Directive on Risk Management of Information Technology in Commercial Banks

The China Banking Regulatory Commission issues the Directive on Risk Management of Information Technology in Commercial Banks, providing that commercial banks shall follow relevant IPR legislations to draft own IPR protection policies concerning IT and ensure all staff fully understand and comply with the policies.  Polices shall include purchase and use of licensed software and hardware products, no performance of infringement and piracy, use of effective measures to secure own IPRs.

The Directive consists of 76 articles in 11 chapters, which are general provisions, IT governance, IT risk management, IT security, IT system development, test and maintenance, IT operation, business consistent management, outsourcing, internal audit, external audit and annex.

(China IP News)

2013-07-17