top of page

The first cybersecurity review in China: the Didi case

Photo Source: Andre M. Chang_ZUMA Wire via ANSA

Didi is a China’s big ride-hailing app with more than 1 billion users. On July 16, 2021 the Cyberspace Administration of China (CAC) and other six government departments jointly launched a cybersecurity review against Didi. The Didi case is the first cybersecurity review launched on a company in China and started few days after the listing of Didi on the New York Stock Exchange. According to Xinhua, “China’s probe into Didi is aimed at addressing national security risks arising from New York listing”.

Infact, Didi App is able to collect large number of user’s personal travel information and high-precision map information. Therefore the cybersecurity review is aimed at assessing whether these information are collected and used legally and in compliance with applicable chinese regulations.

It is interesting to point out that pending amendments to the Cybersecurity Review Measures (published for comments last July 10, 2021) requires domestic operators, who processes information of more than 1 million users and are willing to be listed overseas, to apply for a cybersecurity review in China.

According to current chinese regulations, a cybersecurity review should take normally up to 60 working days. However for Didi case, this term has been passed and we are still awaiting for the cybersecurity review results.

Avv. Lifang Dong and Avv. Chiara Civitelli

The content of this article does not constitute legal advice, but has an informative function. For personalized legal advice, contact the firm by e-mail or by phone +39 06 916505710. © Dong & Partners International Law Firm, All rights reserved

58 views0 comments


bottom of page