China’s cyber regulator has eased compliance burdens for sectors like tourism, shipping, and financial services, and has relaxed volume thresholds in some cases.
New standards introduced by TC260 aim to clarify the categorization of important data, providing a non-binding framework to guide regulators and companies.
Despite these changes, ambiguities around key definitions remain.