🇨🇳 China · AI Risk Register

AI Risk Register for CN

A structured AI risk register delivered in two formats — Excel (.xlsx) for live editing inside your risk-management workflow, and Word (.docx) of the same register for board sign-off. Both contain the same sector-specific AI risks, 5×5 likelihood × impact scoring, mitigations per risk, named owners, and regulatory cross-references.

CN-specific obligations covered

The output is anchored on the regulations that apply to AI deployments in CN. The top frameworks cited:

  • Personal Information Protection Law (PIPL 2021)national_law · In force

    Personal information processors must establish a lawful basis for processing, obtain separate consent for sensitive personal information, conduct personal information protection impact assessments for high-risk processing, and provide opt-out mechanisms for automated decision-making affecting individual rights.

  • Interim Measures for the Management of Generative AI Services (CAC, 2023)administrative_regulation · In force

    Generative AI service providers must ensure training data is lawfully sourced, implement content filtering to prevent prohibited outputs, label AI-generated content, and obtain a CAC security assessment before launching public services.

  • Provisions on the Management of Algorithmic Recommendations (CAC, 2022)administrative_regulation · In force

    Algorithm recommendation service providers must disclose their use of algorithms to users, provide opt-out options for personalised recommendations, refrain from dynamic pricing that discriminates against existing customers, and prominently label algorithmically distributed content.

  • Provisions on the Administration of Deep Synthesis Internet Information Services (CAC, 2022)administrative_regulation · In force

    Deep synthesis service providers must implement real-name registration for users, label all synthetic content with a visible AI-generated marker, prohibit creation of content that impersonates real persons without consent, and retain synthetic content logs for sixty days.

How the AI Risk Register approaches this

You select jurisdiction, industry, and risk appetite. The tool produces a register pre-populated with 12 to 18 AI risks relevant to your sector — each already scored on a 5×5 matrix with suggested mitigations.

You receive the same register in both .xlsx and .docx formats: the spreadsheet for live editing and ongoing risk-committee work, and the Word document for paper sign-off and board appendices. Add organisation-specific risks, adjust scores, assign owners, and set review cadence — the starting point is a credible draft, not a blank template.

What you get

  • Arrives as a working spreadsheet — not a PDF — so it fits straight into your risk workflow.
  • Each risk carries the regulatory obligation it maps to, so reviewers can trace the "why" without re-researching.
  • Bias considerations drawn from published evidence relevant to your sector, surfacing failure modes that generic templates miss.
  • Designed to be signed off by a qualified risk owner — the output does not replace that review, it accelerates the drafting stage.

Ready to generate?

$29 · one-time — answer a 6-question intake (including jurisdiction = CN), and download your tailored document immediately.

Generate Risk Register

Also available framed for your sector → see industry-specific pages

AI-assisted drafting aid. The output references CN regulation but is not legal advice. Have a qualified legal, compliance, or regulatory professional review before implementation.