Guangxi Guilin investigates and dealt with many obligations that do not perform network security protection

In order to strengthen the attack on the violations of citizens' personal information, eliminate the breeding of the soil of cyber crimes, and comprehensively enhance the people's online security, gain, and happiness, the network security defense detachment of the Guilin Public Security Bureau of Guangxi launched a crackdown on "invading the public" illegal acts Special operations, severely investigated and dealt with illegal acts of network operators who do not fulfill the obligations of cyber security protection.

E -commerce shopping app instance

In March of this year, during the network security department, a network security inspection was found to be in a network security inspection in Guangxi. The company used the "A Youpin APP" to provide users with shopping preferential information.

The APP obtained 8 permissions such as accurate positioning, storage space, telephone, camera, and microphone without the user's explicit explanation, and collected relevant user information.

The police found that the APP client interacts with the server on the server and found that the APP has collected more than 20,000 people's ID information and personal information such as mobile phone numbers, IMEI, etc. deal with.

The network security department warned it in accordance with the "Cyber ​​Security Law of the People's Republic of China" and ordered the administrative penalty of it and ordered to rectify the time limit.

APP development company example

In April this year, the network security department went to a network limited liability company in Guilin to conduct a network security inspection:

The company's APP developed for a unit in Lipu City has obtained 7 permissions such as accurate positioning, storage space, telephone, camera, and communication records without obtaining the user's consent, and collects more than 40,000 user registration information. And data is not stored by encrypted storage.

In response to the illegal act of collecting personal information of citizens in the network company and the failure of network security obligations, the online security department warned it to the administrative penalty of the Cyber ​​Security Law of the People's Republic of China and ordered the rectification within a time limit.

Example

In April of this year, the network security department went to a network technology Co., Ltd. to conduct a network security inspection in Guilin:

The company developed and used a pro -wedding APP, collecting more than 130,000 user registration information, and stored more than 50,000 pieces of user vehicle registration information and driver information, and the data was not stored by the encryption. The person in charge of the network security is not clear, the network security level protection system is not implemented, and the relevant network security protection technical measures are not adopted.

In response to the illegal act of collecting personal information of citizens in the network company and the failure of network security obligations, the online security department warned it to the administrative penalty of the Cyber ​​Security Law of the People's Republic of China and ordered the rectification within a time limit.

Casual and Entertainment APP instance

In April of this year, the network security department went to a network technology Co., Ltd. to conduct a network security inspection in Guilin:

The company's development and use of an audio APP has obtained 8 permissions such as mobile phone location information, storage space, recording, phone, camera, microphone without obtaining the user's consent. For the remaining storage, the company has not implemented the responsibility of cyber security, the person in charge of the network security is not clear, the network security level protection system is not clearly implemented, the network security level protection system is not implemented, and the relevant network security protection technical measures are not adopted.

In response to the illegal act of collecting personal information of citizens in the network company and the failure of network security obligations, the online security department warned it to the administrative penalty of the Cyber ​​Security Law of the People's Republic of China and ordered the rectification within a time limit.

Internet police reminder

The collection, use, and preservation of personal information of citizens must meet the requirements of relevant laws and regulations such as the "Cyber ​​Security Law".

In violation of relevant regulations, administrative penalties such as warning, confiscation of illegal income, and fines will be punished. If the circumstances are serious, it will be punished by suspension of related businesses, suspending business, closing the website, revoking licenses or business licenses.

Citizens' personal information is protected by law, and any illegal criminal acts that violate the personal information of citizens will be sanctioned by law.

Relevant units should strengthen the management of internal personnel, prevent citizen information from leaking from the inside, and strengthen the protection of network security at the same time, and prevent hackers from invasion of information and cause information leakage!

The public security organs will continue to vigorously strengthen network ecological governance, crack down and deter "invade the public" illegal acts, and fully maintain the security of network space.

Picture | Network Screenshot

Material | Guangxi Net Police

Source: Network Security Bureau of the Ministry of Public Security

- END -