Background
Outbound context, PRC policy evolution, law/compliance distinctions, and theory frames for recurring risks.
Read backgroundSource check current as of
Political, legal, and compliance risks for Chinese companies going global
本网站由香港城市大学法律学院王江雨教授用Codex制作,仅供个人教学研究使用。
A bilingual portal for research, teaching, and decision support: rules, cases, and practical compliance tools in one place.
58case briefs
11risk areas
5playbooks
Research Entry Points
The portal treats compliance not as a back-office function, but as a condition for strategy, market access, and crisis response.
Scholarship
Representative literature on outward FDI, state capitalism, international investment law, and Chinese firms abroad.
View bibliographyPractice
Law-firm, in-house, and regulator materials for building overseas compliance systems.
Open practice listRisk Map
Sanctions, data, labour, subsidies, investment screening, platforms, IP, tax, anti-corruption, and ESG.
Open risk mapCase Library
Filter by company, jurisdiction, industry, risk type, and status for teaching and research use.
Browse casesPlaybooks
Pre-entry gates, post-entry rhythm, third-party controls, supply-chain evidence, and crisis scripts.
View playbooksRecent Developments
The timeline tracks rule and enforcement changes that alter corporate preparation windows.
Initial source-check date
The initial version of this site uses 26 June 2026 as the source-check date; later cases and legal developments will be maintained through structured data.
CBAM enters definitive period
EU CBAM moves from transitional reporting into its definitive regime, requiring exporters to support importers on authorization, emissions data, and certificate-cost allocation.
U.S. outbound investment security rules take effect
The United States applies prohibition or notification rules to certain China-related semiconductor, quantum, and AI investments, affecting financing, funds, and technical cooperation.
EU forced-labour product ban countdown begins
The regulation has entered into force and will apply in 2027, giving companies a window to build traceability, labour audits, and evidence packs.
Case Library
The first version covers the United States, EU, UK, Brazil, India, China, and global multilateral mechanisms; later updates can be added directly to the data files.
58 / 58
TikTok U.S. divestiture law: platform, data, and national security converge
The United States framed divestiture or shutdown around national security, showing how algorithmic control, data, and ownership structures can trigger political and legal risk together.
Read caseTikTok Irish DPC fine: China access and transfer transparency risk
Ireland's Data Protection Commission imposed a EUR 530 million fine focused on safeguards and transparency for EEA user data accessed from or transferred to China.
Read caseTikTok EU DSA investigation: ad repositories, systemic risk, and platform transparency
The EU DSA imposes ad transparency, risk assessment, and researcher-access duties on very large online platforms, keeping TikTok under intensive regulatory scrutiny.
Read caseTemu EU DSA preliminary findings: illegal products and platform-risk governance
The Commission's preliminary findings on illegal product risk at Temu show that low-price SKU scale and third-party trader models require strong governance systems.
Read caseU.S. ending of China/Hong Kong de minimis treatment
The United States ended de minimis treatment for low-value shipments from China and Hong Kong, weakening e-commerce models built on low-value direct mail.
Read caseShein EU platform regulation: VLOP duties and consumer-product safety
As a very large online platform, Shein faces DSA duties on systemic risk, product safety, trader traceability, and consumer protection.
Read caseAliExpress EU DSA proceedings: high-risk product governance in platform marketplaces
The EU opened DSA proceedings into AliExpress, focusing on illegal goods, content moderation, complaint mechanisms, ad transparency, and researcher access.
Read caseDeepSeek Italy data case: notices and overseas storage for AI services
Italy's data protection authority acted against DeepSeek, focusing on data collection, notices, storage location, and transfers to China.
Read caseEU Chinese EV countervailing duties: industrial policy as a market-access gate
The EU imposed five-year countervailing duties on Chinese battery electric vehicles, scrutinizing costs, subsidies, prices, and supply-chain arrangements.
Read caseNuctech EU Foreign Subsidies Regulation case: inspections and subsidy review
EU inspections of Nuctech under the Foreign Subsidies Regulation show subsidy review moving into company premises, electronic records, and public procurement contexts.
Read caseUFLPA solar supply-chain enforcement: traceability as a customs condition
The U.S. UFLPA restricts Xinjiang-linked imports through a rebuttable presumption, keeping solar, polysilicon, and electronics supply chains in high-risk territory.
Read caseUFLPA apparel and e-commerce risk: small parcels still need supply-chain proof
Apparel, cotton, textiles, and e-commerce parcels are not exempt from forced-labour and origin proof merely because orders are small.
Read caseBYD Brazil labour case: contractor labour becomes group reputation and criminal risk
Brazilian prosecutors acted over allegations of slavery-like conditions and human trafficking involving construction workers, highlighting contractor-site risk abroad.
Read caseEU Forced Labour Regulation: from ESG pledge to market ban
The EU Forced Labour Regulation will allow authorities, from 2027, to ban products made with forced labour from being sold in or exported from the EU.
Read caseEU CBAM definitive period: carbon data enters customs and contracts
CBAM's definitive period makes carbon data for steel, aluminium, cement, and other products a customs and pricing variable.
Read caseCSDDD pass-through: EU customers write diligence duties into supply contracts
The CSDDD requires large companies to address human-rights and environmental impacts, with pressure passing to Chinese suppliers through contracts, questionnaires, and audits.
Read caseU.S. outbound investment security: capital flows enter technology controls
The United States created prohibition and notification rules for certain China-related investments in semiconductors, quantum, and AI, expanding the technology-control toolkit.
Read caseBIS semiconductor controls: equipment, software, and Entity List tightening
The U.S. Commerce Department tightened controls on advanced semiconductor manufacturing equipment, software tools, and Entity List designations to restrict China's advanced chip capacity.
Read caseH20/MI308 licensing risk: compliant chips can be restricted again
U.S. licensing changes for AI chips designed for the China market show that a 'compliant product' is not a stable safe harbour.
Read caseDJI 1260H litigation: commercial consequences of security labels
DJI challenged its inclusion on the U.S. Defense Department's Chinese military companies list; even when not a sanctions list, it affects procurement, finance, insurance, customer confidence, and reputation.
Read caseHesai 1260H dispute: securitization of smart-vehicle supply chains
LiDAR and smart-vehicle component firms facing security-list disputes show automotive supply chains being redefined by data, dual-use, and infrastructure narratives.
Read caseFCC Covered List: market-access blockage for telecoms and surveillance equipment
The U.S. FCC placed several Chinese telecoms and surveillance companies on its national-security Covered List and restricted equipment authorizations.
Read caseLenovo/InterDigital FRAND dispute: global rates and injunction risk
The UK FRAND dispute shows that SEP royalty rates, negotiation records, and global portfolio licensing are core risks for hardware exporters.
Read caseXiaomi India FEMA case: royalties, fund flows, and local enforcement
Indian enforcement action around Xiaomi India's overseas royalty payments and asset freezing shows local enforcement risk in fund flows and tax structures.
Read caseVivo India enforcement case: distribution structure, fund flows, and criminal investigation
Indian enforcement actions involving Vivo-related entities show how sales networks, distributors, fund flows, and compliance records can enter a criminal-investigation frame.
Read caseFCPA 2025 enforcement adjustment: priorities may shift, third-party red lines remain
U.S. FCPA enforcement policy shifted in 2025, but overseas anti-corruption risk remains multi-jurisdictional across the U.S., UK, France, World Bank, and host states.
Read caseFEPA demand-side bribery: foreign official solicitation enters the U.S. criminal toolkit
The U.S. FEPA adds criminal tools against foreign officials who solicit or receive bribes, potentially strengthening cross-border cooperation and evidence sharing.
Read caseChina cross-border data rules: low-risk relief but stronger register discipline
China's 2024 cross-border data rules eased some low-risk scenarios, but firms still need to classify personal information, important data, transfer mechanisms, and exemptions.
Read caseNetwork Data Security Management Regulation: data compliance enters operating governance
After the regulation took effect, network data processors face more concrete duties on classification, important data, personal information, and security management.
Read caseBattery supply-chain compound risk: carbon, minerals, human rights, and subsidies
EV and battery expansion triggers counter-subsidy, carbon-data, critical-mineral, human-rights diligence, and product-safety requirements together.
Read caseBattery firms and security listings: customer procurement and capital-market risk
Chinese battery firms face overlapping U.S. security listings, supply-chain scrutiny, and procurement restrictions, affecting customer contracts and financing.
Read caseMexico nearshoring: origin, transshipment, and USMCA compliance
Chinese companies using Mexico for North American access must prove substantial transformation, origin-rule compliance, and non-circumvention of trade remedies.
Read caseEU AI Act: risk classification and documentation duties for AI products abroad
The EU AI Act regulates AI systems by risk category, affecting Chinese AI, SaaS, connected devices, and platform services entering Europe.
Read caseMDB sanctions: one corruption or fraud case can affect global bidding eligibility
World Bank and other MDB sanctions and cross-debarment mechanisms can turn one project violation into global procurement risk.
Read caseRed Sea shipping disruption: how security events enter contract performance
Red Sea security events caused rerouting, insurance, timing, and cost changes, showing political risk entering disputes through logistics contracts, delivery terms, and force majeure.
Read caseAlternative payments and sanctions risk: de-dollarization does not eliminate compliance risk
When firms use alternative currencies, offshore accounts, or third-country payment channels, sanctions, AML, tax, and beneficial-owner risks remain.
Read caseHuawei Entity List case: export controls reshaping global supply chains
BIS placement of Huawei and affiliates on the Entity List reshaped semiconductor, software, equipment, and cloud-service supply chains through license requirements.
Read caseMeng Wanzhou DPA: sanctions, bank compliance, and executive exposure
The deferred prosecution agreement in the Meng Wanzhou case shows how sanctions-related representations and banking relationships can create personal criminal exposure.
Read caseHuawei UK 5G removal decision: allied sanctions changing market access
The UK required operators to stop buying new Huawei 5G equipment and remove existing gear by 2027, showing how allied sanctions can alter domestic security assessments.
Read caseGermany 5G component phase-out: Huawei and ZTE under European network-sovereignty scrutiny
Germany agreed with operators to remove Huawei and ZTE critical components from 5G core networks by 2026 and critical management systems by 2029.
Read caseZTE 2017 U.S. sanctions and export-control settlement: third-party channels are not safe harbors
ZTE reached major settlements with DOJ, BIS, and OFAC over shipments of U.S.-origin items to restricted destinations using third-party arrangements.
Read caseZTE denial-order crisis: breach of compliance undertakings can become existential risk
BIS activated a denial order against ZTE, cutting access to U.S.-jurisdiction items, then terminated it after additional settlement terms, penalties, escrow, and compliance undertakings.
Read caseTikTok Canada national security review: from wind-up order to binding undertakings
Canada first ordered TikTok's Canadian business wound up, then after further national security review permitted the investment to proceed subject to new legally binding undertakings.
Read caseTikTok children's privacy lawsuit: COPPA compliance as platform product governance
After an FTC investigation, the DOJ sued TikTok and ByteDance alleging violations of COPPA and an existing order.
Read caseTikTok Lite rewards case: growth mechanics require systemic-risk assessment
The Commission made TikTok's commitment to permanently withdraw the TikTok Lite Rewards programme from the EU binding, highlighting DSA scrutiny of new features and addictive design.
Read caseTemu EUR 200 million DSA fine: risk assessments cannot be generic templates
The European Commission fined Temu EUR 200 million for failing to properly identify, analyse, and assess systemic risks of illegal products on its platform.
Read caseTemu Arkansas data lawsuit: consumer protection and mobile-permission risk
The Arkansas Attorney General sued Temu under state consumer and personal-information protection laws, showing how state enforcement can pressure platform compliance.
Read caseCPSC scrutiny of Temu and Shein: product-safety duties for low-cost cross-border e-commerce
CPSC commissioners called for staff evaluation of how Shein, Temu, and similar foreign-owned platforms meet Consumer Product Safety Act obligations.
Read casePinduoduo app security incident: app-store governance and mobile trust risk
Google suspended the Google Play version of Pinduoduo over security concerns and used Play Protect against identified malicious versions, showing app-store rules can directly affect market access.
Read caseLuckin SEC accounting-fraud case: financial-control risk for overseas-listed companies
The SEC charged Luckin with misleading investors by materially misstating revenue, expenses, and operating loss, resolving the case with a USD 180 million penalty.
Read caseDiDi cybersecurity review and delisting: data security affecting overseas capital-market paths
After its U.S. listing, DiDi faced China's cybersecurity review and an RMB 8.026 billion penalty, then pursued NYSE delisting, showing the link between data regulation and overseas financing.
Read caseAlibaba antitrust penalty: platform ecosystem governance affecting global investor disclosure
SAMR penalized Alibaba's platform exclusivity conduct, and Alibaba furnished the decision through SEC filings, linking domestic enforcement and global capital-market disclosure.
Read caseWeChat U.S. ban litigation: national security, speech, and platform dependence
A U.S. executive order sought to restrict WeChat-related transactions, triggered user litigation and a preliminary injunction, and was later revoked.
Read caseAlipay, WeChat Pay, and connected-software order: national securitization of payments and app ecosystems
A U.S. executive order sought to prohibit certain transactions involving Alipay, QQ Wallet, WeChat Pay, WPS, and other Chinese connected apps; it was revoked but left a data-security template.
Read caseTencent 1260H listing: non-sanctions lists still affect capital markets and procurement
The U.S. Department of Defense included Tencent on the Section 1260H Chinese military companies list; although not a sanctions list, it can trigger investor, customer, and partner reassessment.
Read caseSenseTime OFAC CMIC listing: AI, human rights, and capital-market restrictions intersect
The U.S. Treasury identified SenseTime as a Non-SDN Chinese Military-Industrial Complex company, citing surveillance technology and human-rights concerns that affect U.S. investor dealings.
Read caseHikvision Canada wind-up order: security equipment and investment national-security review
Canada ordered Hikvision's Canadian business to cease operations and wind up under the Investment Canada Act national security framework, highlighting local-operation risk for security-equipment firms.
Read caseFCC secure-equipment authorization ban: from procurement restrictions to market-access restrictions
Under the Secure Equipment Act framework, the FCC restricted new equipment authorizations for covered-list firms, affecting telecom, surveillance, and IoT product sales.
Read caseNo matching cases