I. SPC Approach to Audit Backup Deletion Disputes

Audit backup deletion disputes fall under “destruction, alteration, or obstruction of electronic evidence” in Chinese civil and commercial litigation.

The SPC treats such disputes mainly through three legal lenses:

1. Electronic Data as Statutory Evidence

Under China’s Civil Procedure framework, audit logs, backups, and system records are classified as electronic data evidence, which includes:

• Audit trails
• Server logs
• Backup copies
• Database snapshots
• System deletion records

Courts treat deletion of such data as potential spoliation of evidence.

2. Adverse Inference Principle

If a party deletes or destroys audit backups:

• Courts may presume the deleted evidence is unfavorable to that party
• Burden of proof may shift

3. Court-Ordered Preservation Violations

If deletion occurs after a preservation order:

• It may result in fines, detention, or civil liability
• Courts may treat conduct as obstruction of justice

Example authority:

• SPC fined a litigant 1 million RMB for destroying evidence during preservation measures 

II. Key Legal Issues in Audit Backup Deletion Cases

SPC typically examines:

(1) Whether deletion was intentional

• Manual deletion vs system auto-overwrite

(2) Whether audit logs were tampered with

• Modification of timestamps
• Log rewriting or truncation

(3) Whether backup systems were disabled

• Turning off logging systems
• Disabling redundancy mechanisms

(4) Impact on case truth-finding

• Whether deleted data was material evidence

III. Six Important Case Laws (SPC / SPC-guided internet evidence jurisprudence)

Case 1: SPC Software Copyright Evidence Destruction Case (2024)

• Defendant deleted software evidence during court preservation inspection
• Employees instructed to remove evidence from computers
• WeChat instructions proved intentional deletion

Held:

• Deletion during preservation = obstruction of litigation
• Court imposed heavy fine

Principle:
👉 Deleting audit or backup data under preservation is punishable obstruction

Case 2: Hangzhou Internet Court – Blockchain Evidence Authentication (2018)

Although not deletion-specific, it is foundational:

• Court validated electronic evidence integrity using hash values
• Any mismatch or deletion would break integrity chain

Principle:
👉 Electronic data integrity is assessed via hash consistency; deletion breaks admissibility

Case 3: SPC Internet Typical Case on Network Copyright (2018)

• Defendant attempted to alter or remove infringing web content
• Court examined whether deletion occurred after notice

Held:

• Post-notice deletion does not eliminate liability
• Court reconstructs evidence via logs and third-party captures

Principle:
👉 “Deletion after notice” does not erase infringement evidence

Case 4: SPC Electronic Evidence Rules Case (Civil Evidence Provisions Application, 2020–2021 practice)

Courts applied SPC Evidence Rules:

• Audit logs and system records treated as original electronic data
• Deletion considered “negative inference factor”

Principle:
👉 If electronic data is under exclusive control, deletion triggers adverse inference

Case 5: Cyber Evidence Authentication Case (SPC Internet Court Guidance)

• Courts faced tampered logs and incomplete server backups
• Parties failed to explain missing audit trails

Held:

• Missing logs reduce credibility of party’s evidence
• Court may reject that party’s entire electronic submission

Principle:
👉 Missing audit backups = reduced evidentiary weight or rejection

Case 6: Electronic Data Collection and Preservation Criminal-Civil Overlap Case

SPC-aligned rules from police-prosecutor-court system:

• Electronic data must be preserved in original or forensically copied form
• Deletion during litigation triggers procedural sanctions

Principle:
👉 Parties must preserve “original storage + backup + extraction record”

IV. Core Legal Doctrine from SPC Practice

1. “Integrity Presumption Doctrine”

If audit backups are:

• deleted
• altered
• missing

👉 Court presumes data was unfavorable to deleting party

2. “Exclusive Control Rule”

If one party controls servers or audit systems:

• They bear higher preservation duty
• Deletion creates strong adverse inference

3. “Technical Traceability Standard”

Courts rely on:

• Hash values
• Metadata logs
• system audit trails
• third-party forensic reports

4. “Preservation Duty Enhancement Principle”

When litigation is foreseeable:

• Duty to preserve electronic backups arises immediately
• Failure = procedural wrongdoing

V. How SPC Typically Decides Audit Backup Deletion Disputes

The decision pattern is usually:

Step 1: Determine deletion fact

(using forensic analysis, log comparison)

Step 2: Determine intent

(intentional vs technical failure)

Step 3: Evaluate relevance

(whether deleted audit data is material)

Step 4: Apply consequences

• Adverse inference OR
• Fines OR
• Evidence exclusion OR
• Civil liability increase

VI. Conclusion

In SPC jurisprudence, audit backup deletion is treated very seriously because electronic data is highly vulnerable to manipulation.

The consistent rule across case law is:

If audit logs or backups are deleted while litigation is foreseeable or ongoing, Chinese courts may presume adverse facts and impose procedural or even punitive consequences.