The inaugural major revision of the Cybersecurity Law of the People’s Republic of China (CSL, 中华人民共和国网络安全法), enacted in 2016 and effective since 2017, was formalized with the adoption of the 2025 Amendment by the Standing Committee of the National People’s Congress (NPCSC, 全国人民代表大会常务委员会) on October 28, 2025, entering into force on January 1, 2026. This Amendment represents a significant intensification of the regulatory framework, substantially enhancing enforcement powers, codifying stricter legal liabilities for enterprises and responsible personnel, delineating the gradations of regulatory violations, and imposing more rigorous compliance mandates on operators of Critical Information Infrastructure (CII, 关键信息基础设施). The revisions underscore the government’s strategic objective to foster the development of the artificial intelligence (AI) sector while concurrently fortifying national cybersecurity postures.
Our new article from Daniel Albrecht you can find here:
https://www.degruyterbrill.com/journal/key/cri/html
https://online.otto-schmidt.de/db/dokument?id=cri.2026.00.o.s006.01.a