2026年跨境保密協(xié)議（中英文版）協(xié)議編號（AgreementNo.）：________________________本2026年跨境保密協(xié)議（以下簡稱“本協(xié)議”）由以下雙方（以下統(tǒng)稱“雙方”）于____年____月____日（以下簡稱“生效日”）自愿簽署，其中一方為中國境內(nèi)法律主體（以下簡稱“境內(nèi)方”），另一方為中國境外法律主體（以下簡稱“境外方”）。鑒于雙方擬開展跨境合作（包括但不限于跨境貿(mào)易、技術合作、服務外包、投資并購等），在合作過程中需相互披露或獲知對方具有保密價值的信息，且該等信息的傳輸、處理、存儲涉及跨境場景，為規(guī)范雙方保密行為，防范信息泄露風險，保障雙方合法權益，依據(jù)《中華人民共和國民法典》《中華人民共和國網(wǎng)絡安全法》《中華人民共和國數(shù)據(jù)安全法》《中華人民共和國個人信息保護法》《聯(lián)合國國際貨物銷售合同公約》及雙方所在國家/地區(qū)相關法律法規(guī)，經(jīng)友好協(xié)商，達成如下協(xié)議，以資共同信守。This2026Cross-BorderConfidentialityAgreement(hereinafterreferredtoas"thisAgreement")isvoluntarilysignedbythefollowingtwoparties(hereinaftercollectivelyreferredtoasthe"Parties")on____(hereinafterreferredtoasthe"EffectiveDate"),oneofwhichisalegalentitywithinthePeople'sRepublicofChina(hereinafterreferredtoasthe"DomesticParty")andtheotherisalegalentityoutsidethePeople'sRepublicofChina(hereinafterreferredtoasthe"OverseasParty").WhereasthePartiesintendtocarryoutcross-bordercooperation(includingbutnotlimitedtocross-bordertrade,technicalcooperation,serviceoutsourcing,investmentandmergerandacquisition,etc.),andneedtodiscloseorobtaininformationofconfidentialvaluefromeachotherinthecourseofcooperation,andthetransmission,processingandstorageofsuchinformationinvolvecross-borderscenarios,thisAgreementisconcludedthroughfriendlynegotiationforthepurposeofregulatingtheconfidentialitybehaviorofbothParties,preventinginformationleakagerisks,andsafeguardingthelegitimaterightsandinterestsofbothParties.ThisAgreementshallbegovernedbytheCivilCodeofthePeople'sRepublicofChina,theCybersecurityLawofthePeople'sRepublicofChina,theDataSecurityLawofthePeople'sRepublicofChina,thePersonalInformationProtectionLawofthePeople'sRepublicofChina,theUnitedNationsConventiononContractsfortheInternationalSaleofGoodsandtherelevantlawsandregulationsofthecountries/regionswherebothPartiesarelocated.第一條締約方信息（Article1:InformationofContractingParties）1.1境內(nèi)方（DomesticParty）中文全稱（FullChineseName）：________________________英文全稱（FullEnglishName）：________________________統(tǒng)一社會信用代碼（UnifiedSocialCreditCode）：________________________注冊地址（RegisteredAddress）：________________________跨境業(yè)務通訊地址（Cross-BorderBusinessMailingAddress）：________________________法定代表人/負責人（LegalRepresentative/Person-in-Charge）：________________________跨境業(yè)務授權聯(lián)系人（AuthorizedContactforCross-BorderBusiness）：________________________聯(lián)系電話（ContactPhone）：________________________跨境業(yè)務專用電子郵箱（SpecialE-mailforCross-BorderBusiness）：________________________信息安全負責人（InformationSecurityOfficer）：________________________1.2境外方（OverseasParty）英文全稱（FullEnglishName）：________________________中文譯名（ChineseTranslation）：________________________所在國家/地區(qū)注冊號（RegistrationNo.inCountry/RegionofIncorporation）：________________________注冊地址（RegisteredAddress）：________________________對華業(yè)務通訊地址（MailingAddressforChinaBusiness）：________________________法定代表人/授權代表（LegalRepresentative/AuthorizedRepresentative）：________________________對華跨境業(yè)務授權聯(lián)系人（AuthorizedContactforChinaCross-BorderBusiness）：________________________聯(lián)系電話（ContactPhone）：________________________對華跨境業(yè)務專用電子郵箱（SpecialE-mailforChinaCross-BorderBusiness）：________________________信息安全負責人（InformationSecurityOfficer）：________________________1.3聲明與保證（RepresentationsandWarranties）：雙方均為依法成立并有效存續(xù)的法律主體，具備簽署和履行本協(xié)議的完全民事權利能力與民事行為能力；其跨境業(yè)務授權聯(lián)系人、信息安全負責人已獲得充分有效的書面授權，有權代表其處理本協(xié)議項下跨境保密相關全部事宜；雙方均已充分了解各自所在國家/地區(qū)及對方所在國家/地區(qū)關于跨境信息傳輸、保密及數(shù)據(jù)安全的相關法律法規(guī)，保證其履行本協(xié)議的行為符合所有適用法律規(guī)定；接收方保證具備跨境信息處理的合法資質、技術能力及安全保障體系，能夠防范跨境傳輸過程中的信息泄露、丟失、篡改等風險；雙方簽署本協(xié)議系真實意思表示，無欺詐、脅迫、重大誤解等情形；本協(xié)議自雙方簽字蓋章（自然人簽字即可）之日起生效，對雙方具有同等法律約束力。EachPartyrepresentsandwarrantsthatitisalegallyestablishedandvalidlyexistinglegalentitywithfullcivilrightscapacityandcivilconductcapacitytosignandperformthisAgreement;itsauthorizedcontactforcross-borderbusinessandinformationsecurityofficerhaveobtainedsufficientandeffectivewrittenauthorizationtoactonitsbehalfinhandlingallmattersrelatedtocross-borderconfidentialityunderthisAgreement;bothPartieshavefullyunderstoodtherelevantlawsandregulationsoncross-borderinformationtransmission,confidentialityanddatasecurityintheirrespectivecountries/regionsandtheotherParty'scountry/region,andguaranteethattheirperformanceofthisAgreementcomplieswithallapplicablelegalprovisions;theReceivingPartywarrantsthatithasthelegalqualifications,technicalcapabilitiesandsecurityassurancesystemforcross-borderinformationprocessing,andcanpreventriskssuchasinformationleakage,lossandtamperingduringcross-bordertransmission;thesigningofthisAgreementbybothPartiesisatrueexpressionofintentwithoutfraud,coercion,grossmisunderstandingorothercircumstances;thisAgreementshalltakeeffectonthedateofsignatureandsealbybothParties(naturalpersonsonlyneedtosign)andshallhaveequallegalbindingforceonbothParties.第二條核心術語定義（Article2:DefinitionofCoreTerms）2.1保密信息（ConfidentialInformation）指生效日后，披露方（DisclosingParty）通過書面、電子傳輸、口頭告知、實物展示、技術交底、跨境數(shù)據(jù)交互等任何形式向接收方（ReceivingParty）提供或披露，或接收方在跨境合作過程中自行獲知的，未通過合法途徑進入公共領域，且對披露方具有商業(yè)價值、技術價值、戰(zhàn)略價值或其他保密必要性的全部信息。包括但不限于：跨境業(yè)務計劃、客戶信息（含跨境客戶名單、聯(lián)系方式、交易記錄）、財務數(shù)據(jù)（含跨境結算信息、稅務資料）、技術方案（含核心算法、專利技術、技術秘密）、經(jīng)營策略（含跨境定價策略、市場布局、合作談判方案）、合規(guī)文件（含跨境資質證明、審批文件）、未公開交易信息及其他經(jīng)披露方明確標注“保密”或口頭告知需保密的信息。無論披露方是否采取保密標識，符合本條定義的信息均屬保密信息。ReferstoallinformationthattheDisclosingPartyprovidesordisclosestotheReceivingPartyinanyformsuchaswrittendocuments,electronictransmission,oralnotification,physicaldisplay,technicaldisclosure,cross-borderdatainteraction,etc.,orthattheReceivingPartylearnsonitsowninthecourseofcross-bordercooperationaftertheEffectiveDate,whichhasnotenteredthepublicdomainthroughlegalchannelsandhascommercialvalue,technicalvalue,strategicvalueorotherconfidentialitynecessityfortheDisclosingParty.Itincludesbutisnotlimitedto:cross-borderbusinessplans,customerinformation(includingcross-bordercustomerlists,contactinformation,transactionrecords),financialdata(includingcross-bordersettlementinformation,taxdocuments),technicalschemes(includingcorealgorithms,patentedtechnologies,technicalsecrets),businessstrategies(includingcross-borderpricingstrategies,marketlayout,cooperationnegotiationplans),compliancedocuments(includingcross-borderqualificationcertificates,approvaldocuments),undisclosedtransactioninformationandotherinformationclearlymarkedas"Confidential"bytheDisclosingPartyororallyinformedtobeconfidential.RegardlessofwhethertheDisclosingPartyhasadoptedaconfidentialitymark,theinformationconformingtothedefinitionofthisArticleshallbedeemedasConfidentialInformation.2.2跨境信息傳輸（Cross-BorderInformationTransmission）指保密信息從一方所在國家/地區(qū)傳輸至另一方所在國家/地區(qū)，或在雙方所在國家/地區(qū)以外的第三國/地區(qū)進行傳輸、存儲、處理的行為，包括但不限于通過跨境網(wǎng)絡傳輸、跨境快遞、跨境存儲設備拷貝、跨境會議傳輸?shù)刃问竭M行的信息流轉。ReferstotheactoftransmittingConfidentialInformationfromthecountry/regionwhereonePartyislocatedtothecountry/regionwheretheotherPartyislocated,ortransmitting,storingandprocessingitinathirdcountry/regionoutsidethecountries/regionswherebothPartiesarelocated,includingbutnotlimitedtoinformationcirculationthroughcross-bordernetworktransmission,cross-borderexpressdelivery,cross-borderstoragedevicecopying,cross-bordermeetingtransmissionandotherforms.2.3披露方與接收方（DisclosingPartyandReceivingParty）披露方指主動向對方提供或披露保密信息的一方；接收方指接收或獲知披露方保密信息的一方。本協(xié)議項下，雙方互為披露方與接收方，一方作為披露方時，另一方即為本協(xié)議約定的接收方，反之亦然。TheDisclosingPartyreferstothePartythattakestheinitiativetoprovideordiscloseConfidentialInformationtotheotherParty;theReceivingPartyreferstothePartythatreceivesorobtainstheConfidentialInformationoftheDisclosingParty.UnderthisAgreement,bothPartiesarebothDisclosingPartyandReceivingParty.WhenonePartyactsastheDisclosingParty,theotherPartyshallbetheReceivingPartyasagreedinthisAgreement,andviceversa.2.4除外情形（ExclusionScenarios）下列信息及行為不受本協(xié)議約束：（1）在披露或跨境傳輸前已通過合法途徑進入公共領域且可自由獲取的信息；（2）接收方未接觸披露方任何信息的情況下，通過獨立研發(fā)、合法受讓、公開渠道查詢等方式自行獲得的信息及權利；（3）依據(jù)雙方所在國家/地區(qū)法律法規(guī)、司法裁判、仲裁裁決或政府監(jiān)管部門（含跨境監(jiān)管機構）要求必須披露或跨境傳輸?shù)男畔ⅲ医邮辗揭咽孪葧嫱ㄖ斗剑ǚ山雇ㄖ某猓┎⑴浜喜扇p損措施；（4）披露方書面聲明無需保密或不受跨境傳輸限制的信息及情形；（5）接收方從有權披露且未施加保密義務的第三方處合法獲取的信息；（6）履行法定職責或跨境業(yè)務必需且已履行全部合規(guī)程序的信息處理及跨境傳輸行為。ThefollowinginformationandactsarenotboundbythisAgreement:(1)Informationthathasenteredthepublicdomainthroughlegalchannelsandisfreelyaccessiblebeforedisclosureorcross-bordertransmission;(2)InformationandrightsindependentlyobtainedbytheReceivingPartythroughindependentresearchanddevelopment,legalassignment,publicchannelinquiry,etc.,withoutcontactinganyinformationoftheDisclosingParty;(3)Informationthatmustbedisclosedorcross-bordertransmittedinaccordancewiththelawsandregulations,judicialjudgments,arbitralawardsortherequirementsofgovernmentregulatoryauthorities(includingcross-borderregulatoryauthorities)ofthecountries/regionswherebothPartiesarelocated,andtheReceivingPartyhasnotifiedtheDisclosingPartyinwritinginadvance(exceptwhereprohibitedbylaw)andcooperatedintakinglossreductionmeasures;(4)InformationandscenariosthattheDisclosingPartyhasstatedinwritingthatnoconfidentialityisrequiredornocross-bordertransmissionrestrictionsapply;(5)InformationlegallyobtainedbytheReceivingPartyfromathirdpartywiththerighttodiscloseandwithoutimposingconfidentialityobligations;(6)Informationprocessingandcross-bordertransmissionactsthatarenecessaryforperforminglegaldutiesorcross-borderbusinessandhavegonethroughallcomplianceprocedures.第三條跨境保密核心義務（Article3:CoreObligationsofCross-BorderConfidentiality）3.1披露方義務（ObligationsoftheDisclosingParty）（1）分類標識義務：按敏感程度將保密信息分為核心保密信息、重要保密信息、一般保密信息三類，明確標注保密標識、保密期限及跨境傳輸限制要求，提供時書面告知接收方信息敏感等級、跨境傳輸合規(guī)要求、泄露風險及防范要點；（2）合規(guī)披露義務：僅根據(jù)跨境合作必需披露保密信息，不得超出必要范圍；涉及跨境傳輸?shù)?，應提前告知接收方信息跨境傳輸所需履行的合?guī)程序，配合接收方完成相關審批備案手續(xù)；（3）內(nèi)部管控義務：對內(nèi)部接觸跨境保密信息的人員進行專項培訓（含跨境保密法規(guī)、安全防護技能），明確崗位職責與問責機制，采取加密存儲、權限管控、跨境傳輸日志記錄等措施防范內(nèi)部泄露；（4）監(jiān)督提醒義務：有權定期或不定期檢查接收方履約情況，發(fā)現(xiàn)跨境傳輸風險、信息泄露隱患或已發(fā)生泄露的，立即書面通知接收方并配合采取補救措施，必要時協(xié)助接收方應對跨境監(jiān)管調查。(1)ClassificationandIdentificationObligation:ClassifyConfidentialInformationintocoreConfidentialInformation,importantConfidentialInformationandgeneralConfidentialInformationaccordingtosensitivity,clearlymarktheconfidentialitylabel,confidentialityperiodandcross-bordertransmissionrestrictionrequirements,andinformtheReceivingPartyinwritingoftheinformationsensitivitylevel,cross-bordertransmissioncompliancerequirements,leakagerisksandpreventionpointswhenprovidingit;(2)ComplianceDisclosureObligation:DiscloseConfidentialInformationonlyasnecessaryforcross-bordercooperation,andshallnotexceedthenecessaryscope;ifcross-bordertransmissionisinvolved,shallinformtheReceivingPartyinadvanceofthecomplianceproceduresrequiredforcross-bordertransmissionofinformationandcooperatewiththeReceivingPartytocompleterelevantapprovalandfilingprocedures;(3)InternalControlObligation:Conductspecialtraining(includingcross-borderconfidentialitylawsandregulations,securityprotectionskills)forinternalpersonnelwhoaccesscross-borderConfidentialInformation,clarifypostresponsibilitiesandaccountabilitymechanisms,andtakemeasuressuchasencryptedstorage,authoritycontrol,cross-bordertransmissionlogrecordstopreventinternalleakage;(4)SupervisionandReminderObligation:HastherighttoconductregularorirregularinspectionsontheReceivingParty'sperformanceofobligations,andimmediatelynotifytheReceivingPartyinwritingandcooperateintakingremedialmeasuresifcross-bordertransmissionrisks,informationleakagehiddendangersorleaksarefound,andassisttheReceivingPartyinrespondingtocross-borderregulatoryinvestigationswhennecessary.3.2接收方義務（ObligationsoftheReceivingParty）接收方應采取不低于保護自身同類跨境信息的嚴格措施，履行以下義務，且該等義務不適用于本協(xié)議第二條約定的除外情形：（1）人員管控義務：僅允許經(jīng)授權的必要人員接觸保密信息，建立跨境信息接觸人員登記臺賬及接觸記錄，對授權人員進行跨境保密法規(guī)、安全防護知識培訓并要求簽署跨境保密承諾書，嚴禁未經(jīng)授權人員接觸、獲取保密信息；（2）存儲與跨境傳輸防護義務：書面保密信息采取上鎖存放、專人保管、借閱登記、到期銷毀等措施；電子保密信息采取端到端加密存儲、嚴格訪問權限設置（含多因素認證）、定期安全檢測與漏洞修復、跨境傳輸全程加密等措施；跨境傳輸前必須完成雙方所在國家/地區(qū)要求的合規(guī)審批、備案手續(xù)，選擇安全可靠的跨境傳輸渠道，留存跨境傳輸日志（留存期限不低于保密期限）；（3）使用限制義務：嚴格按本協(xié)議約定及披露方書面要求的范圍和用途使用保密信息，不得用于跨境合作無關的目的，不得對保密信息進行反向工程、解密、拆解等非法獲取核心內(nèi)容的行為（經(jīng)披露方書面授權除外）；（4）第三方管控義務：未經(jīng)披露方書面同意，不得向任何第三方（包括其關聯(lián)方、合作伙伴）披露、傳輸、復制保密信息，不得委托第三方進行跨境信息處理；確需委托的，必須審核第三方的合法資質、跨境信息安全保障能力，與第三方簽署保密協(xié)議并全程監(jiān)督其履約情況，第三方違約泄露或違規(guī)傳輸保密信息的，接收方承擔連帶責任；（5）歸還與銷毀義務：跨境合作終止、收到披露方收回通知或不再需要使用保密信息時，立即停止使用該等信息，停止所有相關跨境傳輸行為，并在5個工作日內(nèi)歸還全部保密信息載體（含原件、復印件、存儲介質），或按披露方要求徹底銷毀全部保密信息（含備份、緩存、跨境傳輸留存數(shù)據(jù)），銷毀后向披露方提供書面銷毀證明；（6）風險處置義務：發(fā)現(xiàn)保密信息泄露、丟失、違規(guī)跨境傳輸?shù)惹闆r時，立即采取措施防止風險擴大（包括停止跨境傳輸、封鎖相關信息、通知相關方防范），并在24小時內(nèi)書面通知披露方，詳細說明事件情況、已采取的應急措施及后續(xù)處置方案，積極配合披露方及雙方所在國家/地區(qū)監(jiān)管部門的調查、追責工作；（7）合規(guī)配合義務：配合披露方履行跨境保密相關的合規(guī)義務，配合監(jiān)管部門的跨境信息安全檢查、調查工作，及時提供相關材料、說明情況。TheReceivingPartyshalltakestrictmeasuresnotlowerthanthoseforprotectingitsownsimilarcross-borderinformationandperformthefollowingobligations,whichshallnotapplytotheexclusionscenariosagreedinArticle2ofthisAgreement:(1)PersonnelControlObligation:OnlyallowauthorizednecessarypersonneltoaccessConfidentialInformation,establisharegistrationledgerandaccessrecordsofpersonnelaccessingcross-borderinformation,trainauthorizedpersonneloncross-borderconfidentialitylawsandregulationsandsecurityprotectionknowledgeandrequirethemtosigncross-borderconfidentialitycommitments,andstrictlyprohibitunauthorizedpersonnelfromaccessingorobtainingConfidentialInformation;(2)StorageandCross-BorderTransmissionProtectionObligation:Takemeasuressuchaslockedstorage,specialpersoncustody,borrowingregistrationandexpirationdestructionforwrittenConfidentialInformation;takemeasuressuchasend-to-endencryptedstorage,strictaccesspermissionsettings(includingmulti-factorauthentication),regularsecuritydetectionandvulnerabilityrepair,andfull-processencryptionforcross-bordertransmissionforelectronicConfidentialInformation;beforecross-bordertransmission,itmustcompletethecomplianceapprovalandfilingproceduresrequiredbythecountries/regionswherebothPartiesarelocated,selectasafeandreliablecross-bordertransmissionchannel,andretaincross-bordertransmissionlogs(retentionperiodnotlessthantheconfidentialityperiod);(3)UseRestrictionObligation:StrictlyuseConfidentialInformationwithinthescopeandpurposeagreedinthisAgreementandwrittenrequirementsoftheDisclosingParty,shallnotuseitforpurposesunrelatedtocross-bordercooperation,andshallnotconductactssuchasreverseengineering,decryption,disassemblyofConfidentialInformationtoillegallyobtaincorecontent(exceptwithwrittenauthorizationfromtheDisclosingParty);(4)Third-PartyControlObligation:WithoutthewrittenconsentoftheDisclosingParty,shallnotdisclose,transmitorcopyConfidentialInformationtoanythirdparty(includingitsaffiliatesandpartners),andshallnotentrustthirdpartiestoconductcross-borderinformationprocessing;ifitisreallynecessarytoentrust,mustreviewthethirdparty'slegalqualificationsandcross-borderinformationsecurityassurancecapabilities,signaconfidentialityagreementwiththethirdpartyandsuperviseitsperformanceofobligationsinthewholeprocess,andtheReceivingPartyshallbejointlyandseverallyliableifthethirdpartybreachestheagreementandleaksorillegallytransmitsConfidentialInformation;(5)ReturnandDestructionObligation:Whenthecross-bordercooperationisterminated,arecallnoticefromtheDisclosingPartyisreceivedoritisnolongernecessarytouseConfidentialInformation,immediatelystopusingsuchinformation,stopallrelevantcross-bordertransmissionacts,andreturnallConfidentialInformationcarriers(includingoriginals,copies,storagemedia)within5workingdays,orcompletelydestroyallConfidentialInformation(includingbackups,caches,cross-bordertransmissionretaineddata)asrequiredbytheDisclosingParty,andprovideawrittendestructioncertificatetotheDisclosingPartyafterdestruction;(6)RiskDisposalObligation:IfConfidentialInformationleakage,loss,illegalcross-bordertransmissionandothersituationsarefound,immediatelytakemeasurestopreventriskexpansion(includingstoppingcross-bordertransmission,blockingrelevantinformation,notifyingrelevantpartiestoprevent),andnotifytheDisclosingPartyinwritingwithin24hours,detailingtheincidentsituation,theemergencymeasurestakenandthesubsequentdisposalplan,andactivelycooperatewiththeDisclosingPartyandtheregulatoryauthoritiesofthecountries/regionswherebothPartiesarelocatedininvestigationandaccountabilitywork;(7)ComplianceCooperationObligation:CooperatewiththeDisclosingPartytoperformcomplianceobligationsrelatedtocross-borderconfidentiality,cooperatewithregulatoryauthoritiesincross-borderinformationsecurityinspectionsandinvestigations,andtimelyproviderelevantmaterialsandexplainthesituation.3.3保密期限（ConfidentialityPeriod）（1）保密期限自接收方首次獲取某一保密信息之日起計算，至該信息通過合法途徑成為公開信息且無保密性為止；（2）核心保密信息的保密期限不少于10年，重要保密信息的保密期限不少于5年，一般保密信息的保密期限不少于3年；（3）本協(xié)議終止、解除或跨境合作結束后，保密期限繼續(xù)有效，接收方仍需履行本協(xié)議約定的保密義務，直至本條第（1）款約定的條件成就；（4）雙方所在國家/地區(qū)法律法規(guī)對保密期限有更長強制性規(guī)定的，從其規(guī)定；（5）跨境傳輸?shù)谋Ｃ苄畔?，其保密期限不受傳輸行為結束的影響，仍按本條約定執(zhí)行。(1)TheconfidentialityperiodshallbecalculatedfromthedateonwhichtheReceivingPartyfirstobtainsaspecificConfidentialInformationuntiltheinformationbecomespublicinformationthroughlegalchannelsandnolongerhasconfidentiality;(2)TheconfidentialityperiodforcoreConfidentialInformationshallbenotlessthan10years,forimportantConfidentialInformationnotlessthan5years,andforgeneralConfidentialInformationnotlessthan3years;(3)Afterthetermination,rescissionofthisAgreementortheendofcross-bordercooperation,theconfidentialityperiodshallremainvalid,andtheReceivingPartyshallstillperformtheconfidentialityobligationsagreedinthisAgreementuntiltheconditionsagreedinClause(1)ofthisArticlearemet;(4)Ifthelawsandregulationsofthecountries/regionswherebothPartiesarelocatedhavelongermandatoryprovisionsontheconfidentialityperiod,suchprovisionsshallprevail;(5)TheconfidentialityperiodofConfidentialInformationsubjecttocross-bordertransmissionshallnotbeaffectedbytheendofthetransmissionact,andshallstillbeimplementedinaccordancewiththeprovisionsofthisArticle.第四條跨境合規(guī)特別約定（Article4:SpecialAgreementsonCross-BorderCompliance）4.1跨境信息傳輸合規(guī)（ComplianceofCross-BorderInformationTransmission）雙方確認，跨境信息傳輸必須嚴格遵守境內(nèi)方所在國家/地區(qū)（中國）關于數(shù)據(jù)跨境傳輸?shù)南嚓P法律法規(guī)，包括但不限于《中華人民共和國數(shù)據(jù)安全法》《中華人民共和國個人信息保護法》關于重要數(shù)據(jù)、個人信息跨境傳輸?shù)膶徟?、備案、安全評估等要求，以及境外方所在國家/地區(qū)關于信息跨境接收、存儲、處理的相關法律法規(guī)。未經(jīng)合規(guī)審批、備案的，任何一方不得擅自進行跨境信息傳輸。如因跨境傳輸合規(guī)要求發(fā)生變化，雙方應及時協(xié)商調整跨境傳輸方案，確保始終符合適用法律規(guī)定。BothPartiesconfirmthatcross-borderinformationtransmissionmuststrictlycomplywiththerelevantlawsandregulationsoncross-borderdatatransmissioninthecountry/regionwheretheDomesticPartyislocated(thePeople'sRepublicofChina),includingbutnotlimitedtotheapproval,filing,securityassessmentandotherrequirementsforcross-bordertransmissionofimportantdataandpersonalinformationstipulatedintheDataSecurityLawofthePeople'sRepublicofChinaandthePersonalInformationProtectionLawofthePeople'sRepublicofChina,aswellastherelevantlawsandregulationsoncross-borderreception,storageandprocessingofinformationinthecountry/regionwheretheOverseasPartyislocated.Withoutcomplianceapprovalandfiling,neitherPartyshallarbitrarilyconductcross-borderinformationtransmission.Ifthecross-bordertransmissioncompliancerequirementschange,bothPartiesshalltimelynegotiateandadjustthecross-bordertransmissionplantoensurethatitalwayscomplieswithapplicablelegalprovisions.4.2個人信息與重要數(shù)據(jù)保護（ProtectionofPersonalInformationandImportantData）如保密信息中包含個人信息（尤其是跨境個人信息）、重要數(shù)據(jù)，雙方應額外履行以下義務：（1）境內(nèi)方作為披露方時，應告知境外方該等信息的類型、敏感程度及中國關于個人信息、重要數(shù)據(jù)跨境傳輸?shù)奶厥庖?，配合境外方完成合?guī)手續(xù)；（2）境外方作為接收方時，應嚴格按中國法律法規(guī)及本協(xié)議約定處理該等信息，不得超出約定范圍使用，不得向第三方披露，不得將該等信息傳輸至中國法律法規(guī)禁止的國家/地區(qū)；（3）雙方應采取加密、脫敏、訪問控制等額外安全措施，防范個人信息、重要數(shù)據(jù)泄露、濫用；（4）如涉及向第三方國家/地區(qū)傳輸個人信息、重要數(shù)據(jù)，必須再次獲得披露方書面同意并完成所有適用法律要求的合規(guī)程序。IftheConfidentialInformationincludespersonalinformation(especiallycross-borderpersonalinformation)andimportantdata,bothPartiesshallperformthefollowingadditionalobligations:(1)WhentheDomesticPartyactsastheDisclosingParty,itshallinformtheOverseasPartyofthetype,sensitivityofsuchinformationandthespecialrequirementsofChinaoncross-bordertransmissionofpersonalinformationandimportantdata,andcooperatewiththeOverseasPartytocompletecomplianceprocedures;(2)WhentheOverseasPartyactsastheReceivingParty,itshallstrictlyprocesssuchinformationinaccordancewithChineselawsandregulationsandtheprovisionsofthisAgreement,shallnotuseitbeyondtheagreedscope,shallnotdiscloseittothirdparties,andshallnottransmitsuchinformationtocountries/regionsprohibitedbyChineselawsandregulations;(3)BothPartiesshalltakeadditionalsecuritymeasuressuchasencryption,desensitizationandaccesscontroltopreventleakageandabuseofpersonalinformationandimportantdata;(4)Ifcross-bordertransmissionofpersonalinformationandimportantdatatoathirdcountry/regionisinvolved,itmustobtainthewrittenconsentoftheDisclosingPartyagainandcompleteallcomplianceproceduresrequiredbyapplicablelaws.4.3跨境監(jiān)管配合（Cross-BorderRegulatoryCooperation）雙方應相互配合，應對各自所在國家/地區(qū)監(jiān)管部門關于跨境保密信息的檢查、調查工作。一方收到監(jiān)管部門的檢查通知、調查要求時，應及時書面通知另一方（法律禁止通知的除外），并在不違反適用法律的前提下，與另一方協(xié)商應對方案，必要時協(xié)助另一方提供相關材料、說明情況。因一方未履行配合義務導致另一方損失的，應承擔賠償責任。BothPartiesshallcooperatewitheachothertorespondtotheinspectionandinvestigationworkoftheregulatoryauthoritiesoftheirrespectivecountries/regionsoncross-borderConfidentialInformation.WhenonePartyreceivesaninspectionnoticeorinvestigationrequirementfromaregulatoryauthority,itshalltimelynotifytheotherPartyinwriting(exceptwhereprohibitedbylaw),andconsultwiththeotherPartyonaresponseplanonthepremiseofnotviolatingapplicablelaws,andassisttheotherPartyinprovidingrelevantmaterialsandexplainingthesituationwhennecessary.IfonePartycauseslossestotheotherPartyduetofailuretoperformthecooperationobligation,itshallbearcompensationliability.第五條違約責任（Article5:LiabilityforBreachofContract）5.1通用違約條款（GeneralBreachClause）任何一方違反本協(xié)議任何義務（包括但不限于保密義務、跨境合規(guī)義務、配合義務等）均構成違約，應立即停止違約行為，消除影響，采取補救措施，并賠償另一方因此遭受的全部損失（包括但不限于直接經(jīng)濟損失、間接經(jīng)濟損失、商譽損失、跨境合規(guī)整改費用、訴訟費、律師費、仲裁費、跨境調查費、罰款等）；違約情節(jié)嚴重（包括但不限于多次違約、泄露核心保密信息、違規(guī)跨境傳輸導致重大風險或損失、拒不整改違約行為等）導致本協(xié)議目的無法實現(xiàn)的，守約方有權解除本協(xié)議，并要求違約方額外支付違約金。AnybreachofanyobligationunderthisAgreement(includingbutnotlimitedtoconfidentialityobligations,cross-bordercomplianceobligations,cooperationobligations,etc.)byeitherPartyshallconstituteabreachofcontract.ThebreachingPartyshallimmediatelystopthebreach,eliminatetheimpact,takeremedialmeasures,andcompensatetheotherPartyforalllossessufferedthereby(includingbutnotlimitedtodirecteconomiclosses,indirecteconomiclosses,goodwilllosses,cross-bordercompliancerectificationcosts,litigationfees,attorneyfees,arbitrationfees,cross-borderinvestigationfees,fines,etc.);ifthebreachisserious(includingbutnotlimitedtomultiplebreaches,leakageofcoreConfidentialInformation,illegalcross-bordertransmissionleadingtomajorrisksorlosses,refusaltorectifythebreach,etc.)andleadstothefailuretoachievethepurposeofthisAgreement,thenon-breachingPartyhastherighttoterminatethisAgreementandrequirethebreachingPartytopayadditionalliquidateddamages.5.2專項違約條款（SpecialBreachClauses）（1）接收方違反本協(xié)議第三條保密義務，泄露、違規(guī)使用或違規(guī)跨境傳輸核心保密信息的，應向披露方支付違約金300萬元（大寫：叁佰萬元整）；泄露、違規(guī)使用或違規(guī)跨境傳輸重要保密信息的，應支付違約金150萬元（大寫：壹佰伍拾萬元整）；泄露、違規(guī)使用或違規(guī)跨境傳輸一般保密信息的，應支付違約金50萬元（大寫：伍拾萬元整）；違約金不足以彌補披露方損失的，違約方應補足差額；（2）接收方未履行跨境合規(guī)義務，擅自進行跨境信息傳輸、未完成合規(guī)審批備案手續(xù)或違反本協(xié)議第四條特別約定的，應向披露方支付違約金200萬元（大寫：貳佰萬元整），并賠償因此導致的全部損失（包括但不限于監(jiān)管罰款、合規(guī)整改費用、商譽損失等）；（3）接收方未按約定歸還、銷毀保密信息，或未及時報告信息泄露、違規(guī)跨境傳輸事件，導致?lián)p失擴大的，應額外賠償擴大的損失；（4）接收方委托第三方處理保密信息未獲得披露方書面同意，或第三方違約導致信息泄露、違規(guī)跨境傳輸?shù)?，接收方應向披露方支付違約金100萬元（大寫：壹佰萬元整），并承擔全部賠償責任；（5）披露方違反本協(xié)議約定，未履行分類標識、合規(guī)披露或監(jiān)督提醒義務，導致接收方損失的，應賠償接收方實際損失；（6）任何一方違反本協(xié)議其他義務的，應向另一方支付違約金20萬元（大寫：貳拾萬元整），并賠償實際損失。(1)IftheReceivingPartyviolatestheconfidentialityobligationsunderArticle3ofthisAgreement,leaks,illegallyusesorillegallycross-bordertransmitscoreConfidentialInformation,itshallpayliquidateddamagesofRMB3,000,000.00(inwords:ThreeMillionRMBOnly)totheDisclosingParty;ifitleaks,illegallyusesorillegallycross-bordertransmitsimportantConfidentialInformation,itshallpayliquidateddamagesofRMB1,500,000.00(inwords:OneMillionandFiveHundredThousandRMBOnly);ifitleaks,illegallyusesorillegallycross-bordertransmitsgeneralConfidentialInformation,itshallpayliquidateddamagesofRMB500,000.00(inwords:FiveHundredThousandRMBOnly);iftheliquidateddamagesareinsufficienttocoverthelossesoftheDisclosingParty,thebreachingPartyshallmakeupthedifference;(2)IftheReceivingPartyfailstoperformcross-bordercomplianceobligations,arbitrarilyconductscross-borderinformationtransmission,failstocompletecomplianceapprovalandfilingproceduresorviolatesthespecialagreementsunderArticle4ofthisAgreement,itshallpayliquidateddamagesofRMB2,000,000.00(inwords:TwoMillionRMBOnly)totheDisclosingPartyandcompensateforalllossescausedthereby(includingbutnotlimitedtoregulatoryfines,compliancerectificationcosts,goodwilllosses,etc.);(3)IftheReceivingPartyfailstoreturnordestroyConfidentialInformationasagreed,orfailstotimelyreportinformationleakageorillegalcross-bordertransmissionincidents,leadingtoexpandedlosses,itshalladditionallycompensatefortheexpandedlosses;(4)IftheReceivingPartyentrustsathirdpartytoprocessConfidentialInformationwithoutobtainingthewrittenconsentoftheDisclosingParty,orthethirdpartybreachestheagreementleadingtoinformationleakageorillegalcross-bordertransmission,theReceivingPartyshallpayl