HKCNSA Attends CCS2025 Chengdu Cybersecurity Series: Exploring Cross-border Data Governance and Secure Global Expansion

On September 16, the CCS2025 Chengdu Cybersecurity Series Events officially opened in Chengdu, China. Centered around the theme “Security Iteration, Intelligence for a New Journey,” the event focused on the integration of artificial intelligence and cybersecurity innovation. It featured seven major segments, including vulnerability governance, offensive and defensive technologies, AI-powered cyber resilience, and youth talent development. The event attracted tens of thousands of cybersecurity professionals, serving as a key platform for technical exchange and industry collaboration.

Following its inaugural participation last year, the Hong Kong China Network Security Association (HKCNSA) was once again invited to attend and co-organize the “Secure Global Expansion” Hong Kong/Macau/Chengdu Cybersecurity Technology Exchange segment. This session brought together experts from Hong Kong, Macau, and mainland China to explore the challenges of data compliance and cybersecurity in the context of enterprise globalization.

As one of the event’s key highlights, the segment focused on data governance and security risks faced by enterprises going global. Experts shared practical insights on aligning with international regulations, managing cross-border data flows, and building regional collaborative defense strategies—providing valuable compliance references for businesses expanding overseas.

Ms. Chandy Ye, Vice Chairlady of HKCNSA, delivered a keynote titled “Cross-border Data Flow Practices in the Greater Bay Area.” Drawing on her extensive experience in data compliance across Hong Kong, mainland China, and international jurisdictions, she analyzed the background and core requirements of the Greater Bay Area Standard Contract (GBA SCC). She highlighted the contract’s flexibility in compliance procedures, impact assessments, and sensitive data handling, noting its wide adoption across sectors such as healthcare, credit reporting, and insurance. Ms. Ye also shared Hong Kong’s latest developments in building a data trading ecosystem, advancing the Hetao Innovation Zone, and shaping AI policy—demonstrating the forward-looking collaboration between Hong Kong and Shenzhen in data governance.

Mr. John Wan, Director of the Cybersecurity Committee of HKCNSA, presented on “Cross-border Data Compliance and Governance: Challenges and Opportunities from Hong Kong to the World.” He emphasized the strategic importance of cross-border data flows in the digital economy and compared regulatory frameworks across mainland China, Hong Kong, the EU, and the US. Mr. Wan advocated for a layered data management approach, including Data Impact Assessments (DIA), encryption, and anonymization techniques. He also proposed a pilot “Data Special Zone” between Hong Kong and mainland China to foster cross-cultural compliance collaboration and support enterprises in navigating global data governance.

The event also featured a panel discussion moderated by Mr. Li Gang, Deputy Editor-in-Chief of China Information Security magazine. Panelists included Ms. Chandy Ye, Mr. Tan Xiaosheng (the Secretary-General of CCFYOCSEF、Founder of Beijing Cyber Intelligent Technology Co.), Mr. Yin Xiaodong (Senior Partner at Tahota Law Firm), and Mr. Mi Chaoyang (Executive Director of the Macau Information Technology Industry Union). The discussion focused on secure global expansion, sharing Hong Kong and Macau’s unique experiences in data compliance and cybersecurity governance, and exploring regional collaboration and risk mitigation strategies. Panelists agreed that Hong Kong and Macau’s regulatory flexibility and international alignment offer valuable models for mainland enterprises seeking global expansion.

As one of China’s leading cybersecurity events, CCS Chengdu has successfully held five editions to date. With its growing influence and professionalism, it has become a flagship platform in the national cybersecurity landscape. HKCNSA will continue to leverage such high-quality platforms to deepen cooperation between Hong Kong, Macau, and mainland China in cybersecurity policy, technology, and talent development—advancing regional cybersecurity governance to new heights.