On June 1, 2026, China’s State Council published the Regulations on Outbound Investment (国务院关于对外投资的规定, the “ODI Regulations”), effective July 1, 2026. The key takeaways are as follows:
China’s existing ODI regime, administered by the National Development and Reform Commission (NDRC), the Ministry of Commerce (MOFCOM), and the State Administration of Foreign Exchange (SAFE), discretely targeted overseas equity investments by Chinese enterprises. With the new ODI Regulations, the State Council, China’s cabinet-level body, has embraced a more comprehensive approach, regulating a broader range of cross-border investment flows and overseas holding structures and integrating China’s ODI review regime with China’s broader foreign investment-related legal architecture—including technology export licensing, cross-border data regulation, national security review, and anti-foreign sanctions—while expanding the scope of regulated parties, establishing a discrete security review regime for ODI, and escalating penalties for non-compliance.
Notably, the ODI Regulations also close perceived gaps in the prior regulatory framework. First, they clarify that technology transfers effected through the deployment of technical personnel or the arrangement of overseas training fall within the scope of technology export restrictions—not only formal IP assignments, licensing transactions, or cross-border technology support services. Second, they establish that purely offshore transactions and restructurings that may affect China’s national security are subject to review by Chinese regulators, regardless of where the relevant entities are incorporated or how the transaction is structured.
This alert focuses on three implications of the ODI Regulations:
(1) The integration of technology export and data transfer oversight into ODI compliance;
(2) The practical impact on “offshore washing” structures used by China-linked technology companies to raise foreign capital, relocate personnel and assets, and prepare for overseas exits; and
(3) The new penalties framework authorizing Chinese regulators to launch investigations, impose penalties, and take other necessary actions to counter foreign investment and trade restrictions deemed discriminatory against Chinese entities.
The ODI Regulations define ODI broadly to cover activities by which PRC “investors” (including enterprises, other organizations, and resident individuals) directly or indirectly acquire ownership, control, management rights, or other interests in overseas enterprises or assets, by investing assets or equity, contributing financing or guarantees, or other means.
Perhaps the single most significant feature of the ODI Regulations is their expansion of ODI review beyond investments by Chinese companies to those by individuals resident in China as well (e.g., founders), dramatically changing the regulatory landscape for PRC entrepreneurs in the technology and other sectors, as discussed further in part III below. Detailed implementation rules to govern ODI by individuals remain to be issued by NDRC and MOFCOM.
Other important implications of the broader definition of ODI include:
A key practical change for technology companies is Article 13 of the ODI Regulations, which integrates technology exports, export controls, data transfers, cross-border services, and personnel deployments into the ODI compliance analysis.
Article 13 prohibits ODI investors from exporting or using prohibited goods, technologies, services, or related data, and requires prior approval for restricted items. More importantly, it expressly targets indirect or “disguised” transfers through deploying technical personnel overseas or arranging cross-border training, unless the relevant approvals have been obtained.
This closes a practical gap under the prior technology export framework. Under that framework, oversight focused on formal IP assignments, licenses, cross-border technology services, source-code transfers, and delivery of controlled items. Relocations of engineers or other technical personnel, cross-border access to development environments, and the re-situating of ongoing R&D projects from China overseas were not explicitly regulated. Article 13 now brings these personnel- and operations-mediated transfers into the ODI regulatory frame.
This matters because technology does not always move through a formal assignment/licensing contract. In many outbound transactions, the relevant capability may move through:
Under the ODI Regulations, completing a typical ODI filing will not be enough. Companies must now also assess whether the project triggers technology export filing or approval under the Administrative Regulations on Technology Import and Export (TIER), export control obligations under the Export Control Law, data export requirements under the Data Security Law and Personal Information Protection Law, cybersecurity obligations under the Cyber Security Law, or other national security-related restrictions.
For technology companies in sensitive industries such as AI, semiconductors, advanced manufacturing, telecommunications, robotics, and dual-use technology, this analysis should be conducted at the project-planning stage and continue as projects unfold. The diligence should examine not only formal IP ownership and license arrangements, but also consider where the technology was originally developed, which personnel contributed to it, which entity controls the relevant repositories and systems, whether offshore teams can access domestic R&D environments, and whether any restricted technology or related data will be provided overseas through training, technical services, or operational support.
The broadened scope of ODI regulated by the ODI Regulations already discussed in part I above calls for a reassessment of the offshore holding structures that have underpinned China-linked venture capital and pre-IPO financing for decades. These structures often involve a Cayman or BVI holding company, intermediate offshore entities, PRC operating subsidiaries, and, where required, contractual control structures like Variable Interest Entities. The ODI Regulations do not expressly prohibit these arrangements, but make it clear that offshore structuring does not, by itself, eliminate China regulatory risk. Notably:
For this reason, “offshore washing” is now squarely on China’s regulatory radar. Companies that have completed offshore restructurings without conducting TIER, export control, or data compliance analyses should consider assessing their post-transaction exposure. Notably, that assessment may need to take account of overseas rules as well as the ODI Regulations—an unwinding of a restructuring due to PRC ODI concerns may trigger export control or licensing requirements in a relevant foreign jurisdiction. Companies planning new restructurings should build a complete record of technology ownership, development history, employee assignments, IP transfers, technology services, data flows, system access rights, and intercompany arrangements before implementation.
Article 15 establishes an outbound investment security review regime as a counterpart to China’s existing inbound foreign investment security review. NDRC and MOFCOM, together with other relevant authorities, will review ODI—as well as related transfers or disposals of assets and interests—that may affect China’s national security. The implementation rules have not yet been issued, and important details remain unclear (such as filing thresholds, review procedures, timelines, substantive criteria, and mitigation options). Notably, the reference to “transfers” and “disposals” suggests that the regulatory review may extend beyond the initial outbound investments to subsequent sales, spin-offs, reorganizations, dispositions, or exits involving overseas assets or interests derived from a PRC investor’s outbound investment.
Investors should be wary about the possible retrospective application of Article 15 to transactions that have already closed. Leading up to and following the Foreign Investment Risk Review Modernization Act of 2018 (FIRRMA), CFIUS undertook a major campaign of retrospectively scrutinizing closed transactions and ordering forced divestitures. Will PRC authorities take a similar approach, and use the new ODI Regulations to justify retrospective review of potentially sensitive historical restructurings, IP migrations, offshore R&D buildouts, and foreign exits? Companies with exposure should not wait for the implementation rules before beginning a risk assessment.
International companies considering the impacts of China’s ODI Regulations may already be familiar with the United States’ own outbound investment regime. As discussed in a prior client alert, that regime, implemented through rules issued by the U.S. Department of the Treasury on October 28, 2024, restricts and requires notification of specified U.S. investments in Chinese entities engaged in discrete, sensitive technology sectors such as semiconductors and artificial intelligence. In comparison, the ODI Regulations are broader in both sectoral coverage and regulatory reach—encompassing not only equity investments but also technology transfers, personnel deployments, data flows, and offshore restructurings across all industries. Together, these two regimes create a tightening regulatory corridor for cross-border technology transactions, requiring companies operating at the intersection of U.S. and Chinese interests to navigate overlapping and potentially conflicting compliance obligations.
The ODI Regulations significantly expand the consequences of non-compliance. Under prior NDRC and MOFCOM ODI rules, consequences were often administrative: denial or revocation of filings, warnings, rectification orders, and the like. Articles 27 to 30 of the ODI Regulations also provide for fines of 0.1% to 1% of the investment amount (depending on the violation), confiscation of illegal gains, mandatory disposal of shares or assets, orders to stop investment activities, refusal to accept future filings for up to three years, bans on outbound investment for one to three years, and personal liability for directly responsible individuals (fines ranging from RMB 20,000 to 100,000, approximately USD 3,000 to 14,800 at the time of this alert).
As a result, ODI compliance should no longer be viewed as a procedural issue that can be cured through retrospective filings or supplemental reports. China’s ODI compliance now impacts deal execution and potentially creates personal liability for the individuals involved.
The ODI Regulations have potentially far-reaching implications. Companies and individuals contemplating new outbound investments, offshore restructurings, or cross-border technology-linked transactions should consider the following steps:
Meanwhile, companies and individuals with existing investments or businesses that might appear to have been pulled into the ODI framework due to the wide scope of the ODI Regulations should assess their exposure. Passive portfolio investors—for example, holders of publicly traded shares in offshore-listed Chinese companies—are less likely to be targets under the new ODI regime. The primary concern lies with active market participants whose existing arrangements involve the exercise of controls, management rights, or the transfers of technology, data, or other strategic resources contemplated by the ODI Regulations. They should consider the following steps:
As further explained in the Terms / Notices linked below, the information provided herein is not legal advice. Any information concerning the People’s Republic of China (PRC) is not an opinion on, determination on, or certification of the application of PRC law. We are not licensed to practice PRC law.