Guangdong Plans to Standardize Public Data Security Management

On February 7, 2022, Guangdong issued the "Guangdong Province Public Data Security Management Measures (Draft)" (“Measures”) to solicit public comments. The Measures focuses on public data security and security requirements for the entire life cycle of data collection, storage, and processing, further regulates data processing behavior.

1. Setting up the deletion mechanism and transparency of automated decision-making. The Measures explicit the deletion mechanism of digital unit, when the purpose of public data processing has been achieved or other deletion conditions are met, it should be deleted actively, otherwise, the data source department has the right to require it to delete it within a time limit. Where public data is used for automated decision-making, the transparency of the decision-making and the fairness and reasonableness of the results shall be guaranteed. Avoiding duplication and waste of public data resource construction.

2. Putting forward security requirements for the whole life cycle of public data processing. For the collection, use, storage, and provision of public data processing, necessary security control measures shall be taken, and the scope and purpose of each item shall be clarified.

3. Clarifying the support and guarantee of data security. Centralize and unify risk assessment, reporting, information sharing, monitoring and early warning mechanisms, and strengthen the acquisition, analysis, research, and early warning of data security risk information. Strengthen risk monitoring and assessment, investigate potential safety hazards. Formulating emergency response plans, etc.

In addition, the measures specifically mention accessible public services for the elderly and the disabled, and require public management and service agencies to provide intelligent public services, reflecting the humanistic care of data legislation.