Alibaba Cloud responded to "disclosure of user information to a third party without consent": employee violation of discipline has been dealt with

Recently, a letter from the Zhejiang Provincial Communications Administration to the complainant on July 5 circulated on the Internet, verifying that Alibaba Cloud Computing Co., Ltd. had leaked the registration information retained by the user to a third-party partner company without the user’s consent. The behavior has violated the cyber security law.

On August 23, the relevant person in charge of the Zhejiang Provincial Communications Administration responded that the reply letter numbered [2021] No. 483 was true and that Alibaba Cloud Computing Co., Ltd. had been ordered to make corrections.

The reply letter revealed that the behavior of Alibaba Cloud Computing Co., Ltd. violated Article 42 of the "Cyber Security Law of the People's Republic of China". According to Article 64 of the "Cyber Security Law of the People's Republic of China," our bureau has ordered Alibaba Cloud Calculation Co., Ltd. corrected.

Article 64 of the "Cyber Security Law of the People's Republic of China" stipulates that network operators, network product or service providers violate the provisions of Article 22, paragraph 3, and Articles 41 to 43 of this law Anyone who violates the right to protect personal information in accordance with the law shall be ordered by the relevant competent authority to make corrections, and may be subject to a single or concurrent warning, confiscation of illegal gains, and fines of one to ten times the illegal gains. If there is no illegal gains, one penalty shall be imposed. A fine of less than one million yuan, and the directly responsible person in charge and other directly responsible personnel will be fined between 10,000 yuan and 100,000 yuan; if the circumstances are serious, they may be ordered to suspend the relevant business, suspend business for rectification, close the website, and revoke the relevant business license Or revoke the business license.

Regarding this incident, Alibaba Cloud responded: According to self-examination, the complaint should be around Double 11 in 2019. A telemarketing employee of Alibaba Cloud violated company discipline and used work convenience to privately obtain customer contact information and disclose it to distributor employees. , Which triggered a customer complaint.

In this regard, Alibaba Cloud stated that: the company strictly prohibits employees from leaking user registration information to third parties, has dealt with the incident seriously in accordance with the company system, and has actively rectified and improved in accordance with the requirements of the Zhejiang Provincial Communications Administration, and strengthened and improved the deficiencies in the personnel management. .