【特别鸣谢】本文获授权转载自公众号： 网络空间治理创新（CGi）。原文由张衠校对，叶雪枫编辑。非官方翻译，仅做研究使用。

本文内容承接《中华人民共和国网络安全法》（中英对照版全文-中）！

（第五章）

第五十六条  省级以上人民政府有关部门在履行网络安全监督管理职责中，发现网络存在较大安全风险或者发生安全事件的，可以按照规定的权限和程序对该网络的运营者的法定代表人或者主要负责人进行约谈。网络运营者应当按照要求采取措施，进行整改，消除隐患。

Article 56: Where provincial-level or higher People’s Governments’ relevant departments, in the process of carrying out their cybersecurity supervision and management duties, discover that relatively large security risks exist online or they discover security incidents, they may, according to the provided powers and procedures, conduct face-to-face talks with the statutory representative or main responsible persons of network operators. Network operators shall adopt measures, rectify the situation and eliminate danger according to requirements.

第五十七条  因网络安全事件，发生突发事件或者生产安全事故的，应当依照《中华人民共和国突发事件应对法》、《中华人民共和国安全生产法》等有关法律、行政法规的规定处置。

Article 57: Where sudden emergencies or production safety accidents occur as a result of cybersecurity incidents, it shall be handled in accordance with the provisions of relevant laws such as the “Emergency Response Law of the People’s Republic of China” and the “Production Safety Law of the People’s Republic of China”.

第五十八条 因维护国家安全和社会公共秩序，处置重大突发社会安全事件的需要，经国务院决定或者批准，可以在特定区域对网络通信采取限制等临时措施。

Article 58: To fulfill the need to protect national security and social public order, and respond to major social security incidents, with the approval or by the decision of the State Council, temporary measures regarding network communications in certain regions may be taken, such as restricting it.

第六章 法律责任

Chapter VI Legal Responsibility

第五十九条  网络运营者不履行本法第二十一条、第二十五条规定的网络安全保护义务的，由有关主管部门责令改正，给予警告；拒不改正或者导致危害网络安全等后果的，处一万元以上十万元以下罚款，对直接负责的主管人员处五千元以上五万元以下罚款。

关键信息基础设施的运营者不履行本法第三十三条、第三十四条、第三十六条、第三十八条规定的网络安全保护义务的，由有关主管部门责令改正，给予警告；拒不改正或者导致危害网络安全等后果的，处十万元以上一百万元以下罚款，对直接负责的主管人员处一万元以上十万元以下罚款。

Article 59: Where network operators do not perform cybersecurity protection duties provided for in Articles 21 and 25 of this Law, the competent departments will order corrections and give warnings; where corrections are refused or it leads to endangerment of cybersecurity or other such consequences, give a fine of between RMB 10,000 and 100,000; and fine the directly responsible management personnel between RMB 5,000 and 50,000.

Where critical information infrastructure operators do not perform cybersecurity protection duties provided for in Articles 33, 34, 36 and 38 of this Law, the competent departments will order corrections and give warnings; where corrections are refused or it leads to endangerment of cybersecurity or other such consequences, give a fine of between RMB 100,000 and 1,000,000; and fine the directly responsible management personnel between RMB 10,000 and 100,000.

第六十条  违反本法第二十二条第一款、第二款和第四十八条第一款规定，有下列行为之一的，由有关主管部门责令改正，给予警告；拒不改正或者导致危害网络安全等后果的，处五万元以上五十万元以下罚款，对直接负责的主管人员处一万元以上十万元以下罚款：

Article 60: Where, in violation of the provisions of Article 22 Paragraphs 1 and 2, or Article 48 Paragraph I, one of the following acts occurs, the relevant competent department orders corrections and gives warnings; where corrections are refused or it causes endangerment of cybersecurity or other consequences, a fine of between RMB 50,000 and 500,000 is given; and the persons who are directly in charge are fined between RMB 10,000 and 100,000.

（一）设置恶意程序的；

Installing malicious programs;

（二）对其产品、服务存在的安全缺陷、漏洞等风险未立即采取补救措施，或者未按照规定及时告知用户并向有关主管部门报告的；

Where risks such as security flaws or vulnerabilities exist in their products or services, but they do not immediately take remedial measures, or not timely notify users and report the matter to the relevant controlling department according to regulations;

（三）擅自终止为其产品、服务提供安全维护的。

Unauthorized termination for the security maintenance of its products and services.

第六十一条  网络运营者违反本法第二十四条第一款规定，未要求用户提供真实身份信息，或者对不提供真实身份信息的用户提供相关服务的，由有关主管部门责令改正；拒不改正或者情节严重的，处五万元以上五十万元以下罚款，并可以由有关主管部门责令暂停相关业务、停业整顿、关闭网站、吊销相关业务许可证或者吊销营业执照，对直接负责的主管人员和其他直接责任人员处一万元以上十万元以下罚款。

Article 61: Network operators violating the provisions of Article 24 Paragraph 1 of this Law in failing to require users to provide truthful identity information or providing relevant services to users who do not provide truthful identity information, are ordered to make corrections by the relevant competent department; where corrections are refused or the circumstances are serious, a fine of between RMB 50,000 and 500,000 is given, and the relevant competent department may order a temporary suspension of operations, a suspension of business for corrections, closing down of websites, revocation of relevant operations permits, or cancellation of business licenses; persons who are directly in charge and other directly responsible personnel are fined between RMB 10,000 and 100,000.

第六十二条  违反本法第二十六条规定，开展网络安全认证、检测、风险评估等活动，或者向社会发布系统漏洞、计算机病毒、网络攻击、网络侵入等网络安全信息的，由有关主管部门责令改正，给予警告；拒不改正或者情节严重的，处一万元以上十万元以下罚款，并可以由有关主管部门责令暂停相关业务、停业整顿、关闭网站、吊销相关业务许可证或者吊销营业执照，对直接负责的主管人员和其他直接责任人员处五千元以上五万元以下罚款。

Article 62: Those who, in violation of the provisions of Article 26 of this Law, conduct cybersecurity authentication, monitoring or risk assessment activities, or publish cybersecurity information concerning system leaks, computer viruses, cyber attacks, etc. to society, will be ordered to rectify matters and be given a warning by the relevant competent departments; where rectification is refused or where circumstances are grave, a fine of 10.000 Yuan to 100.000 Yuan is imposed, and the relevant controlling department is permitted to order the provisional cessation of business, cessation of business for rectification, closure of websites, cancellation of relevant business permits or revocation of the business licence; directly responsible persons in charge and other directly responsible persons are subject to a fine of 5.000 Yuan to 50.000 Yuan.

第六十三条  违反本法第二十七条规定，从事危害网络安全的活动，或者提供专门用于从事危害网络安全活动的程序、工具，或者为他人从事危害网络安全的活动提供技术支持、广告推广、支付结算等帮助，尚不构成犯罪的，由公安机关没收违法所得，处五日以下拘留，可以并处五万元以上五十万元以下罚款；情节较重的，处五日以上十五日以下拘留，可以并处十万元以上一百万元以下罚款。

单位有前款行为的，由公安机关没收违法所得，处十万元以上一百万元以下罚款，并对直接负责的主管人员和其他直接责任人员依照前款规定处罚。

违反本法第二十七条规定，受到治安管理处罚的人员，五年内不得从事网络安全管理和网络运营关键岗位的工作；受到刑事处罚的人员，终身不得从事网络安全管理和网络运营关键岗位的工作。

Article 63: Those who, in violation of the provisions of Article 27 of this Law, engage in activities harming cybersecurity, or provide programmes or tools for the special purpose of engaging in acts harming cybersecurity, or provide technological support, advertising and marketing, payment, accounting and other such forms of assistance to others engaging in acts harming in cybersecurity, where it does not yet constitute a crime, will have their unlawful income seized by public security bodies, and are subject to five days or less of detention, a fine of 10.000 to 100.000 Yuan may additionally be imposed; where circumstances are relatively grave, they are to be punished by five to fifteen days of detention, and may be additionally be subject to a fine of 50.000 Yuan to 500.000 Yuan.

Where work units commit acts as provided in the previous Paragraph, the public security body confiscates the unlawful income, imposes a fine of 50.000 to 500.000 Yuan, and imposes the directly responsible person in charge and other responsible persons according to the provisions of the previous Paragraph.

Persons receiving public order management punishments, who may for five years not engage in cybersecurity management work or occupy crucial positions in network operations, or criminal punishment for violations of the provisions of Article 27 of this Law, may not engage in cybersecurity management work or occupy crucial positions in network operations for the rest of their lives.

第六十四条  网络运营者、网络产品或者服务的提供者违反本法第二十二条第三款、第四十一条至第四十三条规定，侵害个人信息依法得到保护的权利的，由有关主管部门责令改正，可以根据情节单处或者并处警告、没收违法所得、处违法所得一倍以上十倍以下罚款，没有违法所得的，处一百万元以下罚款，对直接负责的主管人员和其他直接责任人员处一万元以上十万元以下罚款；情节严重的，并可以责令暂停相关业务、停业整顿、关闭网站、吊销相关业务许可证或者吊销营业执照。

违反本法第四十四条规定，窃取或者以其他非法方式获取、非法出售或者非法向他人提供个人信息，尚不构成犯罪的，由公安机关没收违法所得，并处违法所得一倍以上十倍以下罚款，没有违法所得的，处一百万元以下罚款。

Article 64: Network operators and network product or service providers violating the provisions of Article 22 Paragraph III and Articles 41 to 43 of this Law in infringing on the protections and rights of citizens’ personal information, are ordered to make corrections by the relevant competent department and may ,either independently or concurrently, be given warnings, confiscation of unlawful gains, and/or fined between 1 to 10 times the amount of unlawful gains, and where there are no unlawful gains, fined up to RMB 1,000,000, persons who are directly in charge and other directly responsible personnel are fined between RMB 10,000 and 100,000; where the circumstances are serious, a fine of between RMB 50,000 and 500,000 is given, and the relevant competent department may order a temporary suspension of operations, a suspension of business for corrections, closing down of websites, revocation of relevant operations permits, or cancellation of business licenses.

Where violations of the provisions of Article 44 of this Law in stealing or using other illegal means to obtain, illegally sell of illegally provide others with citizens’ personal information do not constitute a crime, the public security organs confiscate unlawful gains and give a fine of between 1 and 10 times the amount of unlawful gains, and where there are no unlawful gains, give a fine of up to RMB 1,000,000.

第六十五条  关键信息基础设施的运营者违反本法第三十五条规定，使用未经安全审查或者安全审查未通过的网络产品或者服务的，由有关主管部门责令停止使用，处采购金额一倍以上十倍以下罚款；对直接负责的主管人员和其他直接责任人员处一万元以上十万元以下罚款。

Article 65: Where critical information infrastructure operators violate Article 35 of this Law by using network products or services that have not had safety inspections or did not pass safety inspections, the relevant competent departments order the usage to stop, and give a fine in the amount of 1 to 10 times the purchase price; the persons who are directly in charge and other directly responsible personnel are fined between RMB 10,000 and 100,000.

第六十六条  关键信息基础设施的运营者违反本法第三十七条规定，在境外存储网络数据，或者向境外提供网络数据的，由有关主管部门责令改正，给予警告，没收违法所得，处五万元以上五十万元以下罚款，并可以责令暂停相关业务、停业整顿、关闭网站、吊销相关业务许可证或者吊销营业执照；对直接负责的主管人员和其他直接责任人员处一万元以上十万元以下罚款。

Article 66: Where critical information infrastructure operators violate the provisions of Article 37 of this Law by storing network data outside the mainland territory, or provide network data  outside of the mainland territory, the relevant competent department orders corrections, gives warnings, confiscates unlawful gains, gives fines between RMB 50,000 and 500,000, and may order a temporary suspension of operations, a suspension of business for corrections, closing down of websites, revocation of relevant operations permits, or cancellation of business licenses; persons who are directly in charge and other directly responsible personnel are fined between RMB 10,000 and 100,000.

第六十七条  违反本法第四十六条规定，设立用于实施违法犯罪活动的网站、通讯群组，或者利用网络发布涉及实施违法犯罪活动的信息，尚不构成犯罪的，由公安机关处五日以下拘留，可以并处一万元以上十万元以下罚款；情节较重的，处五日以上十五日以下拘留，可以并处五万元以上五十万元以下罚款。关闭用于实施违法犯罪活动的网站、通讯群组。

单位有前款行为的，由公安机关处十万元以上五十万元以下罚款，并对直接负责的主管人员和其他直接责任人员依照前款规定处罚。

Article 67: Those establishing websites or newsgroups for use in committing unlawful or criminal activities in violation of the provisions of Article 46 of this Law or for use in the online dissemination of information connected to committing unlawful or criminal activities, where it does not constitute a crime, will be detained by public security bodies for five days or less, and a fine of 10.000 Yuan or more but less than 100.000 Yuan may additionally be imposed; where circumstances are grave, they are detained for five days or more but less than fifteen days is imposed, and a fine of 50.000 Yuan or more but less than 500.000 Yuan may additionally be imposed.

Where a work unit acts as stipulated in the previous Paragraph, public security bodies impose a fine of 100.000 Yuan or more but less than 500.000 Yuan, and their directly responsible personnel in charge and other directly responsible personnel will be punished according to the provisions of the previous Paragraph.

第六十八条  网络运营者违反本法第四十七条规定，对法律、行政法规禁止发布或者传输的信息未停止传输、采取消除等处置措施、保存有关记录的，由有关主管部门责令改正，给予警告，没收违法所得；拒不改正或者情节严重的，处十万元以上五十万元以下罚款，并可以责令暂停相关业务、停业整顿、关闭网站、吊销相关业务许可证或者吊销营业执照，对直接负责的主管人员和其他直接责任人员处一万元以上十万元以下罚款。

电子信息发送服务提供者、应用软件下载服务提供者，不履行本法第四十八条第二款规定的安全管理义务的，依照前款规定处罚。

Article 68: Where network operators violate the provisions of Article 47 of this Law by failing to stop the transmission of information that laws of administrative regulations prohibit the publication or transmission of, failing to employ disposition measures such as deletion or failure to preserve relevant records, the relevant competent department orders corrections, gives warnings, and confiscates unlawful gains; where corrections are refused or circumstances are serious, fines between RMB 50,000 and 500,000 are given, and a temporary suspension of operations, a suspension of business for corrections, closing down of websites, revocation of relevant operations permits, or cancellation of business licenses may be ordered; persons who are directly in charge and other directly responsible personnel are fined between RMB 10.000 and 100.000.

Where electronic information services providers and application software download service providers, have do not performed their security management duties according to Article 48 Paragraph II of this Law, they will be punished according to the provisions of the previous paragraph.

第六十九条  网络运营者违反本法规定，有下列行为之一的，由有关主管部门责令改正；拒不改正或者情节严重的，处五万元以上五十万元以下罚款，对直接负责的主管人员和其他直接责任人员，处一万元以上十万元以下罚款：

Article 69: Network operators in violation of the provisions of this Law, in the following circumstances, shall correct their violation pursuant to orders of the relevant responsible department; if they refuse to correct or the circumstances are serious, they shall be fined not less than RMB 50,000 and not more than RMB 500,000; responsible personnel who are directly liable and other directly liable personnel shall be fined not less than RMB 10,000 and not more than RMB 100,000:

（一）不按照有关部门的要求对法律、行政法规禁止发布或者传输的信息，采取停止传输、消除等处置措施的；

Not adopting measures to cease the transmission of, or delete information of which the publication or dissemination is prohibited by laws and administrative regulations according to the requirements of relevant departments;

（二）拒绝、阻碍有关部门依法实施的监督检查的；

Refusal or obstruction of the competent departments in their lawful supervision and inspection;

（三）拒不向公安机关、国家安全机关提供技术支持和协助的。

Refusal to provide necessary support and assistance to public security bodies and national security bodies.

第七十条  发布或者传输本法第十二条第二款和其他法律、行政法规禁止发布或者传输的信息的，依照有关法律、行政法规的规定处罚。

Article 70: Those publishing or disseminating information of which the publication or dissemination is prohibited by the provisions of Article 12 Paragraph II of this Law, or other laws and administrative regulations are punished according to the provisions of relevant laws and administrative regulations.

第七十一条  有本法规定的违法行为的，依照有关法律、行政法规的规定记入信用档案，并予以公示。

Article 71: Acts committed in violation of the provisions of this Law, will be entered into credit files according to the provisions of relevant laws and regulations, and published.

第七十二条  国家机关政务网络的运营者不履行本法规定的网络安全保护义务的，由其上级机关或者有关机关责令改正；对直接负责的主管人员和其他直接责任人员依法给予处分。

Article 72: Where state organ government affairs network operators do not perform cybersecurity protection duties as prescribed by this Law, the organ at the level above or relevant department will order corrections; sanctions are given to the managers directly responsible and other directly responsible personnel.

第七十三条  网信部门和有关部门违反本法第三十条规定，将在履行网络安全保护职责中获取的信息用于其他用途的，对直接负责的主管人员和其他直接责任人员依法给予处分。

网信部门和有关部门的工作人员玩忽职守、滥用职权、徇私舞弊，尚不构成犯罪的，依法给予处分。

Article 73: Where Internet information departments and relevant departments violate the provisions of Article 30 of this Law, and use information obtained during their carrying out of cybersecurity protection duties for other purposes, the directly responsible person in charge and other directly responsible personnel will be punished according to the law.

Where work personnel of Internet information departments and relevant departments , neglect their duties, abuse their office, or distort the law for personal gain, without constituting a crime, administrative sanctions are given in accordance with law.

第七十四条  违反本法规定，给他人造成损害的，依法承担民事责任。

违反本法规定，构成违反治安管理行为的，依法给予治安管理处罚；构成犯罪的，依法追究刑事责任。

Article 74: Where violations of the provisions of this Law cause harm to others, civil liability is borne in accordance with the law.

Where violations of the provisions of this Law constitute an act violating public order management, public order management punishment will be imposed according to the law; where it constitutes a crime, criminal liability will be prosecuted according to the law.

第七十五条  境外的机构、组织、个人从事攻击、侵入、干扰、破坏等危害中华人民共和国的关键信息基础设施的活动，造成严重后果的，依法追究法律责任；国务院公安部门和有关部门并可以决定对该机构、组织、个人采取冻结财产或者其他必要的制裁措施。

Article 75: Where foreign institutions, organizations or individuals engage in attacks, intrusions, interference, destruction and other such acts harming the critical information infrastructure of the People’s Republic of China, resulting in grave consequences, legal liability will be prosecuted according to the law. The State Council public security departments and relevant departments may also decide to freeze the assets of said institutions, organizations or individuals, or take other necessary punitive measures.

第七章  附   则

Chapter VII: Supplementary Provisions

第七十六条  本法下列用语的含义：

Article 76: For this Law, the following terms have these meanings:

（一）网络，是指由计算机或者其他信息终端及相关设备组成的按照一定的规则和程序对信息进行收集、存储、传输、交换、处理的系统。

“Networks” refers to networks and systems comprised of computers or other information terminals and related equipment that follow certain rules and procedures for information gathering, storage, transmission, exchange and processing.

（二）网络安全，是指通过采取必要措施，防范对网络的攻击、侵入、干扰、破坏和非法使用以及意外事故，使网络处于稳定可靠运行的状态，以及保障网络数据的完整性、保密性、可用性的能力。

“Network safety” refers to taking necessary measures to prevent attacks, invasion, disturbance, undermining and unlawful use of networks, as well as unexpected accidents; causing the networks to be in a state of stable and reliable operation, as well as safeguarding the integrity, secrecy and usability of network information.

（三）网络运营者，是指网络的所有者、管理者和网络服务提供者。

“Network operators” refers to the owners and administrators of networks, as well as network service providers.

（四）网络数据，是指通过网络收集、存储、传输、处理和产生的各种电子数据。

“Network data” refers to all kinds of electronic data collected, stored, transmitted, processed, and produced through networks.

（五）个人信息，是指以电子或者其他方式记录的能够单独或者与其他信息结合识别自然人个人身份的各种信息，包括但不限于自然人的姓名、出生日期、身份证件号码、个人生物识别信息、住址、电话号码等。

“ Personal data”refers to all kinds of information, stored in electronic or other form, which individually or in combination with other information allows the identification of a natural person’s individual identity, including but not limited to their name, date of birth, identity card number, personally distinctive biological information, address, telephone number, etc.

第七十七条  存储、处理涉及国家秘密信息的网络的运行安全保护，除应当遵守本法外，还应当遵守保密法律、行政法规的规定。

Article 77: Operations security protection for storing and processing networks involving state secret information, in addition to following this Law, shall also uphold laws, administrative regulations and rules on classification.

第七十八条  军事网络的安全保护，由中央军事委员会另行规定。

Article 78: Military network and information security protection will be regulated separately by the Central Military Commission.

第七十九条  本法自2017年6月1日起施行。

Article 69: This Law shall take effect on June 1, 2017.

- END -