Cybersecurity, Data and Personal Information Protection Compliance for EU SMEs in China

Hybrid Workshop | Wednesday, October 26, 2022 | 4:00-6:00 PM China Time

Thomas Zhang, Partner of Dezan Shira & Associates, will share insights on cross border data transfer in the upcoming hybrid event hosted by EU SME Center.

The EU SME Centre and the European Union Chamber of Commerce in China are pleased to invite you to our hybrid workshop, in Guangzhou at the Mandarin Oriental Hotel and online via Zoom, on 26 October 2022.

Data security and cross-border transfers of data are essential for business activities and encourage innovation. Companies constantly use data generated from R&D or collected from customers in different locations to improve their products or develop new ones, often relying on teams based across the world. 

Over the past years, China has considerably strengthened cybersecurity, data, and personal information protection governance. In 2017, the Cybersecurity Law (CSL) came to force outlining various obligations to network operators and internet service providers. In 2021, the CSL was complemented by Data Security Law (DSL) and the Personal Information Protection Law (PIPL), stipulating a series of obligations not only for actors based in China but also for those based elsewhere yet processing data or personal information generated in China. When doing business in China, SMEs need to be aware of the regulations they must follow to be compliant with the cybersecurity and data protection system

Join our workshop to:

  • Get an overview of China’s cybersecurity, data, and personal information protection framework; 
  • Understand the laws and regulations that SMEs need to comply with to do business in China;
  • Understand what constitutes important data and how networks, data and personal information are further categorised into different classes and grades based on their risk and impact;
  • Learn from the advice, experience and best practices of other SMEs and organisations active in China. 

This training workshop will be held in English and is open to all interested SMEs from EU Member States and SMEs from countries participating in the Single Market Programme (Iceland, Liechtenstein, Norway).

  • Online participants will be contacted by email a few days before the event with the access link to the workshop via Zoom.
  • Offline participation: due to limited seating, offline registrations will need to be confirmed with an invitation. Invitations will be sent by email no later than two days before the event.


  • 16:00 - 16:05 Words of welcome
    Master of Ceremonies: Javier Tora Mira, Chair of the EU SME Forum, European Chamber
    Presentation of the EU SME Centre and EUCCC
    Introduction of the speakers
  • 16:05 - 16:15 Cybersecurity, Data & Personal Information Compliance – EU SME Centre Report Overview
    Alessio Petino, Business Advisor, EU SME Centre
  • 16:15 - 16:35 Cybersecurity, Data & Personal Information: Legal Framework and SME Obligations
    Valentino Lucini, Lawyer, Wang Jing & GH Law Firm
  • 16:35 - 16:50 Cross-Border Data Transfer: Differences Between GDPR and PIPL
    Thomas Zhang, Partner, Dezan Shira & Associates
  • 16:50 - 17:30 Panel Discussion: Practical Experience Sharing
    Moderator: Isabelle Hajjar, Vice Chair of the Cybersecurity Sub Working Group and Head of Compliance, Cybersecurity & Data Privacy, TekID
    Bill ZhaoData Protection Senior Specialist / Local Data Protection Coordinator (LDPC), North Asia, TÜV SÜD
    Denis BastieriPhysicist and Computer Scientist, University of Padova and Guangzhou University
    Alvaro CastellsResearcher and Associate Professor, Guangzhou Regenerative Medicine and Health Guangdong Laboratory
  • 17:30 - 18:00 Q&A Session 

How to Register

Please fill in the registration form here 

For questions on this event please get in touch with

Want to contact to these experts?
captcha image
The code is case-sensitive