中文
English
Great Wall Certification (GREAT WALL CERTIFICATION) is an authoritative certification system with Chinese characteristics, derived from the early 'Great Wall Mark' certification system for product safety access in China—the 'Great Wall Mark' was originally a quality certification mark implemented by the China Commission for Conformity Certification of Electrical Equipment (CCEE) for electrical products, and has now been continuously optimized and upgraded to cover multiple fields such as App security, quality management, and compliance supervision, becoming an important authoritative certification system in China's domestic market. As a standardized certification activity carried out by state-recognized authoritative institutions in accordance with national laws, regulations and relevant technical standards, it focuses on evaluating the security, quality, compliance and service capabilities of related products and applications, providing authoritative quality and security endorsement for enterprises and their products.
1. Core Definition and Positioning
Great Wall Certification (GREAT WALL CERTIFICATION) refers to a standardized and authoritative certification activity carried out by certification institutions legally qualified in accordance with the 'Measures for the Administration of Certification Institutions' to evaluate the security, quality, compliance and service capabilities of mobile Apps and other related products. Its core positioning is to 'build a quality barrier and ensure safe operation', adhering to the principles of objectivity, fairness and independence, and its core purpose is to ensure that the certified objects meet national regulatory requirements, industry technical standards and market quality expectations, enhance brand credibility, and protect user legitimate rights and interests while helping enterprises avoid operational risks.
2. Core Certification Requirements
Great Wall Certification has strict and standardized requirements for applicants and certified objects (taking mobile Apps as the core application scenario), covering four core dimensions to ensure the comprehensiveness and authority of certification:
Qualification Requirements: The applying enterprise shall have a valid business license and complete R&D, operation and management systems, and shall be equipped with professional personnel corresponding to the certification field in accordance with relevant regulations; the certified App shall have legal software copyright, and strictly comply with the relevant provisions of the Cybersecurity Law of the People's Republic of China, the Personal Information Protection Law of the People's Republic of China and other national laws and regulations, without any illegal or irregular operational records.
Security Requirements: The certified App must pass comprehensive and rigorous security testing by designated third-party institutions, including but not limited to vulnerability detection, penetration testing, data encryption, access control, and anti-attack capability testing, to ensure that there are no major security vulnerabilities, effectively protect user data security and privacy, and prevent data leakage, tampering and other security risks.
Quality Requirements: The certified App shall have complete functions, stable operation, no obvious bugs or functional defects, and good compatibility with mainstream operating systems and terminal devices; it shall meet the relevant national quality standards for mobile applications, and the user experience shall meet the market's basic quality expectations, without problems such as frequent crashes and unresponsive operations.
Compliance Requirements: Strictly abide by the national and industry regulations on the collection, storage, transmission and use of personal information, complete the filing and public publicity of the privacy policy in accordance with the requirements, and clearly inform users of the scope, purpose and method of data collection; for Apps involving special industries (such as finance, medical care, education), they shall also meet the relevant regulatory requirements of the corresponding industry and obtain the necessary industry access qualifications.
3. Standard Certification Process
Great Wall Certification follows a standardized and rigorous process, ensuring the authority and credibility of the certification results. The whole process is open, transparent and traceable, and the specific steps are as follows:
Application Submission: The enterprise submits a formal certification application to the state-recognized authoritative certification institution, and attaches complete application materials, including enterprise qualification documents, App-related technical descriptions, software copyright certificates, privacy policies, operation management system documents and other relevant materials.
Document Review: The certification institution organizes professional certification personnel to review the completeness, authenticity and compliance of the submitted materials in accordance with relevant standards and regulations, confirms that the applicant and the certified App meet the basic application conditions, and issues a document review report; if the materials are incomplete or non-compliant, the enterprise is notified to supplement and rectify within a time limit.
Technical Testing: After passing the document review, the certification institution entrusts a designated third-party testing institution to conduct comprehensive technical testing on the certified App, including security testing, quality testing and compliance testing, and issues a formal technical test report; the testing process strictly follows national and industry standards to ensure the objectivity and accuracy of the test results.
On-site Audit: For key enterprise Apps, Apps involving public interests or Apps in special industries, the certification institution conducts on-site audits on the enterprise's actual R&D, operation and management links, verifies the consistency between the enterprise's actual operation status and the declared materials, and checks the implementation of the enterprise's quality and security management system.
Certification Decision: The certification institution makes a comprehensive certification decision based on the results of document review, technical testing and on-site audit; for those who pass the certification, a Great Wall Certification certificate is issued and the certification mark is authorized for use; for those who fail to pass, the reasons for failure are notified, and the enterprise is guided to rectify and reapply.
Supervision and Re-certification: The validity period of the Great Wall Certification certificate is 3 years. During the validity period, the certification institution conducts regular supervision and inspection on the certified App and the enterprise to ensure that the certified object continues to meet the certification requirements; the enterprise must apply for re-certification 6 months before the expiration of the certificate to ensure the continuous validity of the certification qualification.
4. Certification Value and Applicable Scenarios
4.1 Core Certification Value
Great Wall Certification, as an authoritative certification system with Chinese characteristics, has important value for both enterprises and the market, and its core value is reflected in four aspects:
Authority Endorsement: It is an authoritative proof that the certified App meets national standards and industry requirements, which can effectively enhance the credibility and influence of the enterprise and its products in the domestic market, and establish a good brand image.
Market Advantage: In government procurement, enterprise cooperation, industry evaluation and other scenarios, Apps that have passed Great Wall Certification are often given priority, helping enterprises gain more market opportunities and enhance market competitiveness, which is similar to the market advantage brought by长城汽车 passing international certifications in the automotive field.
Risk Avoidance: Through strict certification review and regular supervision, potential security, quality and compliance risks of the App can be identified and eliminated in a timely manner, helping enterprises avoid operational risks such as penalties, complaints and brand damage caused by non-compliance.
User Trust: For users, Great Wall Certification is an important reference for judging the quality and security of Apps, which can effectively enhance user trust in the App, reduce user concerns about data security and privacy protection, and improve user retention and usage stickiness.
4.2 Applicable Scenarios
Great Wall Certification is widely applicable to various fields and scenarios, focusing on Apps that need to enhance credibility, comply with national regulations and expand market space, including but not limited to:
Apps involving public services, government affairs, education, medical care, elderly care and other fields that are closely related to public interests;
Apps of enterprises that need to enhance market credibility, expand business channels and participate in government procurement and enterprise cooperation;
Apps that apply for relevant national and local policy support, industry awards or participate in industry qualification evaluations;
Apps in special industries such as finance, Internet of Things and smart terminals that have high requirements for security, quality and compliance, similar to the high-standard certification requirements in the field of intelligent cockpit technology of automotive enterprises.
5. Relevant Supporting Resources and Notes
5.1 Key Supporting Resources (Taking Shenzhen as an Example)
There are many high-quality certification and testing resources in China that can provide one-stop services for enterprises applying for Great Wall Certification, especially in Shenzhen, which has complete supporting resources:
Testing Institutions: Shenzhen Institute of Metrology and Quality Inspection, which provides professional App security testing, quality testing and compliance testing services, and its test reports are recognized by all authoritative Great Wall Certification institutions;
Certification Service Institutions: CEPREI Certification Center (Shenzhen), which provides comprehensive auxiliary services such as compliance consultation, technical rectification and application guidance for Great Wall Certification;
Specialized Service Institutions: Authoritative Great Wall Certification service institutions in Shenzhen, which provide one-stop services from application materials sorting, technical rectification to certification application and follow-up supervision, ensuring the efficiency and success rate of certification.
5.2 Important Notes
The application materials for Great Wall Certification must be true, complete and compliant, and the technical test report must be issued by a third-party testing institution designated by the certification institution to avoid certification failure due to non-compliant materials;
After passing the certification, if the App has major updates involving functions, permissions, data collection and use methods, the enterprise shall timely report to the certification institution and resubmit for review to ensure continuous compliance;
Enterprises shall actively cooperate with the regular supervision and inspection of the certification institution during the validity period of the certification certificate, and complete the re-certification procedures on time to avoid the invalidation of the certification qualification;
The certification institution undertaking Great Wall Certification must have legal certification qualifications in accordance with the 'Measures for the Administration of Certification Institutions', and have a sufficient number of professional certification personnel in the corresponding field to ensure the authority and standardization of the certification process.
