Four new Chinese cyber regulations signal that President Xi Jinping is strengthening China's system of cyber governance and expanding the legal framework for data control.
Samm Sacks is a senior fellow in the Technology Policy Program at CSIS. Before joining CSIS, she launched the industrial cyber business for Siemens in Asia, focusing on energy sector cybersecurity. Previously, she led China technology sector analysis at the political risk consultancy Eurasia Group. Her work focused on technology innovation, cyber governance, and information communication technology (ICT) trade, including data localization issues. Prior to this, she worked at Booz Allen Hamilton and Defense Group Inc., where she advised senior U.S. Defense Department and Intelligence Community officials on China’s science and technology (S&T) development, focusing on strategic emerging industries. A former Fulbright scholar in Beijing, Ms. Sacks holds an M.A. from Yale University in international relations and a B.A. from Brown University in Chinese literature. She reads and speaks Mandarin and is a frequent contributor to print and TV media, including Lawfare, the Washington Post, Los Angeles Times, Reuters, Fortune, Bloomberg, Nightly Business Report, C-SPAN, and BBC.
Subscribe to this Lawfare contributor via RSS.
China's cybersecurity law is broad and ambiguous, but we actually know more about how it might operate in practice than it seems at first glance.
Apple's conflict with the FBI has raised more questions than answers on Apple's relationship with the Chinese government. But, in China, things are always more complicated than they appear.