Reuters reported that a new Chinese law “would require firms exporting data to undergo an annual security assessment law….[and] would ban the export of any economic, technological or scientific data whose transfer would pose a threat to security or public interests. It would also require firms to obtain the consent of users before transmitting data abroad.” The April 11, 2017 Reuters report entitled “China draft cyber law mandates security assessment for outbound data”included these comments about the new law which is open for public comment until May 11:

Any business transferring data of over 1,000 gigabytes or affecting over 500,000 users will be assessed on its security measures and on the potential of the data to harm national interests, showed the draft from the Cyberspace Administration of China.

The law would ban the export of any economic, technological or scientific data whose transfer would pose a threat to security or public interests. It would also require firms to obtain the consent of users before transmitting data abroad.

The proposed law, which focuses on personal information security, comes just a day after state media reported government rewards of $1,500 to $73,000 for citizens who report suspected spies.

Skeptics have criticized the proposed cyber law “calling rules “vague” and claiming they unfairly target foreign companies with stringent requirements.”