China News Service, Beijing, July 21. On July 21, the Cyberspace Administration of China made a decision on Didi Global Co., Ltd. to impose administrative penalties related to cybersecurity review in accordance with the law: Didi Global Co., Ltd. will be fined 8.026 billion yuan (RMB). , the same below) a fine of RMB 1 million for each of Didi Global Co., Ltd. Chairman and CEO Cheng Wei and President Liu Qing.
After investigation, there are 16 illegal facts in Didi Company, which can be summed up in 8 aspects.
One is to illegally collect 11.9639 million screenshot information from users’ mobile phone photo albums; the other is to excessively collect 8.323 billion pieces of user clipboard information and application list information; the third is to excessively collect 107 million pieces of passenger face recognition information and 53.5092 million pieces of age group information 16,335,600 pieces of professional information, 1,382,900 pieces of family relationship information, and 153 million pieces of “home” and “company” taxi address information; Fourth, excessive collection of passengers’ evaluation of chauffeur-driven services, when the app is running in the background, and when the mobile phone is connected to Jushi. 167 million pieces of precise location (longitude and latitude) information at the time of the device; fifth, 142,900 pieces of driver education information were collected excessively, and 57,802,600 pieces of driver ID number information were stored in plain text; 53.976 billion pieces of intent information, 1.538 billion pieces of resident city information, and 304 million pieces of non-local business/travel information; 7. Passengers frequently ask for irrelevant "telephone permissions" when using ride-hailing services; 8. Inaccurate and clear description of users 19 personal information processing purposes, including device information.
The Cyberspace Administration of China said that the previous cybersecurity review also found that Didi had data processing activities that seriously affected national security, as well as other violations of laws and regulations, such as refusal to fulfill the explicit requirements of the regulatory authorities, violation of laws and regulations, and malicious evasion of supervision.
Didi's illegal operations have brought serious security risks to the security of the country's key information infrastructure and data security.
It is not disclosed in accordance with the law because it involves national security.
The Cyberspace Administration of China stated that the cybersecurity and informatization departments will strengthen law enforcement in areas such as network security, data security, and personal information protection in accordance with the law. Disposal and punishment measures such as closing websites, removing shelves, and dealing with responsible persons, and cracking down on illegal acts that endanger national network security, data security, and infringe on citizens' personal information in accordance with the law.
(Finish)