China Cybersecurity Law Targets Troves of Data Collected by Electric Vehicles
BEIJING—On September 1, a new cybersecurity law in China takes effect that tightens rules on how data can be collected and shared with third parties in the automotive and other industries. The auto sector will be significantly impacted by the law, as its focus on data protection directly relates to the vast amount of geographic and personal data collection needed to power modern electric vehicles.
The new policy tightens the collection and management of two types of data: personal user information and “important data,” which includes city mapping, automobile and pedestrian traffic flows, electric charging infrastructure, as well as audiovisual data from cameras and sensors. The legislation also forbids the unapproved overseas transfer of data concerning Chinese road traffic and vehicle positioning, affecting both local companies and multinational firms such as Tesla. In late May, the California-based manufacturer announced that it would store all its data locally in a new data center in China.