and security review mechanisms.
Domains
Critical Information Infrastructure (CII)
Chapter IV — Network Information Security
Chapter III — Network Operation Security
Chapter II — Network Security Support and Promotion
Chapter V-VII — Monitoring, Response and Penalties
Compare China Cybersecurity Law (CSL)
China Cybersecurity Law (CSL) vs ISO 27001:2022View comparison →China Cybersecurity Law (CSL) vs SOC 2View comparison →China Cybersecurity Law (CSL) vs NIST CSF 2.0View comparison →China Cybersecurity Law (CSL) vs GDPRView comparison →China Cybersecurity Law (CSL) vs HIPAAView comparison →China Cybersecurity Law (CSL) vs PCI DSS 4.0View comparison →
China Cybersecurity Law (CSL) by Industry
China Cybersecurity Law (CSL) for Healthcare→China Cybersecurity Law (CSL) for Financial Services→China Cybersecurity Law (CSL) for Technology→China Cybersecurity Law (CSL) for Government→China Cybersecurity Law (CSL) for Manufacturing→China Cybersecurity Law (CSL) for Energy→China Cybersecurity Law (CSL) for Retail→China Cybersecurity Law (CSL) for Education→
China Cybersecurity Law (CSL) by Role
Frequently Asked Questions
What is China Cybersecurity Law?
The Cybersecurity Law of the People's Republic of China (effective June 2017) is China's foundational cybersecurity legislation. It establishes requirements for network operators and critical information infrastructure (CII) operators including multi-level protection scheme (MLPS), personal information protection, CII security, data localization, and security review mechanisms.
How many controls does China Cybersecurity Law have?
China Cybersecurity Law contains 23 controls organized across 5 domains.
Where does China Cybersecurity Law apply?
China Cybersecurity Law is applicable in China. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does China Cybersecurity Law map to?
China Cybersecurity Law has control-to-control mappings with 536 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with China Cybersecurity Law compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for China Cybersecurity Law (CSL)?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.