Establishes safety and security requirements for generative AI services and service providers. Requires data filtering, intellectual property management, personal information protection, and secure model output with an emphasis on preventing AI systems from generating detrimental content.
Analysis summaries, actor details, and coverage mappings were LLM-classified and may contain errors.
This is a binding national standard with mandatory language throughout ('shall', 'must', '应'), explicit enforcement mechanisms, and regulatory oversight by government departments. It establishes legally enforceable requirements for generative AI service providers in China.
The document has good coverage of approximately 12-14 subdomains, with strong focus on toxic content (1.2), privacy compromise (2.1), security vulnerabilities (2.2), false information (3.1), disinformation/surveillance (4.1), cyberattacks/weapons (4.2), fraud/manipulation (4.3), overreliance (5.1), governance failure (6.5), goal misalignment (7.1), dangerous capabilities (7.2), and lack of robustness (7.3). Coverage is concentrated in content safety, security, misuse prevention, and AI system reliability domains.
The document governs generative AI services across multiple high-risk sectors with explicit coverage of healthcare (medical information services), finance (financial information services), critical infrastructure, education (services for minors), and psychological counseling. The Information sector is implicitly governed as the primary sector where generative AI service providers operate.
The document comprehensively covers the entire AI lifecycle with particular emphasis on data collection/processing, model building, verification/validation, deployment, and operation/monitoring stages. It addresses training data requirements, model development and safety, testing procedures, service deployment requirements, and ongoing monitoring obligations.
The document explicitly focuses on generative AI services and systems. It defines generative AI services as using generative AI technology to provide content generation to the public. The document does not explicitly mention frontier AI, general purpose AI, task-specific AI, foundation models, predictive AI, open-weight models, or specific compute thresholds.
National Standard of the People's Republic of China - Chinese central government standards body
The document is titled 'National Standard of the People's Republic of China' and is described as being issued by the Chinese central government, indicating it was proposed and drafted by government regulatory authorities.
Main oversight department (主管部门) - Chinese government regulatory authorities
The document references 'main oversight department' as the regulatory authority that will use this standard as a reference for oversight. The document also establishes mechanisms for service suspension and compliance monitoring.
Main oversight department (主管部门), service providers (self-monitoring), monitoring personnel within service provider organizations
The document establishes monitoring responsibilities for both government oversight departments and service providers themselves. Service providers must implement internal monitoring personnel and conduct ongoing evaluations.
Service providers of generative AI services, organizations or individuals providing generative AI services through interactive interfaces or programmable interfaces
The document explicitly targets 'service providers' who provide generative AI services to the public. These entities develop models, collect training data, and deploy AI systems, making them both AI developers and deployers.
14 subdomains (10 Good, 4 Minimal)