Chinese Regulators Send Teams to Didi for Cybersecurity Review

By Reuters
July 16, 2021 Updated: July 16, 2021

BEIJING—The Cyberspace Administration of China (CAC) said on July 16 that officials from at least seven departments sent  teams to conduct an on-site cybersecurity review of ride-hailing giant Didi Global Inc.

The regulators include the CAC, Ministry of Public Security, Ministry of State Security, Ministry of Transport, Ministry of Natural Resources, State Taxation Administration, and State Administration for Market Regulation, according to the statement.

CAC did not offer any other details in its statement, but the involvement of several government agencies indicates heavier regulatory pressure on the nine-year-old company.

China is in the process of revamping its policy towards privacy and data security. It is drafting a Personal Information Protection Law, which calls for tech platforms to impose stricter measures that ensure secure storage of user data.

In September, China is set to implement its Data Security Law, which requires companies that process “critical data” to conduct risk assessments and submit reports. It also calls on organizations that process data affecting China’s national security to submit to annual reviews.

CAC launched the data-related cybersecurity investigation into Didi just two days after it raised $4.4 billion from its New York initial public offering, citing the need to protect national security and the public interest. Regulators also ordered Didi to remove its apps in China which the company said might hurt its revenue.

Didi, which currently has a market capitalization of $60 billion, did not immediately respond to a request for comment on CAC’s new statement. It earlier said it stores all China user and road data in China.

By Yingzhi Yang, Yilei Sun and Tony Munroe