DCC
Data Compliance China
Search · ⌘K
DCC · DATA COMPLIANCE CHINA China data law, for overseas counsel.
§ DOMAINS

By subject.

11 domains link laws and briefs across topic boundaries.

  • Cross-Border Data

    数据跨境

    Rules governing the transfer of personal information and important data outside mainland China — including the security assessment, standard contract, and certification pathways.

    11 laws 7 briefs

  • Personal Information

    个人信息保护

    Core personal-information protection regime under PIPL — consent, lawful bases, sensitive personal information, and the rights of individuals.

    24 laws 20 briefs

  • Data Security

    数据安全

    Data classification and grading, important data, core data, and the broader data security regime under DSL.

    15 laws 19 briefs

  • AI Governance

    人工智能治理

    Rules and standards for generative AI services, deep synthesis, content labeling, and AI ethics in China.

    6 laws 7 briefs

  • Algorithmic Recommendation

    算法推荐

    Regulation of recommendation algorithms, user profiling, and the filing regime for algorithmic services.

    2 laws 0 briefs

  • Cybersecurity Review

    网络安全审查

    The cybersecurity review regime for critical information infrastructure operators and large data processors — including overseas listings.

    3 laws 2 briefs

  • Critical Information Infrastructure

    关键信息基础设施

    Identification and protection obligations for CII operators (CIIO) under CSL and the CII Protection Regulations.

    4 laws 0 briefs

  • App Compliance

    App 合规

    Mobile app personal-information collection rules, the necessary-information catalogue, SDK compliance, and app store removal.

    1 law 3 briefs

  • Enforcement

    执法与处罚

    Public enforcement actions by Chinese data regulators — MIIT's batched APP / SDK public-naming bulletins, CAC administrative penalties, MPS criminal-tier enforcement, regulatory interviews (约谈), app-store removals, and other published actions. DCC tracks these as the operational edge of the regime: they show what the regulator actually polices, in what cadence, against what targets, citing which legal bases.

    5 laws 10 briefs

  • Minors Protection

    未成年人保护

    Personal information of children and minors, gaming time limits, age-verification requirements, and the Minors Online Protection Regulations.

    1 law 0 briefs

  • Data Economy

    数据要素与数据产权

    China's emerging regulatory framework for treating data as an economic factor of production — public-data resources, data-property rights, data-asset registration, and the rules governing how data can be authorized for operation, traded, and circulated. Distinct from data security and personal-information protection, this domain tracks the rules that turn data into a tradeable asset.

    6 laws 18 briefs
§ SUBSCRIBE

The Monday brief.

One short email every Monday. New briefs on Chinese data-compliance rules from the previous week, with the source law cited.

Opt-in only. Unsubscribe anytime by replying "unsubscribe" to any issue.