What is the primary objective of **WELL**?

**The primary objective of WELL is to design, operate, and measure buildings and spaces to advance human health and well-being through evidence-based performance outcomes.** Administered by the International WELL Building Institute (IWBI), WELL v2 organizes requirements across **10 core concepts**—**Air, Water, Nourishment, Light, Movement, Thermal Comfort, Sound, Materials, Mind, and Community**—plus **Innovation**. It mandates **24 Preconditions** (pass/fail minimums) and offers **102 Optimizations** (point-earning strategies), verified via on-site testing of air quality (e.g., CO₂ ≤900 ppm), water, lighting, acoustics, and thermal conditions to ensure occupant health metrics.

Who is legally or professionally required to comply with **WELL**?

**WELL is voluntary with no legal mandates, but professionally required for organizations pursuing certification to enhance occupant health, ESG reporting, and market differentiation.** Applicable to owners, developers, and operators of new/existing buildings via pathways like **WELL Certification** (owner-controlled), **WELL Core** (base buildings leasing ≥75% space), and **WELL for Residential**. Corporate real estate executives, facilities managers, and design firms in offices, hospitality, education, and healthcare adopt it for verified IEQ performance, talent retention, and premium rents.

Does **WELL** require an external audit or third-party certification?

**Yes, WELL mandates third-party documentation review and on-site performance verification (PV) by authorized WELL Performance Testing Agents for certification.** Process includes IWBI platform enrollment, scorecard development, two review rounds (preliminary/final), and PV testing air (e.g., CO₂, PM2.5), water, light, thermal comfort, and sound at ≥50% occupancy. Levels—**Bronze (40 points), Silver (50, ≥1 pt/concept), Gold (60, ≥2 pts/concept), Platinum (80, ≥3 pts/concept)**—require all **24 Preconditions** met.

How often should an assessment for **WELL** be performed?

**WELL requires recertification every three years, with annual reporting for monitored features like air quality via the IWBI platform.** Ongoing assessments include continuous monitoring (e.g., CO₂ ≤900 ppm, annual sensor recalibration) and performance testing for recertification. Pre-testing is recommended pre-PV for high-risk areas (e.g., highways, old pipes).

What are the consequences of non-compliance with **WELL**?

**Non-compliance prevents certification award, incurs curative review fees, and risks recertification failure after three years.** Failed PV (e.g., unmet CO₂ thresholds) demands remediation; no statutory fines exist as WELL is voluntary, but uncertified projects forfeit ESG credibility, higher rents (up to 7.7% premium), and productivity gains (e.g., 8% improvement).

An **WELL** be mapped to other international frameworks?

**Yes, IWBI provides official crosswalks mapping WELL features to frameworks like LEED for streamlined dual certification.** Alignments reduce duplication (e.g., IAQ monitoring supports both), enabling portfolio-scale ESG integration without redundant verification.

What is the first step to begin implementing **WELL**?

**The first step is project enrollment/registration on the IWBI digital platform and scorecard development targeting certification level.** Conduct gap analysis of **24 Preconditions**, prioritize via concepts, and assemble cross-functional team (facilities, HR, design) for feasibility.

What is the primary objective of **MLPS 2.0 (Multi-Level Protection Scheme)**?

**The primary objective of MLPS 2.0 is to classify information systems into five protection levels based on potential harm to national security, social order, and public interests, ensuring controls are commensurate with impact.** Originating from China's 2017 Cybersecurity Law (Article 21), it mandates graded technical, management, and governance requirements via standards like GB/T 22239-2019, covering cloud, IoT, big data, and industrial systems for consistent nationwide protection.

Who is legally or professionally required to comply with **MLPS 2.0 (Multi-Level Protection Scheme)**?

**All network operators in mainland China, including domestic firms, foreign-invested enterprises, and multinationals with local systems, must comply with MLPS 2.0.** This encompasses operators of IT networks, cloud platforms, IoT, big data, and industrial controls; critical sectors like finance, energy, and telecom often classify at Level 3+.

Oes **MLPS 2.0 (Multi-Level Protection Scheme)** require an external audit or third-party certification?

**Yes, MLPS 2.0 requires external security reviews by licensed Chinese firms for Level 2+ systems, with PSB approval and scoring of at least 75/100.** Level 1 needs self-assessment; higher levels demand formal certification, documentation submission, and periodic re-evaluations.

How often should an assessment for **MLPS 2.0 (Multi-Level Protection Scheme)** be performed?

**Assessments under MLPS 2.0 must occur biennially for Level 2, annually for Level 3, semi-annually for Level 4, and as mandated for Level 5, plus after major changes.** Self-inspections are continuous; external reviews by licensed firms ensure ongoing compliance.

What are the consequences of non-compliance with **MLPS 2.0 (Multi-Level Protection Scheme)**?

**Non-compliance with MLPS 2.0 results in fines up to 100,000 yuan, operational suspensions, system shutdowns, and intensified PSB inspections.** Enforcement links to license renewals; severe cases involve business blacklisting or criminal liability.

An **MLPS 2.0 (Multi-Level Protection Scheme)** be mapped to other international frameworks?

**Yes, MLPS 2.0 control domains—governance, physical, technical—map to ISO 27001 Annex A and NIST CSF categories.** Organizations use Statements of Applicability and risk treatment plans for gap analysis, though MLPS adds prescriptive enforcement and localization.

What is the first step to begin implementing **MLPS 2.0 (Multi-Level Protection Scheme)**?

**The first step is conducting a provisional self-assessment to classify systems into Levels 1-5 based on impact to national security and public interests.** Inventory assets, document rationale per GB/T 22239-2019, then file with local PSB for Level 2+ approval.

WELL vs MLPS 2.0 (Multi-Level Protection Scheme)

Standards Comparison

WELL

Voluntary

2014

Certification for occupant health in built environments

MLPS 2.0 (Multi-Level Protection Scheme)

Mandatory

N/A

China's regulation for graded cybersecurity protection of networks

Quick Verdict

WELL certifies healthy buildings globally via performance testing for occupant well-being; MLPS 2.0 mandates cybersecurity grading in China with audits and fines. Companies adopt WELL for ESG/branding, MLPS for legal compliance.

Building Health & Wellness

WELL

WELL Building Standard v2

Cost

€€€€

Complexity

High

Implementation Time

12-18 months

Key Features

Mandatory on-site performance verification testing
10 core concepts with preconditions and optimizations
People-first focus on occupant health outcomes
Tiered certification Bronze to Platinum via points
Continuous monitoring pathways for compliance

Standard

MLPS 2.0 (Multi-Level Protection Scheme)

Multi-Level Protection Scheme 2.0

Cost

€€€€

Complexity

Medium

Implementation Time

12-18 months

Key Features

Five impact-based protection levels for systems
Mandatory PSB registration and approval Level 2+
Technical controls for cloud, IoT, big data, ICS
Law enforcement oversight by Public Security Bureaus
Periodic third-party audits scoring 75/100 minimum

Detailed Analysis

A comprehensive look at the specific requirements, scope, and impact of each standard.

WELL Details

What It Is

WELL Building Standard v2 is a performance-based certification framework administered by the International WELL Building Institute (IWBI). It focuses on designing, operating, and verifying buildings to advance human health and well-being through evidence-based strategies. Its concept-based approach organizes requirements into 10 core areas like Air, Water, and Mind, using mandatory Preconditions and optional Optimizations.

Key Components

**10 conceptsAir, Water, Nourishment, Light, Movement, Thermal Comfort, Sound, Materials, Mind, Community (plus Innovation).
24 Preconditions (pass/fail) and 102 Optimizations (points-earning).
Built on public health research; certification via tiers (Bronze 40 points to Platinum 80 points) with concept minimums.

Why Organizations Use It

Drives occupant productivity, reduces absenteeism, enhances ESG reporting, and boosts rents/asset value. Voluntary but complements LEED for dual benefits; manages health risks via verified IEQ.

Implementation Overview

Phased: gap analysis, scorecard, documentation, on-site verification, recertification every 3 years. Applies to new/existing buildings, all sizes/industries; requires third-party testing.

MLPS 2.0 (Multi-Level Protection Scheme) Details

What It Is

MLPS 2.0 (Multi-Level Protection Scheme 2.0) is China's mandatory regulatory framework for graded cybersecurity protection of information systems and networks. Enforced under the 2017 Cybersecurity Law (Article 21), it requires classification into five levels based on potential harm to national security, social order, and public interests using an impact-based risk methodology.

Key Components

Core domains: physical security, network protection, data security, access control, monitoring, governance.
Standards: GB/T 22239-2019 (baseline), GB/T 25070-2019 (technical), GB/T 28448-2019 (evaluation).
Built on common controls plus level-specific and technology extensions (cloud, IoT, ICS).
Compliance model: self-classification, third-party audits (Level 2+), PSB approval, periodic re-evaluations.

Why Organizations Use It

Legal mandate for all China network operators; non-compliance risks fines, suspensions.
Enhances resilience, aligns with data laws (DSL, PIPL).
Builds regulator trust, enables market access, reduces breach risks.

Implementation Overview

Phased: scoping, classification, gap analysis, remediation, audits, ongoing monitoring. Applies to all sizes in China; Level 2+ needs licensed audits. (178 words)

Key Differences

Aspect	WELL	MLPS 2.0 (Multi-Level Protection Scheme)
Scope	Occupant health, 10 concepts (air, water, mind)	Cybersecurity, 5 levels for networks/systems
Industry	All buildings globally (offices, residential)	All network operators in China
Nature	Voluntary certification, performance-based	Mandatory regulation, law enforcement
Testing	On-site performance verification, 3-year recert	Third-party audits, annual for Level 3+
Penalties	Loss of certification, no legal fines	Fines, operational suspension, inspections