eBook

Complying with Hong Kong’s Critical Infrastructure Bill

Complying with Hong Kong’s Critical Infrastructure Bill - eBook

Complying with The Protection of Critical Infrastructures Bill in Hong Kong

On March 19, 2025, Hong Kong’s Legislative Council passed the Protection of Critical Infrastructures (Computer Systems) Bill (the “CI Bill”) to enhance cybersecurity standards for essential services and critical societal or economic activities in Hong Kong. The CI Bill is set to take effect on January 1, 2026 aims to protect the security of the critical computer systems (CCS) of critical infrastructures (CIs), to regulate CIs’ operators (i.e., critical infrastructure operators (CIO)) and to provide for the investigation into, and response to, computer-system security threats and incidents.

The Protection of Critical Infrastructures (Computer Systems) Bill (CI Bill) strengthens the cybersecurity of critical infrastructure and minimize disruption of essential services in Hong Kong; Thales’ solutions can help CIOs address the requirements in Bill by simplifying compliance and automating security reducing the burden on security and compliance teams.

Organizations can leverage Thales’ suite of identity, application and data security solutions available on a single unified platform to become compliant today and stay compliant in the future. Contact us now!

Download this Resource

Blog

With the latest Protection of Critical Infrastructures Law in Hong Kong, it's essential to ensure your organization is prepared.

Thales offers a comprehensive suite of cybersecurity solutions across three key areas:

  • Application Security
  • Data Security
  • Identity and Access Management

Find out more about how our solutions help organizations meet the Codes of Practice in the law.

Preparing for Hong Kong’s Protection of Critical Infrastructures (Computer Systems) Bill

Navigating Hong Kong’s Critical Infrastructure Protection Law

Webinar

Navigating Hong Kong’s Critical Infrastructure Protection Law

The Hong Kong Government has introduced the Protection of Critical Infrastructures (Computer Systems) Bill to enhance cybersecurity standards for essential services and critical societal or economic activities, and the Bill was passed into law on March 19th, 2025.