Since 2018，the risk of personal information security in China is intensifying，manifested in large-scale personal information disclosure and algorithmic discrimination. The legislative work of personal information security is moving from fragmentation to systemization. In 2018，three regulations and standards on personal information protection were issued，providing specific guidance on information security and governance for individuals and businesses. China’s “Personal Information Protection Law” also entered the legislative plan in 2019，and introduced new regulations in the areas of data security，cyber security review，and App violations，and illegally collected and used personal data information that is of great concern to citizens. The question is answered. Due to the increase in the number of cases of infringement of personal information rights，the problems of concept disputes and difficulties in obtaining evidence and evidence in personal information protection have also begun to emerge. Judicial remedies such as public interest litigation or class actions are also being further explored. In contrast to the new legislation on personal information and personal privacy protection in the European Union and the United States，relevant legislation in India and Brazil has also given China great inspiration.