2026年涉外中英文保密協(xié)議協(xié)議編號（AgreementNo.）：________________________本協(xié)議（以下簡稱“本協(xié)議”）由以下雙方于____年____月____日（以下簡稱“生效日”）在________________（簽署地點）自愿簽署，旨在明確雙方在涉外合作過程中保密信息的管理與保護(hù)義務(wù)，防范信息泄露及違規(guī)跨境傳輸風(fēng)險，保障雙方合法權(quán)益。ThisAgreement(hereinafterreferredtoas"thisAgreement")isvoluntarilysignedbythefollowingtwopartieson____(hereinafterreferredtoasthe"EffectiveDate")in________________(PlaceofSignature).Itaimstoclarifytheobligationsofbothpartiesinthemanagementandprotectionofconfidentialinformationduringforeign-relatedcooperation,preventrisksofinformationleakageandillegalcross-bordertransmission,andprotectthelegitimaterightsandinterestsofbothparties.甲方（PartyA）：________________________（以下簡稱“披露方”/DisclosingParty，根據(jù)信息披露場景確定；若雙方互有信息披露，均為本協(xié)議項下披露方及接收方）乙方（PartyB）：________________________（以下簡稱“接收方”/ReceivingParty，根據(jù)信息接收場景確定；若雙方互有信息接收，均為本協(xié)議項下接收方及披露方）鑒于雙方擬開展或正在開展________________（具體涉外合作事項，如貨物進(jìn)出口、技術(shù)合作、服務(wù)外包、投資并購、商務(wù)磋商等）業(yè)務(wù)，在合作過程中，一方（披露方）需向另一方（接收方）披露、提供具有保密性質(zhì)的信息，該等信息的流轉(zhuǎn)涉及跨國/跨境場景，需符合雙方所在國家/地區(qū)相關(guān)法律法規(guī)及國際慣例。為規(guī)范雙方權(quán)利義務(wù)，依據(jù)《中華人民共和國民法典》《中華人民共和國數(shù)據(jù)安全法》《中華人民共和國個人信息保護(hù)法》《中華人民共和國反不正當(dāng)競爭法》及接收方/披露方所在國家/地區(qū)關(guān)于保密、數(shù)據(jù)跨境傳輸、信息安全的相關(guān)法律規(guī)定，經(jīng)雙方友好協(xié)商，達(dá)成如下協(xié)議，以資共同信守。Whereasbothpartiesintendtocarryoutorarecarryingoutthebusinessof________________(specificforeign-relatedcooperationmatters,suchasimportandexportofgoods,technicalcooperation,serviceoutsourcing,investmentandmerger,businessnegotiation,etc.),inthecourseofcooperation,oneparty(DisclosingParty)needstodiscloseandprovideconfidentialinformationtotheotherparty(ReceivingParty).Thecirculationofsuchinformationinvolvestransnational/cross-borderscenariosandmustcomplywiththerelevantlawsandregulationsofthecountries/regionswherebothpartiesarelocatedandinternationalpractices.Tostandardizetherightsandobligationsofbothparties,inaccordancewiththeCivilCodeofthePeople'sRepublicofChina,theDataSecurityLawofthePeople'sRepublicofChina,thePersonalInformationProtectionLawofthePeople'sRepublicofChina,theAnti-UnfairCompetitionLawofthePeople'sRepublicofChina,andtherelevantlegalprovisionsonconfidentiality,cross-borderdatatransmissionandinformationsecurityofthecountries/regionswheretheReceivingParty/DisclosingPartyislocated,thisAgreementisconcludedthroughfriendlynegotiationbetweenbothpartiesformutualobservance.第一條締約方基本信息（Article1:BasicInformationofContractingParties）1.1甲方（PartyA）中文全稱（FullChineseName）：________________________英文全稱（FullEnglishName）：________________________法律性質(zhì)（LegalNature）：□法人（LegalPerson）□非法人組織（UnincorporatedOrganization）□自然人（NaturalPerson）注冊地址/住所地（RegisteredAddress/Domicile）：________________________涉外業(yè)務(wù)聯(lián)絡(luò)地址（ContactAddressforForeign-RelatedBusiness）：________________________證件類型及編號（TypeandNo.ofCertificate）：________________________法定代表人/負(fù)責(zé)人/本人（LegalRepresentative/Principal/Self）：________________________授權(quán)聯(lián)系人（AuthorizedContactPerson）：________________________聯(lián)系電話（ContactPhone）：________________________涉外業(yè)務(wù)專用郵箱（SpecialEmailforForeign-RelatedBusiness）：________________________信息安全負(fù)責(zé)人（InformationSecurityOfficer）：________________________1.2乙方（PartyB）中文全稱（FullChineseName）：________________________英文全稱（FullEnglishName）：________________________法律性質(zhì)（LegalNature）：□法人（LegalPerson）□非法人組織（UnincorporatedOrganization）□自然人（NaturalPerson）所在國家/地區(qū)（Country/RegionofIncorporation/Domicile）：________________________注冊地址/住所地（RegisteredAddress/Domicile）：________________________對華業(yè)務(wù)聯(lián)絡(luò)地址（ContactAddressforChina-RelatedBusiness）：________________________證件類型及編號（TypeandNo.ofCertificate）：________________________法定代表人/授權(quán)代表/本人（LegalRepresentative/AuthorizedRepresentative/Self）：________________________授權(quán)聯(lián)系人（AuthorizedContactPerson）：________________________聯(lián)系電話（ContactPhone）：________________________對華業(yè)務(wù)專用郵箱（SpecialEmailforChina-RelatedBusiness）：________________________信息安全負(fù)責(zé)人（InformationSecurityOfficer）：________________________1.3聲明與保證（RepresentationsandWarranties）雙方共同聲明并保證：1.3.1雙方均具備簽署和履行本協(xié)議的合法主體資格，擁有相應(yīng)的民事權(quán)利能力和民事行為能力；外方已充分知悉中國關(guān)于涉外信息保密、數(shù)據(jù)跨境傳輸?shù)南嚓P(guān)法律法規(guī)及監(jiān)管要求，中方已充分知悉外方所在國家/地區(qū)關(guān)于信息保護(hù)的相關(guān)法律規(guī)定。1.3.2雙方授權(quán)聯(lián)系人已獲得有效書面授權(quán)，有權(quán)代表本方處理本協(xié)議項下保密信息的接收、使用、管理、應(yīng)急處置等全部相關(guān)事宜，其行為后果由本方承擔(dān)。1.3.3雙方披露的本條款項下信息真實、準(zhǔn)確、完整，無虛假陳述、隱瞞重要事實等情形；若信息發(fā)生變更，應(yīng)在3個工作日內(nèi)書面通知對方。1.3.4雙方均已建立完善的信息安全保密管理制度，具備接收、存儲、處理涉外保密信息的技術(shù)能力和合規(guī)條件，能夠有效防范信息泄露、濫用、篡改等風(fēng)險。Bothpartiesjointlyrepresentandwarrantthat:1.3.1EachpartyhasthelegalsubjectqualificationtosignandperformthisAgreement,andhascorrespondingcivilrightscapacityandcivilconductcapacity;theforeignpartyhasfullyunderstoodtherelevantlaws,regulationsandregulatoryrequirementsofChinaonforeign-relatedinformationconfidentialityandcross-borderdatatransmission,andtheChinesepartyhasfullyunderstoodtherelevantlegalprovisionsoninformationprotectionofthecountry/regionwheretheforeignpartyislocated.1.3.2TheauthorizedcontactpersonofeachpartyhasobtainedeffectivewrittenauthorizationtoactonbehalfoftheirownpartyinhandlingallrelevantmattersunderthisAgreement,includingthereceipt,use,managementandemergencydisposalofconfidentialinformation,andtheconsequencesoftheiractsshallbebornebytheirownparty.1.3.3Theinformationdisclosedbybothpartiesunderthisclauseistrue,accurateandcomplete,withoutfalsestatements,concealmentofimportantfactsandothercircumstances;iftheinformationchanges,theotherpartyshallbenotifiedinwritingwithin3workingdays.1.3.4Bothpartieshaveestablishedasoundinformationsecurityandconfidentialitymanagementsystem,havethetechnicalcapabilitiesandcomplianceconditionstoreceive,storeandprocessforeign-relatedconfidentialinformation,andcaneffectivelypreventriskssuchasinformationleakage,abuseandtampering.第二條保密信息的定義、范圍與除外情形（Article2:Definition,ScopeandExclusionScenariosofConfidentialInformation）2.1定義（Definition）本協(xié)議所稱“保密信息”（ConfidentialInformation），指自生效日起，披露方通過書面文件、電子數(shù)據(jù)、口頭告知、實物展示、技術(shù)交底、會議溝通、跨境數(shù)據(jù)交互等任何形式，向接收方提供、披露或使接收方獲知的，同時滿足下列條件的信息及衍生信息（包括但不限于文本、數(shù)據(jù)、圖表、音頻、視頻、軟件、算法、技術(shù)方案等各類形式）：（1）未通過合法途徑進(jìn)入公共領(lǐng)域，或雖進(jìn)入公共領(lǐng)域但披露方仍對其享有合法保密權(quán)益的；（2）對披露方具有商業(yè)價值、技術(shù)價值、戰(zhàn)略價值或其他重大利益，披露方已采取合理保密措施（包括但不限于標(biāo)注保密標(biāo)識、口頭告知保密義務(wù)、限制接觸范圍、加密存儲、設(shè)置訪問權(quán)限等）的；（3）經(jīng)披露方明確標(biāo)注“保密”“機(jī)密”“內(nèi)部資料”“StrictlyConfidential”“Confidential”等類似標(biāo)識，或口頭明確告知需承擔(dān)保密義務(wù)的。Theterm"ConfidentialInformation"asusedinthisAgreementreferstoinformationandderivativeinformation(includingbutnotlimitedtovariousformssuchastexts,data,charts,audio,video,software,algorithms,technicalschemes,etc.)thattheDisclosingPartyprovides,disclosesormakestheReceivingPartyawareofthroughanyformsuchaswrittendocuments,electronicdata,oralnotification,physicaldisplay,technicaldisclosure,meetingcommunication,cross-borderdatainteraction,etc.,aftertheEffectiveDate,andmeetsthefollowingconditionsatthesametime:(1)Ithasnotenteredthepublicdomainthroughlegalchannels,oralthoughithasenteredthepublicdomain,theDisclosingPartystillenjoyslegalconfidentialityrightsandinterestsinit;(2)Ithascommercialvalue,technicalvalue,strategicvalueorothermajorinterestsfortheDisclosingParty,andtheDisclosingPartyhastakenreasonableconfidentialitymeasures(includingbutnotlimitedtomarkingconfidentialitylabels,orallyinformingofconfidentialityobligations,restrictingthescopeofaccess,encryptedstorage,settingaccesspermissions,etc.);(3)Itisclearlymarkedwith"Confidential","Secret","InternalInformation","StrictlyConfidential"orothersimilarlabelsbytheDisclosingParty,ortheDisclosingPartyhasorallyclearlyinformedthatconfidentialityobligationsshallbeborne.2.2范圍（Scope）保密信息具體包括但不限于以下類別，無論其存在形式如何，均屬于本協(xié)議保密范圍：（1）商業(yè)信息（CommercialInformation）：涉外合作方案、商務(wù)談判策略及底線、客戶名單（含涉外客戶身份信息、合作記錄等）、供應(yīng)商信息、定價策略、銷售數(shù)據(jù)、營收報表、成本預(yù)算、盈利預(yù)測、稅務(wù)籌劃資料、跨境結(jié)算信息、市場調(diào)研報告、商業(yè)計劃等；（2）技術(shù)信息（TechnicalInformation）：核心技術(shù)方案、技術(shù)秘密、專利申請文件、研發(fā)數(shù)據(jù)、測試報告、工藝流程、技術(shù)參數(shù)、軟件源代碼及算法、硬件設(shè)計圖紙、技術(shù)許可文件、技術(shù)交底資料、技術(shù)改進(jìn)方案等；（3）經(jīng)營管理信息（OperationandManagementInformation）：組織架構(gòu)、人員信息、薪酬體系、股權(quán)激勵方案、戰(zhàn)略規(guī)劃、市場布局、渠道資源、合作協(xié)議草案、未公開的重大交易信息、內(nèi)部管理制度及流程等；（4）合規(guī)與資質(zhì)信息（ComplianceandQualificationInformation）：涉外業(yè)務(wù)資質(zhì)證明、監(jiān)管審批文件、備案材料、合規(guī)自查報告、應(yīng)對監(jiān)管調(diào)查的相關(guān)材料、審計報告、資質(zhì)證書復(fù)印件等；（5）個人信息（PersonalInformation）：雙方員工、客戶、合作伙伴的個人身份信息、聯(lián)系方式、財產(chǎn)信息、生物識別信息、健康信息等敏感個人信息及一般個人信息；（6）其他保密信息（OtherConfidentialInformation）：經(jīng)披露方書面確認(rèn)需保密的其他與涉外合作相關(guān)的信息，及雙方在合作過程中獲知的對方未公開的其他信息。ConfidentialInformationspecificallyincludesbutisnotlimitedtothefollowingcategories,whicharewithinthescopeofconfidentialityunderthisAgreementregardlessoftheirformofexistence:(1)CommercialInformation:Foreign-relatedcooperationplans,businessnegotiationstrategiesandbottomlines,customerlists(includingforeign-relatedcustomeridentityinformation,cooperationrecords,etc.),supplierinformation,pricingstrategies,salesdata,revenuestatements,costbudgets,profitforecasts,taxplanningmaterials,cross-bordersettlementinformation,marketresearchreports,businessplans,etc.;(2)TechnicalInformation:Coretechnicalschemes,technicalsecrets,patentapplicationdocuments,R&Ddata,testreports,processflows,technicalparameters,softwaresourcecodesandalgorithms,hardwaredesigndrawings,technicallicensingdocuments,technicaldisclosurematerials,technicalimprovementschemes,etc.;(3)OperationandManagementInformation:Organizationalstructure,personnelinformation,salarysystem,equityincentiveplans,strategicplans,marketlayout,channelresources,draftcooperationagreements,undisclosedmajortransactioninformation,internalmanagementsystemsandprocesses,etc.;(4)ComplianceandQualificationInformation:Foreign-relatedbusinessqualificationcertificates,regulatoryapprovaldocuments,filingmaterials,complianceself-inspectionreports,relevantmaterialsforrespondingtoregulatoryinvestigations,auditreports,copiesofqualificationcertificates,etc.;(5)PersonalInformation:Sensitivepersonalinformationandgeneralpersonalinformationsuchaspersonalidentityinformation,contactinformation,propertyinformation,biometricinformation,healthinformationofemployees,customersandpartnersofbothparties;(6)OtherConfidentialInformation:Otherinformationrelatedtoforeign-relatedcooperationthattheDisclosingPartyconfirmsinwritingtobeconfidential,andotherundisclosedinformationoftheotherpartyobtainedbybothpartiesinthecourseofcooperation.2.3除外情形（ExclusionScenarios）下列信息及相關(guān)行為不受本協(xié)議保密義務(wù)約束：（1）在披露方披露前，已通過合法途徑（如公開出版物、官方公告、第三方合法披露等）進(jìn)入公共領(lǐng)域且可自由獲取的信息；（2）接收方在未接觸、未獲知披露方任何保密信息的前提下，通過獨立研發(fā)、合法受讓、公開渠道查詢、第三方合法授權(quán)等方式自行獲得的信息；（3）依據(jù)雙方所在國家/地區(qū)法律法規(guī)、司法裁判、仲裁裁決、政府監(jiān)管部門（含涉外監(jiān)管機(jī)構(gòu)）的強(qiáng)制性要求，必須披露的信息，且接收方已在法律法規(guī)允許范圍內(nèi)事先書面通知披露方（法律明確禁止通知的除外），并配合披露方采取合理減損措施；（4）披露方通過書面形式明確聲明無需保密、不受本協(xié)議約束的信息；（5）接收方從有權(quán)披露且未對該等信息施加保密義務(wù)的第三方處合法獲取的信息；（6）為履行本協(xié)議及涉外合作必需，且已獲得披露方書面同意的信息使用及傳輸行為。ThefollowinginformationandrelatedactsarenotsubjecttotheconfidentialityobligationsunderthisAgreement:(1)Informationthathasenteredthepublicdomainthroughlegalchannels(suchaspublicpublications,officialannouncements,legaldisclosurebythirdparties,etc.)andisfreelyaccessiblebeforedisclosurebytheDisclosingParty;(2)InformationindependentlyobtainedbytheReceivingPartythroughindependentresearchanddevelopment,legalassignment,publicchannelinquiry,legalauthorizationbythirdparties,etc.,withoutcontactingorobtaininganyConfidentialInformationoftheDisclosingParty;(3)Informationthatmustbedisclosedinaccordancewiththemandatoryrequirementsofthelawsandregulations,judicialjudgments,arbitralawards,governmentregulatoryauthorities(includingforeign-relatedregulatoryauthorities)ofthecountries/regionswherebothpartiesarelocated,andtheReceivingPartyhasnotifiedtheDisclosingPartyinwritinginadvancewithinthescopepermittedbylawsandregulations(exceptwhereexplicitlyprohibitedbylaw),andcooperatedwiththeDisclosingPartytotakereasonablelossreductionmeasures;(4)InformationthattheDisclosingPartyhasclearlystatedinwritingthatnoconfidentialityisrequiredandisnotboundbythisAgreement;(5)InformationlegallyobtainedbytheReceivingPartyfromathirdpartywiththerighttodiscloseandwithoutimposingconfidentialityobligationsonsuchinformation;(6)InformationuseandtransmissionactsthatarenecessaryforperformingthisAgreementandforeign-relatedcooperationandhaveobtainedthewrittenconsentoftheDisclosingParty.第三條保密義務(wù)（Article3:ConfidentialityObligations）3.1接收方核心義務(wù)（CoreObligationsoftheReceivingParty）接收方應(yīng)采取不低于保護(hù)自身同類核心保密信息的嚴(yán)格措施，履行以下保密義務(wù)（本協(xié)議第二條約定的除外情形除外）：（1）人員管控義務(wù)：僅允許經(jīng)本方書面授權(quán)且確有必要的人員接觸、獲取保密信息，建立授權(quán)人員登記臺賬及接觸、使用保密信息的全程記錄（包括接觸時間、內(nèi)容、用途、流轉(zhuǎn)情況等）；對授權(quán)人員進(jìn)行涉外保密法律法規(guī)、信息安全防護(hù)、合規(guī)操作流程等專項培訓(xùn)，并要求其簽署書面保密承諾書；嚴(yán)禁未經(jīng)授權(quán)人員接觸、獲取、使用任何保密信息，嚴(yán)禁授權(quán)人員向任何第三方泄露、傳輸保密信息。（2）存儲與傳輸安全義務(wù)：對書面形式的保密信息，采取上鎖存放、專人保管、借閱登記、使用跟蹤、到期回收等安全措施；對電子形式的保密信息，采取端到端加密存儲、嚴(yán)格訪問權(quán)限設(shè)置（含多因素認(rèn)證）、定期安全檢測與漏洞修復(fù)、病毒防護(hù)、數(shù)據(jù)備份等安全措施；涉及跨境傳輸保密信息的，必須事先完成雙方所在國家/地區(qū)法律法規(guī)要求的全部合規(guī)程序（包括但不限于安全評估、審批、備案等），選擇安全可靠的傳輸渠道（如加密專用線路、合規(guī)跨境數(shù)據(jù)平臺等），并對傳輸過程進(jìn)行全程加密、全程留痕，傳輸日志留存期限不得少于本協(xié)議約定的保密期限。（3）使用限制義務(wù)：嚴(yán)格按照本協(xié)議約定及披露方書面明確的范圍和用途使用保密信息，不得將保密信息用于涉外合作無關(guān)的任何目的；不得對保密信息進(jìn)行反向工程、解密、拆解、復(fù)制、篡改、分發(fā)、出租、出借等非法行為（經(jīng)披露方書面明確授權(quán)的除外）；不得超出授權(quán)范圍向本方內(nèi)部無關(guān)人員披露、傳輸保密信息。（4）第三方管控義務(wù)：未經(jīng)披露方書面明確同意，不得向任何第三方（包括本方關(guān)聯(lián)方、合作伙伴、分包商、顧問、律師、會計師等）披露、傳輸、復(fù)制、使用保密信息，不得委托任何第三方處理、存儲保密信息或進(jìn)行跨境傳輸；確因涉外合作必需委托第三方的，必須事先對第三方的合法資質(zhì)、信息安全保障能力、合規(guī)能力進(jìn)行嚴(yán)格審核，與第三方簽署不低于本協(xié)議保密標(biāo)準(zhǔn)的保密協(xié)議，并對第三方履行義務(wù)的情況進(jìn)行全程監(jiān)督、管理；若第三方違反保密義務(wù)導(dǎo)致保密信息泄露、濫用的，接收方應(yīng)承擔(dān)連帶責(zé)任，并賠償披露方因此遭受的全部損失。（5）歸還與銷毀義務(wù)：涉外合作終止、解除，或收到披露方書面收回保密信息的通知，或不再需要使用保密信息時，應(yīng)立即停止使用該等保密信息，停止所有相關(guān)傳輸行為，并在5個工作日內(nèi)，將全部保密信息載體（包括原件、復(fù)印件、打印件、存儲介質(zhì)、電子備份、緩存數(shù)據(jù)、傳輸留存數(shù)據(jù)等）歸還披露方，或按披露方書面要求的方式（如物理銷毀、永久刪除等）徹底銷毀全部保密信息及相關(guān)載體；銷毀完成后，應(yīng)在3個工作日內(nèi)向披露方提供書面銷毀證明（包括銷毀清單、方式、時間、責(zé)任人等信息），確保無任何殘留信息。（6）風(fēng)險處置義務(wù)：發(fā)現(xiàn)保密信息泄露、丟失、被盜、違規(guī)傳輸或存在泄露風(fēng)險等情形時，應(yīng)立即采取有效措施防止風(fēng)險擴(kuò)大（包括但不限于停止傳輸、封鎖相關(guān)信息、隔離受影響系統(tǒng)、通知相關(guān)方防范等），并在24小時內(nèi)書面通知披露方，詳細(xì)說明事件發(fā)生的時間、地點、原因、涉及的保密信息范圍、已采取的應(yīng)急措施及后續(xù)處置方案；積極配合披露方及雙方所在國家/地區(qū)監(jiān)管部門開展調(diào)查、追責(zé)、風(fēng)險處置等工作。TheReceivingPartyshalltakestrictmeasuresnotlowerthanthoseforprotectingitsownsimilarcoreConfidentialInformation,andperformthefollowingconfidentialityobligations(exceptfortheexclusionscenariosagreedinArticle2ofthisAgreement):(1)PersonnelControlObligation:OnlyallowpersonnelwhohaveobtainedwrittenauthorizationfromtheirownpartyandarereallynecessarytoaccessandobtainConfidentialInformation;establisharegistrationledgerofauthorizedpersonnelandfull-processrecordsofaccessingandusingConfidentialInformation(includingaccesstime,content,purpose,circulationstatus,etc.);conductspecialtrainingonforeign-relatedconfidentialitylawsandregulations,informationsecurityprotection,complianceoperationprocedures,etc.forauthorizedpersonnel,andrequirethemtosignwrittenconfidentialitycommitments;strictlyprohibitunauthorizedpersonnelfromaccessing,obtainingandusinganyConfidentialInformation,andstrictlyprohibitauthorizedpersonnelfromdisclosingandtransmittingConfidentialInformationtoanythirdparty.(2)StorageandTransmissionSecurityObligation:Takesecuritymeasuressuchaslockedstorage,specialpersoncustody,borrowingregistration,usetracking,expirationrecovery,etc.forwrittenConfidentialInformation;takesecuritymeasuressuchasend-to-endencryptedstorage,strictaccesspermissionsettings(includingmulti-factorauthentication),regularsecuritydetectionandvulnerabilityrepair,virusprotection,databackup,etc.forelectronicConfidentialInformation;forcross-bordertransmissionofConfidentialInformation,allcomplianceproceduresrequiredbythelawsandregulationsofthecountries/regionswherebothpartiesarelocated(includingbutnotlimitedtosecurityassessment,approval,filing,etc.)mustbecompletedinadvance,selectasafeandreliabletransmissionchannel(suchasencrypteddedicatedline,compliantcross-borderdataplatform,etc.),andconductfull-processencryptionandfull-processtraceabilityforthetransmissionprocess;theretentionperiodoftransmissionlogsshallnotbelessthantheconfidentialityperiodagreedinthisAgreement.(3)UseRestrictionObligation:StrictlyuseConfidentialInformationwithinthescopeandpurposeagreedinthisAgreementandclearlyspecifiedinwritingbytheDisclosingParty,andshallnotuseConfidentialInformationforanypurposeunrelatedtoforeign-relatedcooperation;shallnotconductillegalactssuchasreverseengineering,decryption,disassembly,copying,tampering,distribution,leasing,lendingofConfidentialInformation(exceptwithexplicitwrittenauthorizationfromtheDisclosingParty);shallnotdiscloseortransmitConfidentialInformationtoirrelevantinternalpersonnelofitsownpartybeyondtheauthorizedscope.(4)Third-PartyControlObligation:WithouttheexplicitwrittenconsentoftheDisclosingParty,shallnotdisclose,transmit,copyoruseConfidentialInformationtoanythirdparty(includingitsownaffiliates,partners,subcontractors,consultants,lawyers,accountants,etc.),andshallnotentrustanythirdpartytoprocess,storeConfidentialInformationorconductcross-bordertransmission;ifitisreallynecessarytoentrustathirdpartyduetoforeign-relatedcooperation,theReceivingPartymustfirststrictlyreviewthelegalqualifications,informationsecurityassurancecapabilitiesandcompliancecapabilitiesofthethirdparty,signaconfidentialityagreementwiththethirdpartythatisnotlowerthantheconfidentialitystandardsofthisAgreement,andconductfull-processsupervisionandmanagementofthethirdparty'sperformanceofobligations;ifthethirdpartyviolatestheconfidentialityobligationsleadingtotheleakageorabuseofConfidentialInformation,theReceivingPartyshallbejointlyandseverallyliableandcompensatetheDisclosingPartyforalllossessufferedthereby.(5)ReturnandDestructionObligation:Whentheforeign-relatedcooperationisterminatedorrescinded,orawrittennoticefromtheDisclosingPartytorecallConfidentialInformationisreceived,oritisnolongernecessarytouseConfidentialInformation,theReceivingPartyshallimmediatelystopusingsuchConfidentialInformation,stopallrelevanttransmissionacts,andwithin5workingdays,returnallConfidentialInformationcarriers(includingoriginals,copies,prints,storagemedia,electronicbackups,cachedata,transmissionretaineddata,etc.)totheDisclosingParty,orcompletelydestroyallConfidentialInformationandrelatedcarriersinthemannerspecifiedinwritingbytheDisclosingParty(suchasphysicaldestruction,permanentdeletion,etc.);afterthecompletionofdestruction,theReceivingPartyshallprovideawrittendestructioncertificate(includingdestructionlist,method,time,responsiblepersonandotherinformation)totheDisclosingPartywithin3workingdaystoensurethatthereisnoresidualinformation.(6)RiskDisposalObligation:IfitisfoundthatConfidentialInformationisleaked,lost,stolen,illegallytransmittedorthereisariskofleakage,etc.,theReceivingPartyshallimmediatelytakeeffectivemeasurestopreventtheexpansionofrisks(includingbutnotlimitedtostoppingtransmission,blockingrelevantinformation,isolatingaffectedsystems,notifyingrelevantpartiestoprevent,etc.),andnotifytheDisclosingPartyinwritingwithin24hours,detailingthetime,place,causeoftheincident,thescopeofinvolvedConfidentialInformation,theemergencymeasurestakenandthesubsequentdisposalplan;activelycooperatewiththeDisclosingPartyandtheregulatoryauthoritiesofthecountries/regionswherebothpartiesarelocatedincarryingoutinvestigation,accountability,riskdisposalandotherwork.3.2披露方核心義務(wù)（CoreObligationsoftheDisclosingParty）披露方應(yīng)履行以下保密相關(guān)義務(wù)：（1）分類標(biāo)識與告知義務(wù)：按保密信息的敏感程度、重要性，將其明確分為核心保密信息、重要保密信息、一般保密信息三類，在提供或披露時，應(yīng)通過書面標(biāo)注、電子標(biāo)識或口頭明確告知等方式，向接收方說明該等信息的保密等級、保密期限、使用限制、跨境傳輸要求及泄露風(fēng)險；對于涉及個人信息、重要數(shù)據(jù)的保密信息，應(yīng)額外告知接收方該等信息的類型、敏感屬性及合規(guī)要求。（2）合規(guī)披露義務(wù)：嚴(yán)格遵循“最小必要”原則，僅為實現(xiàn)涉外合作目的，向接收方披露必需的保密信息，不得超出合作范圍披露無關(guān)信息；涉及跨境傳輸?shù)?，?yīng)提前向接收方告知該等信息跨境傳輸所需履行的合規(guī)程序，并積極配合接收方完成相關(guān)手續(xù)。（3）內(nèi)部管控義務(wù)：建立健全內(nèi)部保密管理制度及涉外信息披露審批機(jī)制，對內(nèi)部接觸、處理、傳輸保密信息的人員進(jìn)行專項培訓(xùn)，明確各崗位人員的保密職責(zé)及問責(zé)機(jī)制；對保密信息采取必要的安全防護(hù)措施，防范內(nèi)部泄露、濫用等風(fēng)險。（4）監(jiān)督與提醒義務(wù)：有權(quán)定期或不定期對接收方履行本協(xié)議義務(wù)的情況進(jìn)行檢查、核實（包括但不限于保密信息的存儲情況、使用范圍、跨境傳輸合規(guī)性等），接收方應(yīng)予以配合；發(fā)現(xiàn)接收方存在信息泄露隱患或違規(guī)行為的，應(yīng)立即書面通知接收方，要求其限期整改，并有權(quán)暫停披露后續(xù)保密信息。TheDisclosingPartyshallperformthefollowingconfidentiality-relatedobligations:(1)Classification,IdentificationandNotificationObligation:ClassifyConfidentialInformationintothreecategories(coreConfidentialInformation,importantConfidentialInformationandgeneralConfidentialInformation)accordingtoitssensitivityandimportance;whenprovidingordisclosingit,theDisclosingPartyshallinformtheReceivingPartyoftheconfidentialitylevel,confidentialityperiod,userestrictions,cross-bordertransmissionrequirementsandleakagerisksofsuchinformationthroughwrittenmarking,electronicidentificationororalexplicitnotification,etc.;forConfidentialInformationinvolvingpersonalinformationandimportantdata,theDisclosingPartyshalladditionallyinformtheReceivingPartyofthetype,sensitiveattributesandcompliancerequirementsofsuchinformation.(2)ComplianceDisclosureObligation:Strictlyfollowthe"minimumnecessary"principle,discloseonlythenecessaryConfidentialInformationtotheReceivingPartyforthepurposeofrealizingforeign-relatedcooperation,andshallnotdiscloseirrelevantinformationbeyondthescopeofcooperation;ifcross-bordertransmissionisinvolved,theDisclosingPartyshallinformtheReceivingPartyinadvanceofthecomplianceproceduresrequiredforcross-bordertransmissionofsuchinformation,andactivelycooperatewiththeReceivingPartytocompleterelevantprocedures.(3)InternalControlObligation:Establishandimproveinternalconfidentialitymanagementsystemsandforeign-relatedinformationdisclosureapprovalmechanisms,conductspecialtrainingforinternalpersonnelwhocontact,processandtransmitConfidentialInformation,andclarifytheconfidentialityresponsibilitiesandaccountabilitymechanismsofpersonnelinvariouspositions;takenecessarysecurityprotectionmeasuresforConfidentialInformationtopreventriskssuchasinternalleakageandabuse.(4)SupervisionandReminderObligation:HastherighttoconductregularorirregularinspectionsandverificationsontheReceivingParty'sperformanceofobligationsunderthisAgreement(includingbutnotlimitedtothestoragestatus,scopeofuse,complianceofcross-bordertransmissionofConfidentialInformation,etc.),andtheReceivingPartyshallcooperate;ifitisfoundthattheReceivingPartyhashiddendangersofinformationleakageorillegalacts,theDisclosingPartyshallimmediatelynotifytheReceivingPartyinwriting,requireittorectifywithinatimelimit,andhastherighttosuspendthedisclosureofsubsequentConfidentialInformation.3.3保密期限（ConfidentialityPeriod）（1）本協(xié)議項下保密信息的保密期限，自接收方首次接觸、獲取該等保密信息之日起計算，至該信息通過合法途徑成為完全公開信息且披露方不再享有任何保密權(quán)益之日止；（2）不同等級保密信息的最低保密期限：核心保密信息不少于10年，重要保密信息不少于5年，一般保密信息不少于3年；（3）本協(xié)議終止、解除或涉外合作完全結(jié)束后，本協(xié)議約定的保密期限繼續(xù)有效，接收方仍需嚴(yán)格履行本協(xié)議項下的全部保密義務(wù)，直至本條第（1）款約定的條件成就；（4）若雙方所在國家/地區(qū)法律法規(guī)對某類保密信息（如商業(yè)秘密、技術(shù)秘密、個人信息等）的保密期限有更長強(qiáng)制性規(guī)定的，從其規(guī)定；（5）跨境傳輸?shù)谋Ｃ苄畔?，其保密期限不受傳輸行為結(jié)束、存儲地點變更等因素影響，仍按本條約定執(zhí)行。(1)TheconfidentialityperiodofConfidentialInformationunderthisAgreementshallbecalculatedfromthedateonwhichtheReceivingPartyfirstcontactsandobtainssuchConfidentialInformation,untiltheinformationbecomesfullypublicinformationthroughlegalchannelsandtheDisclosingPartynolongerenjoysanyconfidentialityrightsandinterests;(2)TheminimumconfidentialityperiodfordifferentlevelsofConfidentialInformation:notlessthan10yearsforcoreConfidentialInformation,notlessthan5yearsforimportantConfidentialInformation,andnotlessthan3yearsforgeneralConfidentialInformation;(3)Afterthetermination,rescissionofthisAgreementorthecompleteendofforeign-relatedcooperation,theconfidentialityperiodagreedinthisAgreementshallremainvalid,andtheReceivingPartyshallstillstrictlyperformallconfidentialityobligationsunderthisAgreementuntiltheconditionsagreedinClause(1)ofthisArticlearemet;(4)Ifthelawsandregulationsofthecountries/regionswherebothpartiesarelocatedhavelongermandatoryprovisionsontheconfidentialityperiodofacertaintypeofConfidentialInformation(suchastradesecrets,technicalsecrets,personalinformation,etc.),suchprovisionsshallprevail;(5)TheconfidentialityperiodofConfidentialInformationsubjecttocross-bordertransmissionshallnotbeaffectedbyfactorssuchastheendoftransmissionandthechangeofstoragelocation,andshallstillbeimplementedinaccordancewiththeprovisionsofthisArticle.第四條涉外合規(guī)特別約定（Article4:SpecialAgreementsonForeign-RelatedCompliance）4.1跨境數(shù)據(jù)傳輸合規(guī)（ComplianceofCross-BorderDataTransmission）雙方一致確認(rèn)，跨境數(shù)據(jù)傳輸是本協(xié)議履行的重要環(huán)節(jié)，必須嚴(yán)格遵守以下合規(guī)要求：（1）中方應(yīng)嚴(yán)格遵守《中華人民共和國數(shù)據(jù)安全法》《中華人民共和國個人信息保護(hù)法》《數(shù)據(jù)出境安全評估辦法》等中國法律法規(guī)及監(jiān)管規(guī)定，對于屬于重要數(shù)據(jù)、個人信息（尤其是敏感個人信息）的保密信息，跨境傳輸前必須完成安全評估、審批、備案等法定程序，嚴(yán)禁未經(jīng)合規(guī)程序擅自跨境傳輸；（2）外方應(yīng)確保其接收、存儲、處理、使用跨境傳輸?shù)谋Ｃ苄畔⒌男袨?，?yán)格符合其所在國家/地區(qū)關(guān)于數(shù)據(jù)保護(hù)、信息安全的法律法規(guī)及監(jiān)管要求，不得違反當(dāng)?shù)貜?qiáng)制性規(guī)定，不得將接收的保密信息傳輸至第三方國家/地區(qū)（經(jīng)披露方書面同意且符合雙方所在國家/地區(qū)法律法規(guī)的除外）；（3）若雙方所在國家/地區(qū)之間有關(guān)于數(shù)據(jù)跨境傳輸?shù)碾p邊協(xié)議、多邊公約或共識，跨境數(shù)據(jù)傳輸行為還應(yīng)符合該等協(xié)議、公約或共識的要求；（4）在本協(xié)議履行期間，若雙方所在國家/地區(qū)關(guān)于跨境數(shù)據(jù)傳輸?shù)姆煞ㄒ?guī)、監(jiān)管要求發(fā)生變更，雙方應(yīng)在變更生效后15個工作日內(nèi)，協(xié)商調(diào)整跨境傳輸方案及相關(guān)義務(wù)，確?？缇硵?shù)據(jù)傳輸行為始終符合最新合規(guī)要求；（5）一方要求另一方提供跨境數(shù)據(jù)傳輸合規(guī)證明文件（如安全評估報告、審批文件、備案憑證等）的，另一方應(yīng)在合理期限內(nèi)提供，不得拒絕或拖延；雙方應(yīng)相互配合提供跨境合規(guī)所需的相關(guān)材料。Bothpartiesconfirmthatcross-borderdatatransmissionisanimportantlinkintheperformanceofthisAgreement,andmuststrictlycomplywiththefollowingcompliancerequirements:(1)TheChinesepartyshallstrictlyabidebytheDataSecurityLawofthePeople'sRepublicofChina,thePersonalInformationProtectionLawofthePeople'sRepublicofChina,theMeasuresforSecurityAssessmentofDataOutboundandotherChineselaws,regulationsandregulatoryprovisions;forConfidentialInformationthatbelongstoimportantdataandpersonalinformation(especiallysensitivepersonalinformation),legalproceduressuchassecurityassessment,approvalandfilingmustbecompletedbeforecross-bordertransmission,anditisstrictlyprohibitedtoarbitrarilyconductcross-bordertransmissionwithoutcomplianceprocedures;(2)Theforeignpartyshallensurethatitsactsofreceiving,storing,processingandusingcross-bordertransmittedConfidentialInformationstrictlycomplywiththelaws,regulationsandregulatoryrequirementsondataprotectionandinformationsecurityofitscountry/regionofincorporation,shallnotviolatelocalmandatoryprovisi