Tuesday, April 11, 2023

国家互联网信息办公室关于《生成式人工智能服务管理办法(征求意见稿)》公开征求意见的通知 [Notice of the Cyberspace Administration of China on Public Comments on the "Administrative Measures for Generative Artificial Intelligence Services (Draft for Comment)"]

 

Pix Credit: "What is Generative Artificial Intelligence (AI)?"

The issue of generative AI has become a global issue. "Generative algorithms create data using models of the world to synthesize images, sounds and videos that often look increasingly realistic. The algorithms begin with models of what a world must be like and then they create a simulated world that fits the model." ("What is Generative Artificial Intelligence (AI)?"). While it is quite useful, the fear of its ability to deceive or manipulate--the so-called deep fake issue, among others--have begun to generate policy responses.  

On 11 April 2023, the Chinese State Cyberspace Administration has distributed for comment a draft "Generative Artificial Intelligence Service Management Measures."  The Draft was summarized for Chinese readers this way by the Communications Industry Network News [通信产业网讯] (sponsored by the Ministry of Industry and Information Technology of the People's Republic of China and China Electronics Information Development Research Institute (CCID Group)):

 In order to promote the healthy development and standardized application of generative artificial intelligence technology, according to the "Network Security Law of the People's Republic of China" and other laws and regulations, the State Internet Information Office has recently drafted the "Generative Artificial Intelligence Service Management Measures (Solicitation of Comments) draft)”, and is now open to the public for comments.

The draft for comments clarifies that the provision of generative artificial intelligence services shall be in accordance with the provisions of the "Network Security Law of the People's Republic of China", requiring users to provide real identity information. Providers should clarify and disclose the applicable groups, occasions, and uses of their services, and take appropriate measures to prevent users from relying too much on or indulging in generated content. During the process of providing services, the provider undertakes the obligation to protect the user's input information and usage records. It is not allowed to illegally retain input information that can infer the user's identity, it is not allowed to make portraits based on user input information and usage conditions, and it is not allowed to provide user input information to others. Where laws and regulations provide otherwise, those provisions shall prevail.

The draft for comments also clarifies that the provider shall not generate discriminatory content based on the user's race, country, gender, etc. The provider shall establish a mechanism for receiving and handling user complaints, and promptly deal with individuals' requests for correction, deletion, and blocking of their personal information; discovering and knowing that generated text, pictures, sounds, and videos infringe on other people's portrait rights, reputation rights, personal privacy, and business interests. If it is secret, or does not meet the requirements of these measures, measures should be taken to stop the generation and prevent the harm from continuing.

The scope of the Measure is quite broad.  Artice 2 provides that 本办法所称生成式人工智能,是指基于算法、模型、规则生成文本、图片、声音、视频、代码等内容的技术。["The generative artificial intelligence referred to in these Measures refers to technologies that generate text, pictures, sounds, videos, codes, and other content based on algorithms, models, and rules."].  The content produced--whether fr domestic consumption or for outward projection must conform to core ideological principles:

利用生成式人工智能生成的内容应当体现社会主义核心价值观,不得含有颠覆国家政权、推翻社会主义制度,煽动分裂国家、破坏国家统一,宣扬恐怖主义、极端主义,宣扬民族仇恨、民族歧视,暴力、淫秽色情信息,虚假信息,以及可能扰乱经济秩序和社会秩序的内容。[The content generated by generative artificial intelligence should reflect the core values of socialism, and must not contain subversion of state power, overthrow of the socialist system, incitement to split the country, undermine national unity, promote terrorism, extremism, and promote ethnic hatred and ethnic discrimination , violence, obscene and pornographic information, false information, and content that may disrupt economic and social order.] (Article 4(1)
It must avoid discrimination, respect intellectual property rights, must avoid the generation of false information, and respect the interests of others. (Ibid. (2)-(5)). The Measure requires compliance with the "Network Security Law of the PRC" [《中华人民共和国网络安全法》]. As is usual, a certain quantum of prior approvals further enmesh this provision and its obligations into other related measures:

a security assessment shall be submitted to the national network information department in accordance with the "Regulations on the Security Assessment of Internet Information Services with Public Opinion Attributes or Social Mobilization Capabilities" and the "Internet Information Service Algorithm Recommendations" "Management Regulations" to carry out the procedures of algorithm filing, modification, and cancellation filing.[应当按照《具有舆论属性或社会动员能力的互联网信息服务安全评估规定》向国家网信部门申报安全评估,并按照《互联网信息服务算法推荐管理规定》履行算法备案和变更、注销备案手续。] (Ibid., Article 6). See also Article 17.

In addition, the Measure provides for civil and criminal penalties (Ibid., Article 20) and provisions for content removal (Ibid, Article 19). Also included are some transparency and capacity building obligations among the general public (Ibid., Articles 16-17). 

The announcement of the Draft along with instructions for submitting comments follows below in the original Chinese and a crude English translation.

 


国家互联网信息办公室关于《生成式人工智能服务管理办法(征求意见稿)》公开征求意见的通知

2023年04月11日 12:51 来源: 中国网信网


【打印】 【纠错】

为促进生成式人工智能技术健康发展和规范应用,根据《中华人民共和国网络安全法》等法律法规,国家互联网信息办公室起草了《生成式人工智能服务管理办法(征求意见稿)》,现向社会公开征求意见。公众可通过以下途径和方式提出反馈意见:

1.登录中华人民共和国司法部 中国政府法制信息网(www.moj.gov.cn、www.chinalaw.gov.cn),进入首页主菜单的“立法意见征集”栏目提出意见。
2.通过电子邮件方式发送至:wajscy@cac.gov.cn。
3.通过信函方式将意见寄至:北京市海淀区阜成路15号国家互联网信息办公室网络安全协调局,邮编100048,并在信封上注明“生成式人工智能服务管理办法征求意见”。
意见反馈截止时间为2023年5月10日。
附件:生成式人工智能服务管理办法(征求意见稿)
国家互联网信息办公室
2023年4月11日



生成式人工智能服务管理办法
(征求意见稿)

第一条 为促进生成式人工智能健康发展和规范应用,根据《中华人民共和国网络安全法》《中华人民共和国数据安全法》《中华人民共和国个人信息保护法》等法律、行政法规,制定本办法。
第二条 研发、利用生成式人工智能产品,面向中华人民共和国境内公众提供服务的,适用本办法。
本办法所称生成式人工智能,是指基于算法、模型、规则生成文本、图片、声音、视频、代码等内容的技术。
第三条 国家支持人工智能算法、框架等基础技术的自主创新、推广应用、国际合作,鼓励优先采用安全可信的软件、工具、计算和数据资源。
第四条 提供生成式人工智能产品或服务应当遵守法律法规的要求,尊重社会公德、公序良俗,符合以下要求:
(一)利用生成式人工智能生成的内容应当体现社会主义核心价值观,不得含有颠覆国家政权、推翻社会主义制度,煽动分裂国家、破坏国家统一,宣扬恐怖主义、极端主义,宣扬民族仇恨、民族歧视,暴力、淫秽色情信息,虚假信息,以及可能扰乱经济秩序和社会秩序的内容。
(二)在算法设计、训练数据选择、模型生成和优化、提供服务等过程中,采取措施防止出现种族、民族、信仰、国别、地域、性别、年龄、职业等歧视。
(三)尊重知识产权、商业道德,不得利用算法、数据、平台等优势实施不公平竞争。
(四)利用生成式人工智能生成的内容应当真实准确,采取措施防止生成虚假信息。
(五)尊重他人合法利益,防止伤害他人身心健康,损害肖像权、名誉权和个人隐私,侵犯知识产权。禁止非法获取、披露、利用个人信息和隐私、商业秘密。
第五条 利用生成式人工智能产品提供聊天和文本、图像、声音生成等服务的组织和个人(以下称“提供者”),包括通过提供可编程接口等方式支持他人自行生成文本、图像、声音等,承担该产品生成内容生产者的责任;涉及个人信息的,承担个人信息处理者的法定责任,履行个人信息保护义务。
第六条 利用生成式人工智能产品向公众提供服务前,应当按照《具有舆论属性或社会动员能力的互联网信息服务安全评估规定》向国家网信部门申报安全评估,并按照《互联网信息服务算法推荐管理规定》履行算法备案和变更、注销备案手续。
第七条 提供者应当对生成式人工智能产品的预训练数据、优化训练数据来源的合法性负责。
用于生成式人工智能产品的预训练、优化训练数据,应满足以下要求:
(一)符合《中华人民共和国网络安全法》等法律法规的要求;
(二)不含有侵犯知识产权的内容;
(三)数据包含个人信息的,应当征得个人信息主体同意或者符合法律、行政法规规定的其他情形;
(四)能够保证数据的真实性、准确性、客观性、多样性;
(五)国家网信部门关于生成式人工智能服务的其他监管要求。
第八条 生成式人工智能产品研制中采用人工标注时,提供者应当制定符合本办法要求,清晰、具体、可操作的标注规则,对标注人员进行必要培训,抽样核验标注内容的正确性。
第九条 提供生成式人工智能服务应当按照《中华人民共和国网络安全法》规定,要求用户提供真实身份信息。
第十条 提供者应当明确并公开其服务的适用人群、场合、用途,采取适当措施防范用户过分依赖或沉迷生成内容。
第十一条 提供者在提供服务过程中,对用户的输入信息和使用记录承担保护义务。不得非法留存能够推断出用户身份的输入信息,不得根据用户输入信息和使用情况进行画像,不得向他人提供用户输入信息。法律法规另有规定的,从其规定。
第十二条 提供者不得根据用户的种族、国别、性别等进行带有歧视性的内容生成。
第十三条 提供者应当建立用户投诉接收处理机制,及时处置个人关于更正、删除、屏蔽其个人信息的请求;发现、知悉生成的文本、图片、声音、视频等侵害他人肖像权、名誉权、个人隐私、商业秘密,或者不符合本办法要求时,应当采取措施,停止生成,防止危害持续。
第十四条 提供者应当在生命周期内,提供安全、稳健、持续的服务,保障用户正常使用。
第十五条 对于运行中发现、用户举报的不符合本办法要求的生成内容,除采取内容过滤等措施外,应在3个月内通过模型优化训练等方式防止再次生成。
第十六条 提供者应当按照《互联网信息服务深度合成管理规定》对生成的图片、视频等内容进行标识。
第十七条 提供者应当根据国家网信部门和有关主管部门的要求,提供可以影响用户信任、选择的必要信息,包括预训练和优化训练数据的来源、规模、类型、质量等描述,人工标注规则,人工标注数据的规模和类型,基础算法和技术体系等。
第十八条 提供者应当指导用户科学认识和理性使用生成式人工智能生成的内容,不利用生成内容损害他人形象、名誉以及其他合法权益,不进行商业炒作、不正当营销。
用户发现生成内容不符合本办法要求时,有权向网信部门或者有关主管部门举报。
第十九条 提供者发现用户利用生成式人工智能产品过程中违反法律法规,违背商业道德、社会公德行为时,包括从事网络炒作、恶意发帖跟评、制造垃圾邮件、编写恶意软件,实施不正当的商业营销等,应当暂停或者终止服务。
第二十条 提供者违反本办法规定的,由网信部门和有关主管部门按照《中华人民共和国网络安全法》《中华人民共和国数据安全法》《中华人民共和国个人信息保护法》等法律、行政法规的规定予以处罚。
法律、行政法规没有规定的,由网信部门和有关主管部门依据职责给予警告、通报批评,责令限期改正;拒不改正或者情节严重的,责令暂停或者终止其利用生成式人工智能提供服务,并处一万元以上十万元以下罚款。构成违反治安管理行为的,依法给予治安管理处罚;构成犯罪的,依法追究刑事责任。
第二十一条 本办法自2023年 月 日起实施。

 

 Notice of the Cyberspace Administration of China on Public Comments on the "Administrative Measures for Generative Artificial Intelligence Services (Draft for Comment)"
April 11, 2023 12:51 Source: China Netcom

In order to promote the healthy development and standardized application of generative artificial intelligence technology, in accordance with the "Network Security Law of the People's Republic of China" and other laws and regulations, the Cyberspace Administration of China has drafted the "Management Measures for Generative Artificial Intelligence Services (Draft for Comment)", which is now released to the public Open for comments. The public can submit feedback through the following channels and methods:

1. Log in to the Chinese Government Legal Information Network of the Ministry of Justice of the People's Republic of China (www.moj.gov.cn, www.chinalaw.gov.cn), and enter the "Legislative Opinion Collection" column of the main menu on the homepage to submit opinions.
2. Send it by email to: wajscy@cac.gov.cn.
3. Send comments by letter to: Cybersecurity Coordination Bureau of the National Internet Information Office, No. 15 Fucheng Road, Haidian District, Beijing, Zip Code 100048, and mark "Generative Artificial Intelligence Service Management Measures for Comments" on the envelope.
The deadline for comments and feedback is May 10, 2023.
Attachment: Administrative Measures for Generative Artificial Intelligence Services (Draft for Comment)
State Internet Information Office
April 11, 2023


Measures for the Management of Generative Artificial Intelligence Services
(Draft for comments)

Article 1 In order to promote the healthy development and standardized application of generative artificial intelligence, these measures are formulated in accordance with laws and administrative regulations such as the "Network Security Law of the People's Republic of China", "Data Security Law of the People's Republic of China", "Personal Information Protection Law of the People's Republic of China" and other laws and administrative regulations .

Article 2 These Measures apply to research, development and utilization of generative artificial intelligence products to provide services to the public within the territory of the People's Republic of China.

The generative artificial intelligence referred to in these Measures refers to technologies that generate text, pictures, sounds, videos, codes, and other content based on algorithms, models, and rules.

Article 3 The state supports the independent innovation, popularization and application, and international cooperation of basic technologies such as artificial intelligence algorithms and frameworks, and encourages the priority use of safe and reliable software, tools, computing, and data resources.
Article 4 The provision of generative artificial intelligence products or services shall comply with the requirements of laws and regulations, respect social morality, public order and good customs, and meet the following requirements:

(1) The content generated by generative artificial intelligence should reflect the core values of socialism, and must not contain subversion of state power, overthrow of the socialist system, incitement to split the country, undermine national unity, promote terrorism, extremism, and promote ethnic hatred and ethnic discrimination , violence, obscene and pornographic information, false information, and content that may disrupt economic and social order.
(2) In the process of algorithm design, training data selection, model generation and optimization, and service provision, take measures to prevent discrimination based on race, ethnicity, belief, country, region, gender, age, occupation, etc.
(3) Respect intellectual property rights and business ethics, and shall not use advantages such as algorithms, data, and platforms to implement unfair competition.
(4) The content generated by generative artificial intelligence should be true and accurate, and measures should be taken to prevent the generation of false information.
(5) Respect the legitimate interests of others, prevent harm to the physical and mental health of others, damage portrait rights, reputation rights and personal privacy, and infringe intellectual property rights. Illegal acquisition, disclosure, and use of personal information, privacy, and business secrets are prohibited.

Article 5 Organizations and individuals that use generative artificial intelligence products to provide services such as chat and text, image, and sound generation (hereinafter referred to as "providers"), including supporting others to generate text, image, and sound by providing programmable interfaces, etc. etc., assume the responsibility of the producer of the content generated by the product; if personal information is involved, assume the statutory responsibility of the personal information processor and fulfill the obligation to protect personal information.

Article 6 Before using generative artificial intelligence products to provide services to the public, a security assessment shall be submitted to the national network information department in accordance with the "Regulations on the Security Assessment of Internet Information Services with Public Opinion Attributes or Social Mobilization Capabilities" and the "Internet Information Service Algorithm Recommendations" "Management Regulations" to carry out the procedures of algorithm filing, modification, and cancellation filing.

Article 7 Providers shall be responsible for the legitimacy of the source of pre-training data and optimized training data for generative artificial intelligence products.
The pre-training and optimized training data used for generative artificial intelligence products should meet the following requirements:

(1) Comply with the requirements of the "Network Security Law of the People's Republic of China" and other laws and regulations;
(2) Does not contain content that infringes intellectual property rights;
(3) If the data contains personal information, it shall obtain the consent of the subject of the personal information or meet other circumstances stipulated by laws and administrative regulations;
(4) Be able to guarantee the authenticity, accuracy, objectivity and diversity of the data;
(5) Other regulatory requirements of the national network information department on generative artificial intelligence services.

Article 8 When manual labeling is used in the development of generative artificial intelligence products, the provider shall formulate clear, specific, and operable labeling rules that meet the requirements of these measures, provide necessary training for labeling personnel, and conduct random verification of the correctness of the labeling content.

Article 9 The provision of generative artificial intelligence services shall require users to provide real identity information in accordance with the provisions of the "Network Security Law of the People's Republic of China".

Article 10 Providers should clarify and disclose the applicable groups, occasions, and uses of their services, and take appropriate measures to prevent users from relying too much on or indulging in generated content.

Article 11 During the process of providing services, the provider shall undertake the obligation to protect the user's input information and usage records. It is not allowed to illegally retain input information that can infer the user's identity, it is not allowed to make portraits based on user input information and usage conditions, and it is not allowed to provide user input information to others. Where laws and regulations provide otherwise, those provisions shall prevail.

Article 12 The provider shall not generate discriminatory content based on the user's race, country, gender, etc.

Article 13 The provider shall establish a mechanism for receiving and handling user complaints, and promptly handle individuals' requests for correction, deletion, and blocking of their personal information; discover and know that the generated text, pictures, sounds, and videos infringe on other people's portrait rights, reputation rights, When personal privacy, business secrets, or do not meet the requirements of these measures, measures should be taken to stop the generation and prevent the harm from continuing.

Article 14 The provider shall provide safe, stable, and continuous services within the life cycle to ensure the normal use of users.

Article 15 For generated content found during operation and reported by users that does not meet the requirements of these measures, in addition to taking measures such as content filtering, model optimization training and other methods should be used to prevent re-generation within 3 months.

Article 16 Providers shall mark the generated pictures, videos, and other content in accordance with the "Internet Information Service Deep Synthesis Management Regulations".

Article 17 The provider shall, in accordance with the requirements of the national network information department and relevant competent departments, provide necessary information that can affect users' trust and choice, including descriptions such as the source, scale, type, and quality of pre-training and optimized training data, and manual labeling Rules, the scale and type of manually labeled data, basic algorithms and technical systems, etc.

Article 18 The provider shall guide users to scientifically understand and rationally use the content generated by generative artificial intelligence, not to use the generated content to damage the image, reputation and other legitimate rights and interests of others, and not to engage in commercial hype or improper marketing.
When users find that the generated content does not meet the requirements of these measures, they have the right to report to the cyberspace administration or relevant competent authorities.

Article 19 When the provider discovers that the user violates laws and regulations, business ethics, and social morality in the process of using generative artificial intelligence products, including engaging in network hype, maliciously posting and commenting, creating spam, writing malicious software, and implementing improper commercial marketing, etc., the service shall be suspended or terminated.

Article 20 Where a provider violates the provisions of these Measures, the cybersecurity and informatization department and relevant competent departments shall, in accordance with the "Network Security Law of the People's Republic of China", "Data Security Law of the People's Republic of China", "Personal Information Protection Law of the People's Republic of China" and other laws and administrative punished by law.

Where there are no provisions in laws and administrative regulations, the network information department and relevant competent departments shall give warnings and circulars of criticism based on their duties, and order corrections within a time limit; where corrections are refused or the circumstances are serious, the use of generative artificial intelligence to provide services shall be ordered to be suspended or terminated, and A fine of not less than 10,000 yuan but not more than 100,000 yuan shall be imposed. If it constitutes a violation of public security management, it shall be punished according to law; if it constitutes a crime, it shall be investigated for criminal responsibility according to law.

Article 21 These Measures shall come into force on the day of 2023.

No comments:

Post a Comment