China’s Cyberspace Administration (CAC) issued new rules requiring companies that process minors’ personal information to conduct annual compliance audits and report the results to local CAC offices. Reports must separately detail data processing for those under 18 and under 14, with the first 2025 submissions that were due by January 31, 2026, through the designated system. While specific penalties aren’t yet defined, violations could trigger liability under China’s data protection laws.
