2026年涉外保密協(xié)議（中英文版）協(xié)議編號（AgreementNo.）：________________________本2026年涉外保密協(xié)議（中英文版）（以下簡稱“本協(xié)議”）由以下雙方（以下統(tǒng)稱“雙方”）基于平等自愿、誠實信用、公平互利的原則，于____年____月____日（以下簡稱“生效日”）簽署。其中，一方為依據(jù)中華人民共和國法律設立并有效存續(xù)的法人、非法人組織或自然人（以下簡稱“中方”），另一方為依據(jù)中華人民共和國境外國家/地區(qū)法律設立并有效存續(xù)的法人、非法人組織或自然人（以下簡稱“外方”）。鑒于雙方擬開展或正在開展涉外合作（包括但不限于貨物進出口、技術引進與輸出、服務外包、投資并購、項目合作、商務磋商等），在合作全過程中，一方需向另一方披露、提供或使另一方獲知具有保密性質(zhì)的信息（包括但不限于商業(yè)秘密、技術秘密、經(jīng)營信息等），且該等信息的流轉(zhuǎn)涉及跨國/跨境場景，面臨涉外監(jiān)管合規(guī)、信息安全等多重風險。為明確雙方的保密權(quán)利與義務，防范信息泄露、濫用、篡改及違規(guī)跨境傳輸?shù)蕊L險，保障雙方合法權(quán)益不受侵害，依據(jù)《中華人民共和國民法典》《中華人民共和國反不正當競爭法》《中華人民共和國數(shù)據(jù)安全法》《中華人民共和國個人信息保護法》及雙方所在國家/地區(qū)關于保密、數(shù)據(jù)跨境傳輸、信息安全的相關法律法規(guī)及國際慣例，經(jīng)雙方友好協(xié)商，達成如下一致條款，以資共同信守。This2026Foreign-RelatedConfidentialityAgreement(Chinese-EnglishVersion)(hereinafterreferredtoas"thisAgreement")issignedon____(hereinafterreferredtoasthe"EffectiveDate")bythefollowingtwoparties(hereinaftercollectivelyreferredtoasthe"Parties")ontheprinciplesofequality,voluntariness,goodfaith,fairnessandmutualbenefit.OneofthePartiesisalegalperson,unincorporatedorganizationornaturalpersonestablishedandvalidlyexistinginaccordancewiththelawsofthePeople'sRepublicofChina(hereinafterreferredtoasthe"ChineseParty"),andtheotherPartyisalegalperson,unincorporatedorganizationornaturalpersonestablishedandvalidlyexistinginaccordancewiththelawsofacountry/regionoutsidethePeople'sRepublicofChina(hereinafterreferredtoasthe"ForeignParty").WhereasthePartiesintendtocarryoutorarecarryingoutforeign-relatedcooperation(includingbutnotlimitedtoimportandexportofgoods,introductionandexportoftechnology,serviceoutsourcing,investmentandmerger,projectcooperation,businessnegotiation,etc.),inthewholeprocessofcooperation,onePartyneedstodisclose,provideormaketheotherPartyawareofconfidentialinformation(includingbutnotlimitedtotradesecrets,technicalsecrets,operationalinformation,etc.),andthecirculationofsuchinformationinvolvestransnational/cross-borderscenarios,facingmultipleriskssuchasforeign-relatedregulatorycomplianceandinformationsecurity.ForthepurposeofclarifyingtheconfidentialityrightsandobligationsofbothParties,preventingriskssuchasinformationleakage,abuse,tamperingandillegalcross-bordertransmission,andprotectingthelegitimaterightsandinterestsofbothPartiesfrominfringement,thisAgreementisconcludedthroughfriendlynegotiationbetweenthetwoPartiesinaccordancewiththeCivilCodeofthePeople'sRepublicofChina,theAnti-UnfairCompetitionLawofthePeople'sRepublicofChina,theDataSecurityLawofthePeople'sRepublicofChina,thePersonalInformationProtectionLawofthePeople'sRepublicofChina,therelevantlawsandregulationsonconfidentiality,cross-borderdatatransmissionandinformationsecurityofthecountries/regionswherebothPartiesarelocated,aswellasinternationalpractices.BothPartiesshallabidebythisAgreementjointly.第一條締約方信息（Article1:InformationofContractingParties）1.1中方（ChineseParty）中文全稱/姓名（FullChineseName）：________________________英文譯名（EnglishTranslation）：________________________證件類型及編號（TypeandNo.ofCertificate）：________________________注冊地址/住所地（RegisteredAddress/Domicile）：________________________涉外業(yè)務聯(lián)絡地址（ContactAddressforForeign-RelatedBusiness）：________________________法定代表人/負責人/本人（LegalRepresentative/Principal/Self）：________________________涉外業(yè)務授權(quán)聯(lián)系人（AuthorizedContactforForeign-RelatedBusiness）：________________________聯(lián)系電話（ContactPhone）：________________________涉外業(yè)務專用郵箱（SpecialEmailforForeign-RelatedBusiness）：________________________信息安全負責人（InformationSecurityOfficer）：________________________1.2外方（ForeignParty）英文全稱/姓名（FullEnglishName）：________________________中文譯名（ChineseTranslation）：________________________所在國家/地區(qū)（Country/RegionofIncorporation/Domicile）：________________________證件類型及編號（TypeandNo.ofCertificate）：________________________注冊地址/住所地（RegisteredAddress/Domicile）：________________________對華業(yè)務聯(lián)絡地址（ContactAddressforChina-RelatedBusiness）：________________________法定代表人/授權(quán)代表/本人（LegalRepresentative/AuthorizedRepresentative/Self）：________________________對華業(yè)務授權(quán)聯(lián)系人（AuthorizedContactforChina-RelatedBusiness）：________________________聯(lián)系電話（ContactPhone）：________________________對華業(yè)務專用郵箱（SpecialEmailforChina-RelatedBusiness）：________________________信息安全負責人（InformationSecurityOfficer）：________________________1.3聲明與保證（RepresentationsandWarranties）雙方共同聲明并保證如下：（1）雙方均具備簽署和履行本協(xié)議的合法主體資格及相應民事權(quán)利能力、民事行為能力，外方已充分了解中國相關法律法規(guī)對涉外合作及信息保密的監(jiān)管要求，中方已充分了解外方所在國家/地區(qū)相關監(jiān)管規(guī)定；（2）雙方指定的授權(quán)聯(lián)系人已獲得有效書面授權(quán)，有權(quán)代表本方處理本協(xié)議項下保密信息管理、合規(guī)溝通、應急處置等全部相關事宜，其行為后果由本方承擔；（3）雙方披露的自身信息真實、準確、完整，不存在虛假陳述、隱瞞重要事實等情形；（4）雙方均已建立完善的信息安全保障體系和保密管理制度，具備接收、存儲、處理涉外保密信息的技術能力和合規(guī)條件；（5）雙方簽署本協(xié)議系真實意思表示，不存在欺詐、脅迫、重大誤解、顯失公平等導致協(xié)議可撤銷或無效的情形；（6）本協(xié)議生效后，對雙方具有同等法律約束力，雙方均將嚴格履行本協(xié)議約定的全部義務。BothPartiesjointlyrepresentandwarrantasfollows:(1)EachPartyhasthelegalsubjectqualificationandcorrespondingcivilrightscapacityandcivilconductcapacitytosignandperformthisAgreement;theForeignPartyhasfullyunderstoodtheregulatoryrequirementsofrelevantChineselawsandregulationsonforeign-relatedcooperationandinformationconfidentiality,andtheChinesePartyhasfullyunderstoodtherelevantregulatoryprovisionsofthecountry/regionwheretheForeignPartyislocated;(2)TheauthorizedcontactsdesignatedbybothPartieshaveobtainedeffectivewrittenauthorizationtoactonbehalfoftheirrespectivePartiesinhandlingallrelevantmattersunderthisAgreement,includingconfidentialinformationmanagement,compliancecommunication,emergencydisposal,etc.,andtheconsequencesoftheiractsshallbebornebytheirrespectiveParties;(3)TheinformationdisclosedbybothPartiesaboutthemselvesistrue,accurateandcomplete,withoutanyfalsestatements,concealmentofimportantfactsandothercircumstances;(4)BothPartieshaveestablishedasoundinformationsecurityassurancesystemandconfidentialitymanagementsystem,andhavethetechnicalcapabilitiesandcomplianceconditionstoreceive,storeandprocessforeign-relatedconfidentialinformation;(5)ThesigningofthisAgreementbybothPartiesisatrueexpressionofintent,withoutanycircumstancessuchasfraud,coercion,grossmisunderstanding,unconscionabilitythatmayleadtotherevocationorinvalidityoftheAgreement;(6)AfterthisAgreementtakeseffect,itshallhaveequallegalbindingforceonbothParties,andbothPartiesshallstrictlyperformallobligationsagreedinthisAgreement.第二條保密信息定義與范圍（Article2:DefinitionandScopeofConfidentialInformation）2.1定義（Definition）本協(xié)議所稱“保密信息”（ConfidentialInformation），指自生效日起，披露方（DisclosingParty）通過書面文件、電子數(shù)據(jù)、口頭告知、實物展示、技術交底、會議溝通、跨境數(shù)據(jù)交互等任何形式，向接收方（ReceivingParty）提供、披露或使接收方獲知的，且符合下列全部條件的信息及衍生信息：（1）未通過合法途徑進入公共領域，或雖進入公共領域但披露方仍對其享有合法保密權(quán)益的；（2）對披露方具有商業(yè)價值、技術價值、戰(zhàn)略價值或其他重大利益，披露方已采取合理保密措施（包括但不限于標注保密標識、口頭告知保密義務、限制接觸范圍、加密存儲等）的；（3）經(jīng)披露方明確標注“保密”“機密”“內(nèi)部資料”等類似標識，或口頭明確告知需承擔保密義務的。Theterm"ConfidentialInformation"asusedinthisAgreementreferstoallinformationandderivativeinformationthattheDisclosingPartyprovides,disclosesormakestheReceivingPartyawareofthroughanyformsuchaswrittendocuments,electronicdata,oralnotification,physicaldisplay,technicaldisclosure,meetingcommunication,cross-borderdatainteraction,etc.,aftertheEffectiveDate,andmeetsallthefollowingconditions:(1)Ithasnotenteredthepublicdomainthroughlegalchannels,oralthoughithasenteredthepublicdomain,theDisclosingPartystillenjoyslegalconfidentialityrightsandinterestsinit;(2)Ithascommercialvalue,technicalvalue,strategicvalueorothermajorinterestsfortheDisclosingParty,andtheDisclosingPartyhastakenreasonableconfidentialitymeasures(includingbutnotlimitedtomarkingconfidentialitylabels,orallyinformingofconfidentialityobligations,restrictingthescopeofaccess,encryptedstorage,etc.);(3)Itisclearlymarkedwith"Confidential","Secret","InternalInformation"orothersimilarlabelsbytheDisclosingParty,ortheDisclosingPartyhasorallyclearlyinformedthatconfidentialityobligationsshallbeborne.2.2范圍（Scope）保密信息具體包括但不限于以下類別，且無論以何種形式存在（書面、電子、口頭、實物等），均屬于本協(xié)議保密范圍：（1）商業(yè)信息：包括但不限于涉外合作方案、商務談判底線、客戶名單（含涉外客戶信息）、供應商信息、定價策略、銷售數(shù)據(jù)、營收報表、成本預算、盈利預測、稅務籌劃資料、跨境結(jié)算信息等；（2）技術信息：包括但不限于核心技術方案、技術秘密、專利申請文件、研發(fā)數(shù)據(jù)、測試報告、工藝流程、技術參數(shù)、軟件源代碼、算法模型、技術許可文件等；（3）經(jīng)營管理信息：包括但不限于組織架構(gòu)、人員信息、薪酬體系、股權(quán)激勵方案、戰(zhàn)略規(guī)劃、市場布局、渠道資源、合作協(xié)議草案、未公開的重大交易信息等；（4）合規(guī)信息：包括但不限于涉外業(yè)務資質(zhì)證明、監(jiān)管審批文件、備案材料、合規(guī)自查報告、應對監(jiān)管調(diào)查的相關材料等；（5）個人信息：包括但不限于雙方員工、客戶、合作伙伴的個人身份信息、聯(lián)系方式、財產(chǎn)信息、生物識別信息等敏感個人信息及一般個人信息；（6）其他信息：經(jīng)披露方書面確認需保密的其他與涉外合作相關的信息。ConfidentialInformationspecificallyincludesbutisnotlimitedtothefollowingcategories,andregardlessoftheform(written,electronic,oral,physical,etc.),itshallbewithinthescopeofconfidentialityunderthisAgreement:(1)CommercialInformation:Includingbutnotlimitedtoforeign-relatedcooperationplans,businessnegotiationbottomlines,customerlists(includingforeign-relatedcustomerinformation),supplierinformation,pricingstrategies,salesdata,revenuestatements,costbudgets,profitforecasts,taxplanningmaterials,cross-bordersettlementinformation,etc.;(2)TechnicalInformation:Includingbutnotlimitedtocoretechnicalschemes,technicalsecrets,patentapplicationdocuments,R&Ddata,testreports,processflows,technicalparameters,softwaresourcecodes,algorithmmodels,technicallicensingdocuments,etc.;(3)OperationandManagementInformation:Includingbutnotlimitedtoorganizationalstructure,personnelinformation,salarysystem,equityincentiveplans,strategicplans,marketlayout,channelresources,draftcooperationagreements,undisclosedmajortransactioninformation,etc.;(4)ComplianceInformation:Includingbutnotlimitedtoforeign-relatedbusinessqualificationcertificates,regulatoryapprovaldocuments,filingmaterials,complianceself-inspectionreports,relevantmaterialsforrespondingtoregulatoryinvestigations,etc.;(5)PersonalInformation:Includingbutnotlimitedtosensitivepersonalinformationandgeneralpersonalinformationsuchaspersonalidentityinformation,contactinformation,propertyinformation,biometricinformationofemployees,customersandpartnersofbothParties;(6)OtherInformation:Otherinformationrelatedtoforeign-relatedcooperationthattheDisclosingPartyconfirmsinwritingtobeconfidential.2.3除外情形（ExclusionScenarios）下列信息及相關行為不受本協(xié)議保密義務約束：（1）在披露方披露前，已通過合法途徑（如公開出版物、官方公告、第三方合法披露等）進入公共領域且可自由獲取的信息；（2）接收方在未接觸、未獲知披露方任何保密信息的前提下，通過獨立研發(fā)、合法受讓、公開渠道查詢、第三方合法授權(quán)等方式自行獲得的信息；（3）依據(jù)雙方所在國家/地區(qū)法律法規(guī)、司法裁判、仲裁裁決、政府監(jiān)管部門（含涉外監(jiān)管機構(gòu)）的強制性要求，必須披露的信息，且接收方已在法律法規(guī)允許范圍內(nèi)事先書面通知披露方（法律明確禁止通知的除外），并配合披露方采取合理減損措施；（4）披露方通過書面形式明確聲明無需保密、不受本協(xié)議約束的信息；（5）接收方從有權(quán)披露且未對該等信息施加保密義務的第三方處合法獲取的信息；（6）為履行本協(xié)議及涉外合作必需，且已獲得披露方書面同意的信息使用及傳輸行為。ThefollowinginformationandrelatedactsarenotsubjecttotheconfidentialityobligationsunderthisAgreement:(1)Informationthathasenteredthepublicdomainthroughlegalchannels(suchaspublicpublications,officialannouncements,legaldisclosurebythirdparties,etc.)andisfreelyaccessiblebeforedisclosurebytheDisclosingParty;(2)InformationindependentlyobtainedbytheReceivingPartythroughindependentresearchanddevelopment,legalassignment,publicchannelinquiry,legalauthorizationbythirdparties,etc.,withoutcontactingorobtaininganyConfidentialInformationoftheDisclosingParty;(3)Informationthatmustbedisclosedinaccordancewiththemandatoryrequirementsofthelawsandregulations,judicialjudgments,arbitralawards,governmentregulatoryauthorities(includingforeign-relatedregulatoryauthorities)ofthecountries/regionswherebothPartiesarelocated,andtheReceivingPartyhasnotifiedtheDisclosingPartyinwritinginadvancewithinthescopepermittedbylawsandregulations(exceptwhereexplicitlyprohibitedbylaw),andcooperatedwiththeDisclosingPartytotakereasonablelossreductionmeasures;(4)InformationthattheDisclosingPartyhasclearlystatedinwritingthatnoconfidentialityisrequiredandisnotboundbythisAgreement;(5)InformationlegallyobtainedbytheReceivingPartyfromathirdpartywiththerighttodiscloseandwithoutimposingconfidentialityobligationsonsuchinformation;(6)InformationuseandtransmissionactsthatarenecessaryforperformingthisAgreementandforeign-relatedcooperationandhaveobtainedthewrittenconsentoftheDisclosingParty.第三條保密義務（Article3:ConfidentialityObligations）3.1接收方核心義務（CoreObligationsoftheReceivingParty）接收方應采取不低于保護自身同類核心保密信息的嚴格措施，履行以下保密義務（本協(xié)議第二條約定的除外情形除外）：（1）人員管控義務：僅允許經(jīng)本方書面授權(quán)且確有必要的人員接觸、獲取保密信息，建立授權(quán)人員登記臺賬及接觸、使用保密信息的全程記錄（包括接觸時間、內(nèi)容、用途、流轉(zhuǎn)情況等）；對授權(quán)人員進行涉外保密法律法規(guī)、信息安全防護、合規(guī)操作流程等專項培訓，并要求其簽署書面保密承諾書；嚴禁未經(jīng)授權(quán)人員接觸、獲取、使用任何保密信息，嚴禁授權(quán)人員向任何第三方泄露、傳輸保密信息。（2）存儲與傳輸安全義務：對書面形式的保密信息，采取上鎖存放、專人保管、借閱登記、使用跟蹤、到期回收等安全措施；對電子形式的保密信息，采取端到端加密存儲、嚴格訪問權(quán)限設置（含多因素認證）、定期安全檢測與漏洞修復、病毒防護、數(shù)據(jù)備份等安全措施；涉及跨境傳輸保密信息的，必須事先完成雙方所在國家/地區(qū)法律法規(guī)要求的全部合規(guī)程序（包括但不限于安全評估、審批、備案等），選擇安全可靠的傳輸渠道（如加密專用線路、合規(guī)跨境數(shù)據(jù)平臺等），并對傳輸過程進行全程加密、全程留痕，傳輸日志留存期限不得少于本協(xié)議約定的保密期限。（3）使用限制義務：嚴格按照本協(xié)議約定及披露方書面明確的范圍和用途使用保密信息，不得將保密信息用于涉外合作無關的任何目的；不得對保密信息進行反向工程、解密、拆解、復制、篡改、分發(fā)等非法行為（經(jīng)披露方書面明確授權(quán)的除外）；不得超出授權(quán)范圍向本方內(nèi)部無關人員披露、傳輸保密信息。（4）第三方管控義務：未經(jīng)披露方書面明確同意，不得向任何第三方（包括本方關聯(lián)方、合作伙伴、分包商、顧問等）披露、傳輸、復制、使用保密信息，不得委托任何第三方處理、存儲保密信息或進行跨境傳輸；確因涉外合作必需委托第三方的，必須事先對第三方的合法資質(zhì)、信息安全保障能力、合規(guī)能力進行嚴格審核，與第三方簽署不低于本協(xié)議保密標準的保密協(xié)議，并對第三方履行義務的情況進行全程監(jiān)督、管理；若第三方違反保密義務導致保密信息泄露、濫用的，接收方應承擔連帶責任，并賠償披露方因此遭受的全部損失。（5）歸還與銷毀義務：涉外合作終止、解除，或收到披露方書面收回保密信息的通知，或不再需要使用保密信息時，應立即停止使用該等保密信息，停止所有相關傳輸行為，并在5個工作日內(nèi)，將全部保密信息載體（包括原件、復印件、打印件、存儲介質(zhì)、電子備份、緩存數(shù)據(jù)、傳輸留存數(shù)據(jù)等）歸還披露方，或按披露方書面要求的方式（如物理銷毀、永久刪除等）徹底銷毀全部保密信息及相關載體；銷毀完成后，應在3個工作日內(nèi)向披露方提供書面銷毀證明（包括銷毀清單、方式、時間、責任人等信息）。（6）風險處置義務：發(fā)現(xiàn)保密信息泄露、丟失、被盜、違規(guī)傳輸或存在泄露風險等情形時，應立即采取有效措施防止風險擴大（包括但不限于停止傳輸、封鎖相關信息、隔離受影響系統(tǒng)、通知相關方防范等），并在24小時內(nèi)書面通知披露方，詳細說明事件發(fā)生的時間、地點、原因、涉及的保密信息范圍、已采取的應急措施及后續(xù)處置方案；積極配合披露方及雙方所在國家/地區(qū)監(jiān)管部門開展調(diào)查、追責、風險處置等工作。TheReceivingPartyshalltakestrictmeasuresnotlowerthanthoseforprotectingitsownsimilarcoreConfidentialInformation,andperformthefollowingconfidentialityobligations(exceptfortheexclusionscenariosagreedinArticle2ofthisAgreement):(1)PersonnelControlObligation:OnlyallowpersonnelwhohaveobtainedwrittenauthorizationfromtheirownPartyandarereallynecessarytoaccessandobtainConfidentialInformation;establisharegistrationledgerofauthorizedpersonnelandfull-processrecordsofaccessingandusingConfidentialInformation(includingaccesstime,content,purpose,circulationstatus,etc.);conductspecialtrainingonforeign-relatedconfidentialitylawsandregulations,informationsecurityprotection,complianceoperationprocedures,etc.forauthorizedpersonnel,andrequirethemtosignwrittenconfidentialitycommitments;strictlyprohibitunauthorizedpersonnelfromaccessing,obtainingandusinganyConfidentialInformation,andstrictlyprohibitauthorizedpersonnelfromdisclosingandtransmittingConfidentialInformationtoanythirdparty.(2)StorageandTransmissionSecurityObligation:Takesecuritymeasuressuchaslockedstorage,specialpersoncustody,borrowingregistration,usetracking,expirationrecovery,etc.forwrittenConfidentialInformation;takesecuritymeasuressuchasend-to-endencryptedstorage,strictaccesspermissionsettings(includingmulti-factorauthentication),regularsecuritydetectionandvulnerabilityrepair,virusprotection,databackup,etc.forelectronicConfidentialInformation;forcross-bordertransmissionofConfidentialInformation,allcomplianceproceduresrequiredbythelawsandregulationsofthecountries/regionswherebothPartiesarelocated(includingbutnotlimitedtosecurityassessment,approval,filing,etc.)mustbecompletedinadvance,selectasafeandreliabletransmissionchannel(suchasencrypteddedicatedline,compliantcross-borderdataplatform,etc.),andconductfull-processencryptionandfull-processtraceabilityforthetransmissionprocess;theretentionperiodoftransmissionlogsshallnotbelessthantheconfidentialityperiodagreedinthisAgreement.(3)UseRestrictionObligation:StrictlyuseConfidentialInformationwithinthescopeandpurposeagreedinthisAgreementandclearlyspecifiedinwritingbytheDisclosingParty,andshallnotuseConfidentialInformationforanypurposeunrelatedtoforeign-relatedcooperation;shallnotconductillegalactssuchasreverseengineering,decryption,disassembly,copying,tamperinganddistributionofConfidentialInformation(exceptwithexplicitwrittenauthorizationfromtheDisclosingParty);shallnotdiscloseortransmitConfidentialInformationtoirrelevantinternalpersonnelofitsownPartybeyondtheauthorizedscope.(4)Third-PartyControlObligation:WithouttheexplicitwrittenconsentoftheDisclosingParty,shallnotdisclose,transmit,copyoruseConfidentialInformationtoanythirdparty(includingitsownaffiliates,partners,subcontractors,consultants,etc.),andshallnotentrustanythirdpartytoprocess,storeConfidentialInformationorconductcross-bordertransmission;ifitisreallynecessarytoentrustathirdpartyduetoforeign-relatedcooperation,theReceivingPartymustfirststrictlyreviewthelegalqualifications,informationsecurityassurancecapabilitiesandcompliancecapabilitiesofthethirdparty,signaconfidentialityagreementwiththethirdpartythatisnotlowerthantheconfidentialitystandardsofthisAgreement,andconductfull-processsupervisionandmanagementofthethirdparty'sperformanceofobligations;ifthethirdpartyviolatestheconfidentialityobligationsleadingtotheleakageorabuseofConfidentialInformation,theReceivingPartyshallbejointlyandseverallyliableandcompensatetheDisclosingPartyforalllossessufferedthereby.(5)ReturnandDestructionObligation:Whentheforeign-relatedcooperationisterminatedorrescinded,orawrittennoticefromtheDisclosingPartytorecallConfidentialInformationisreceived,oritisnolongernecessarytouseConfidentialInformation,theReceivingPartyshallimmediatelystopusingsuchConfidentialInformation,stopallrelevanttransmissionacts,andwithin5workingdays,returnallConfidentialInformationcarriers(includingoriginals,copies,prints,storagemedia,electronicbackups,cachedata,transmissionretaineddata,etc.)totheDisclosingParty,orcompletelydestroyallConfidentialInformationandrelatedcarriersinthemannerspecifiedinwritingbytheDisclosingParty(suchasphysicaldestruction,permanentdeletion,etc.);afterthecompletionofdestruction,theReceivingPartyshallprovideawrittendestructioncertificate(includingdestructionlist,method,time,responsiblepersonandotherinformation)totheDisclosingPartywithin3workingdays.(6)RiskDisposalObligation:IfitisfoundthatConfidentialInformationisleaked,lost,stolen,illegallytransmittedorthereisariskofleakage,etc.,theReceivingPartyshallimmediatelytakeeffectivemeasurestopreventtheexpansionofrisks(includingbutnotlimitedtostoppingtransmission,blockingrelevantinformation,isolatingaffectedsystems,notifyingrelevantpartiestoprevent,etc.),andnotifytheDisclosingPartyinwritingwithin24hours,detailingthetime,place,causeoftheincident,thescopeofinvolvedConfidentialInformation,theemergencymeasurestakenandthesubsequentdisposalplan;activelycooperatewiththeDisclosingPartyandtheregulatoryauthoritiesofthecountries/regionswherebothPartiesarelocatedincarryingoutinvestigation,accountability,riskdisposalandotherwork.3.2披露方核心義務（CoreObligationsoftheDisclosingParty）披露方應履行以下保密相關義務：（1）分類標識與告知義務：按保密信息的敏感程度、重要性，將其明確分為核心保密信息、重要保密信息、一般保密信息三類，在提供或披露時，應通過書面標注、電子標識或口頭明確告知等方式，向接收方說明該等信息的保密等級、保密期限、使用限制、跨境傳輸要求及泄露風險；對于涉及個人信息、重要數(shù)據(jù)的保密信息，應額外告知接收方該等信息的類型、敏感屬性及合規(guī)要求。（2）合規(guī)披露義務：嚴格遵循“最小必要”原則，僅為實現(xiàn)涉外合作目的，向接收方披露必需的保密信息，不得超出合作范圍披露無關信息；涉及跨境傳輸?shù)?，應提前向接收方告知該等信息跨境傳輸所需履行的合?guī)程序，并積極配合接收方完成相關手續(xù)。（3）內(nèi)部管控義務：建立健全內(nèi)部保密管理制度及涉外信息披露審批機制，對內(nèi)部接觸、處理、傳輸保密信息的人員進行專項培訓，明確各崗位人員的保密職責及問責機制；對保密信息采取必要的安全防護措施，防范內(nèi)部泄露、濫用等風險。（4）監(jiān)督與提醒義務：有權(quán)定期或不定期對接收方履行本協(xié)議義務的情況進行檢查、核實（包括但不限于保密信息的存儲情況、使用范圍、跨境傳輸合規(guī)性等），接收方應予以配合；發(fā)現(xiàn)接收方存在信息泄露隱患或違規(guī)行為的，應立即書面通知接收方，要求其限期整改。TheDisclosingPartyshallperformthefollowingconfidentiality-relatedobligations:(1)Classification,IdentificationandNotificationObligation:ClassifyConfidentialInformationintothreecategories(coreConfidentialInformation,importantConfidentialInformationandgeneralConfidentialInformation)accordingtoitssensitivityandimportance;whenprovidingordisclosingit,theDisclosingPartyshallinformtheReceivingPartyoftheconfidentialitylevel,confidentialityperiod,userestrictions,cross-bordertransmissionrequirementsandleakagerisksofsuchinformationthroughwrittenmarking,electronicidentificationororalexplicitnotification,etc.;forConfidentialInformationinvolvingpersonalinformationandimportantdata,theDisclosingPartyshalladditionallyinformtheReceivingPartyofthetype,sensitiveattributesandcompliancerequirementsofsuchinformation.(2)ComplianceDisclosureObligation:Strictlyfollowthe"minimumnecessary"principle,discloseonlythenecessaryConfidentialInformationtotheReceivingPartyforthepurposeofrealizingforeign-relatedcooperation,andshallnotdiscloseirrelevantinformationbeyondthescopeofcooperation;ifcross-bordertransmissionisinvolved,theDisclosingPartyshallinformtheReceivingPartyinadvanceofthecomplianceproceduresrequiredforcross-bordertransmissionofsuchinformation,andactivelycooperatewiththeReceivingPartytocompleterelevantprocedures.(3)InternalControlObligation:Establishandimproveinternalconfidentialitymanagementsystemsandforeign-relatedinformationdisclosureapprovalmechanisms,conductspecialtrainingforinternalpersonnelwhocontact,processandtransmitConfidentialInformation,andclarifytheconfidentialityresponsibilitiesandaccountabilitymechanismsofpersonnelinvariouspositions;takenecessarysecurityprotectionmeasuresforConfidentialInformationtopreventriskssuchasinternalleakageandabuse.(4)SupervisionandReminderObligation:HastherighttoconductregularorirregularinspectionsandverificationsontheReceivingParty'sperformanceofobligationsunderthisAgreement(includingbutnotlimitedtothestoragestatus,scopeofuse,complianceofcross-bordertransmissionofConfidentialInformation,etc.),andtheReceivingPartyshallcooperate;ifitisfoundthattheReceivingPartyhashiddendangersofinformationleakageorillegalacts,theDisclosingPartyshallimmediatelynotifytheReceivingPartyinwritingandrequireittorectifywithinatimelimit.3.3保密期限（ConfidentialityPeriod）（1）本協(xié)議項下保密信息的保密期限，自接收方首次接觸、獲取該等保密信息之日起計算，至該信息通過合法途徑成為完全公開信息且披露方不再享有任何保密權(quán)益之日止；（2）不同等級保密信息的最低保密期限：核心保密信息不少于10年，重要保密信息不少于5年，一般保密信息不少于3年；（3）本協(xié)議終止、解除或涉外合作完全結(jié)束后，本協(xié)議約定的保密期限繼續(xù)有效，接收方仍需嚴格履行本協(xié)議項下的全部保密義務，直至本條第（1）款約定的條件成就；（4）若雙方所在國家/地區(qū)法律法規(guī)對某類保密信息（如商業(yè)秘密、技術秘密、個人信息等）的保密期限有更長強制性規(guī)定的，從其規(guī)定；（5）跨境傳輸?shù)谋Ｃ苄畔?，其保密期限不受傳輸行為結(jié)束、存儲地點變更等因素影響，仍按本條約定執(zhí)行。(1)TheconfidentialityperiodofConfidentialInformationunderthisAgreementshallbecalculatedfromthedateonwhichtheReceivingPartyfirstcontactsandobtainssuchConfidentialInformation,untiltheinformationbecomesfullypublicinformationthroughlegalchannelsandtheDisclosingPartynolongerenjoysanyconfidentialityrightsandinterests;(2)TheminimumconfidentialityperiodfordifferentlevelsofConfidentialInformation:notlessthan10yearsforcoreConfidentialInformation,notlessthan5yearsforimportantConfidentialInformation,andnotlessthan3yearsforgeneralConfidentialInformation;(3)Afterthetermination,rescissionofthisAgreementorthecompleteendofforeign-relatedcooperation,theconfidentialityperiodagreedinthisAgreementshallremainvalid,andtheReceivingPartyshallstillstrictlyperformallconfidentialityobligationsunderthisAgreementuntiltheconditionsagreedinClause(1)ofthisArticlearemet;(4)Ifthelawsandregulationsofthecountries/regionswherebothPartiesarelocatedhavelongermandatoryprovisionsontheconfidentialityperiodofacertaintypeofConfidentialInformation(suchastradesecrets,technicalsecrets,personalinformation,etc.),suchprovisionsshallprevail;(5)TheconfidentialityperiodofConfidentialInformationsubjecttocross-bordertransmissionshallnotbeaffectedbyfactorssuchastheendoftransmissionandthechangeofstoragelocation,andshallstillbeimplementedinaccordancewiththeprovisionsofthisArticle.第四條涉外合規(guī)特別約定（Article4:SpecialAgreementsonForeign-RelatedCompliance）4.1跨境數(shù)據(jù)傳輸合規(guī)（ComplianceofCross-BorderDataTransmission）雙方一致確認，跨境數(shù)據(jù)傳輸是本協(xié)議履行的重要環(huán)節(jié)，必須嚴格遵守以下合規(guī)要求：（1）中方應嚴格遵守《中華人民共和國數(shù)據(jù)安全法》《中華人民共和國個人信息保護法》《數(shù)據(jù)出境安全評估辦法》等中國法律法規(guī)及監(jiān)管規(guī)定，對于屬于重要數(shù)據(jù)、個人信息（尤其是敏感個人信息）的保密信息，跨境傳輸前必須完成安全評估、審批、備案等法定程序，嚴禁未經(jīng)合規(guī)程序擅自跨境傳輸；（2）外方應確保其接收、存儲、處理、使用跨境傳輸?shù)谋Ｃ苄畔⒌男袨?，嚴格符合其所在國?地區(qū)關于數(shù)據(jù)保護、信息安全的法律法規(guī)及監(jiān)管要求，不得違反當?shù)貜娭菩砸?guī)定；（3）若雙方所在國家/地區(qū)之間有關于數(shù)據(jù)跨境傳輸?shù)碾p邊協(xié)議、多邊公約或共識，跨境數(shù)據(jù)傳輸行為還應符合該等協(xié)議、公約或共識的要求；（4）在本協(xié)議履行期間，若雙方所在國家/地區(qū)關于跨境數(shù)據(jù)傳輸?shù)姆煞ㄒ?guī)、監(jiān)管要求發(fā)生變更，雙方應在變更生效后15個工作日內(nèi)，協(xié)商調(diào)整跨境傳輸方案及相關義務，確保跨境數(shù)據(jù)傳輸行為始終符合最新合規(guī)要求；（5）一方要求另一方提供跨境數(shù)據(jù)傳輸合規(guī)證明文件（如安全評估報告、審批文件、備案憑證等）的，另一方應在合理期限內(nèi)提供，不得拒絕或拖延。BothPartiesconfirmthatcross-borderdatatransmissionisanimportantlinkintheperformanceofthisAgreement,andmuststrictlycomplywiththefollowingcompliancerequirements:(1)TheChinesePartyshallstrictlyabidebytheDataSecurityLawofthePeople'sRepublicofChina,thePersonalInformationProtectionLawofthePeople'sRepublicofChina,theMeasuresforSecurityAssessmentofDataOutboundandotherChineselaws,regulationsandregulatoryprovisions;forConfidentialInformationthatbelongstoimportantdataandpersonalinformation(especiallysensitivepersonalinformation),legalproceduressuchassecurityassessment,approvalandfilingmustbecompletedbeforecross-bordertransmission,anditisstrictlyprohibitedtoarbitrarilyconductcross-bordertransmissionwithoutcomplianceprocedures;(2)TheForeignPartyshallensurethatitsactsofreceiving,storing,processingandusingcross-bordertransmittedConfidentialInformationstrictlycomplywiththelaws,regulationsandregulatoryrequirementsondataprotectionandinformationsecurityofitscountry/regionofincorporation,andshallnotviolatelocalmandatoryprovisions;(3)Iftherearebilateralagreements,multilateralconventionsorconsensusesoncross-borderdatatransmissionbetweenthecountries/regionswherebothPartiesarelocated,thecross-borderdatatransmissionactsshallalsocomplywiththerequirements