This standard stipulates the personal information compliance rules that App providers and SDK providers need to follow during the four stages of the design, development, operation and exit of the entire life cycle of App access to SDK. The first is to emphasize the necessity of SDK access and follow the minimization principle of not connecting unless necessary; secondly, the access process is reviewed and evaluated for compliance based on necessity. This standard applies to the full life cycle compliance guidelines for SDK access, and also applies to the review and evaluation of SDK access.
T/CSAC 006-2023 history
2023T/CSAC 006-2023 Personal information security guidelines for integrating software development kit to mobile internet applications