Caixin

China Proposes Strict Cybersecurity Rules for Banks, Insurers

Published: Jul. 13, 2026  1:18 p.m.  GMT+8
00:00
00:00/00:00
Listen to this article 1x

China’s top financial regulator has proposed sweeping cybersecurity rules for the banking and insurance sectors, which would make top executives accountable for severe network outages and data breaches.

The National Financial Regulatory Administration (NFRA) draft rules categorize cyber incidents into four tiers based on severity. For “extremely serious” breaches — such as major data leaks or multi-province outages lasting three hours or more — institutions would be required to take immediate remedial action, notify users and report to regulators every two hours until the issue is resolved.

loadingImg
You've accessed an article available only to subscribers
VIEW OPTIONS

Unlock exclusive discounts with a Caixin group subscription — ideal for teams and organizations.

Save an extra $50. Introductory offer for new readers. Subscribe now.

Share this article
Open WeChat and scan the QR code