On September 26, at the 2023 Data Elements Development Conference, the Big Data Technology Standards Promotion Committee of the China Communications Standards Association (CCSA TC601) released the "Privacy Engineering White Paper." CCSA TC601, together with companies experienced in privacy engineering theory and practice, such as Xingji Meizu Group, co-authored the white paper. It details the theoretical development of privacy engineering and the practical experiences of Chinese companies in this field, providing an important reference for the privacy protection capability building across the industry.
To support the drafting of the "Privacy Engineering White Paper," Xingji Meizu Group provided a systematic privacy engineering solution, covering areas such as knowledge building, process integration, and privacy design components. The company shared its mature internal practices with the entire industry, contributing to building a solid security and privacy barrier for consumers.
The Xingji Meizu Group has refined its knowledge base through product practice, encompassing the knowledge and experience accumulated from the compliance implementation of multiple types of smart terminals, including smart electric vehicles, smartphones, and XR devices. This knowledge base is characterized by its cross-functional, multi-type, and user-friendly features, transforming personal information protection compliance requirements and industry practices into privacy design solutions, development tools, and test cases tailored to the specific characteristics of terminals, ensuring that R&D teams can understand and apply them effectively.
Additionally, the Xingji Meizu Group has integrated an embedded privacy engineering process into its multi-terminal development workflow. This process covers five key stages: requirements, design, development, testing, and release. It ensures that products adhere to information security and personal privacy protection principles throughout their entire lifecycle, effectively implementing the advanced concept of privacy engineering into business practice.
In addition, based on its practical privacy engineering knowledge base, Xingji Meizu Group has modularized privacy design components to facilitate reuse across different business platforms. For instance, the group has developed an effective consent management solution, which includes consent interfaces, privacy settings interfaces, and consent records. These components are plug-and-play, allowing for quick replication and deployment across various business units.
Xingji Meizu Group is a full-stack smart terminal platform that spans multiple sectors, including "smart electric vehicles + smartphones + XR + advanced technology." The group places a strong emphasis on information security management and personal data protection. After continuous efforts, in July this year, the group obtained two certifications from the British Standards Institution (BSI): ISO 27001 for Information Security Management Systems and ISO 27701 for Privacy Information Management Systems. Furthermore, in September, they were awarded the ISO/SAE 21434 certification for automotive cybersecurity. These three important international ISO certifications demonstrate that Xingji Meizu Group's efforts in information security and privacy protection, across all terminals and throughout the entire process, have received authoritative international recognition.
Looking ahead, Xingji Meizu Group will continue to advance its privacy engineering initiatives, adhering to the Privacy by Design principle. The company will embed information security and personal privacy protection throughout the entire lifecycle of product design and development, ensuring users receive a higher level of security and privacy assurance.