China Data, Cyber + Privacy
The MoFo Data Protection team is phenomenal: knowledgeable, responsive, solution oriented and efficient. They are the best firm I have ever worked with. – Legal 500 China
Data, Cyber + Privacy in China
With its growing complexity of network security and data privacy legislation and standards, China has become a critical part of our global practice. Our China Data, Cyber + Privacy team advises clients on a host of issues both within China and affecting their cross-border data flows and cross-border network operations.
Ranked as Band 1 in Data Protection & Privacy by Chambers Greater China Region 2024 - 2026 and Tier 1 in China Data Protection by The Legal 500 Asia-Pacific 2024-2026, our China team monitors developments relating to the Personal Information Protection Law (PIPL), the Cybersecurity Law (CSL), the Data Security Law (DSL) and the raft of other data privacy and security legislation and standards affecting clients across a broad range of industries. We help multinational companies ensure compliance with their obligations under the PIPL, CSL, and DSL by working closely with them to review policies, contracts, and data transfer and localization arrangements. We also help clients negotiate and renegotiate agreements with service providers and customers in order to ensure compliance.
We bring to our client work a sophisticated understanding of industry-specific data, cyber and privacy obligations in mainland PRC. The local team is able to leverage our global privacy expertise to ensure that revised policies and arrangements properly address offshore privacy laws such as the GDPR and Hong Kong’s Personal Data Privacy Ordinance in addition to mainland Chinese laws.
Sign up in our “China Data, Cyber + Privacy Resources Center” to receive up-to-the-minute legal and business analyses related to the latest China data, cyber and privacy topics.
Related Insights
Client AlertData, Cyber + Privacy Predictions for 2026
As 2026 approaches, rapid technological innovations and evolving global regulations are set to reshape the privacy and cybersecurity landscapes.
ArticleData Privacy and Cybersecurity: Are You Prepared for the Challenges?
In an era when data is considered an asset and is processed through a growing number of rapidly developing digital technologies, data privacy and cybersecurity have emerged as a significant area of law and focus of compliance regimes.
Client AlertChina’s New CBDT Regime: One Year On
It has been 14 months since China rolled out its “new,” streamlined cross-border data transfer (CBDT) regime, with the issuance by the Cyberspace Administration of China (CAC) of the Provisions on Facilitating and Regulating Cross-Border Data Flows on March 22, 2024.
Featured Webinars
Speaking EngagementChina’s Cross-Border Data Transfer Regime: Understanding how CAC New Rules Affect Your China BusinessAfter months of uncertainty, China’s data regulator, the Cyberspace Administration of China (CAC), issued the Provisions on Facilitating and Regulating Cross-Border Data Flows (促进和规范数据跨境流动规定, the Provisions) addressing a range of issues concerning China’s cross-border data transfer (CBDT) regime.
- WebinarCybersecurity Regulations State of Play: EU vs China
This webinar covers the various cybersecurity initiatives underway in the European Union, such as the Cyber Resilience Act, the NIS2 Directive, DORA, and the Cybersecurity Act, and assesses how they match up to what China’s cybersecurity laws have been developing into over the last few years.
- Speaking Engagement
Data Center Investments in Asia Pacific – Planning Ahead for a Successful Transaction
Fueled by the surging demand for data center and compute capacity , data centers are experiencing tremendous growth across many jurisdictions in APAC. The increasing demand by blue chip customers in Asia has sparked significant interest from institutional investors, developers and operators to develop or acquire these assets on an individual or portfolio basis.