Beijing (Gasgoo)- On September 15, China’s Ministry of Industry and Information Technology (MIIT) issued a notice regarding ICV data and internet security, strengthening regulation in the booming industry.
photo credit: SAIC Motor
As smart connected vehicles become an unstoppable trend globally, concerns have been raised regarding the security of personal data and general security. The notice has been designed to provide specific guidelines for companies in the sector.
According to the notice, automakers should improve access and permission management on all external ports such as USB ports and charging sockets to eliminate the risk of outside attack.
Automakers are required to provide strict internet security monitoring and warning systems in all vehicles, with data logs stored for at least six months per user.
In addition to strict monitoring, companies in the industry must develop and use data resources within reasonable limits, prevent invasion of users’ privacy, and always inform users when processing data through data-taking techniques. automated decision making. Companies are required to assess the data protection capability of partners and monitor the status of data sharing.
Notably, the notice also set specific guidelines on data outsourcing. Smart vehicle manufacturers and service platform operators are subject to assessment and reporting to local communications and information regulators before proceeding with any offshore transmission of data collected in China. Local authorities are also required to file and conduct safety assessments regarding such situations.