伴随科技飞速发展,网络安全与数据保护问题变得愈发复杂,近年,相关法律法规与监管政策在中国不断落地,数据与网络安全法律服务需求也日趋增加。今年,ALB首次推出十五佳网络安全和数据保护律师榜单,希望专注发掘该领域的优秀法律人:他们不仅拥有扎实的专业基础、敏锐的监管洞察,同时也具备着犀利的商业思维,为客户多样化的网络安全和数据保护需求提供优质法律保障。
人类社会发展到数字及信息化时代,数据已经成为了新型生产要素。德勤指出:“数据深刻改变着我们的生产方式、生活方式和社会治理方式,随着数据采集、治理、应用、安全等方面的技术不断创新和产业的快速发展,在技术的推动下,数据要素已成为国民经济长期增长的内生条件。”
一方面,数据作为生产要素,本身需要得到全流程保护,此谓“数据保护”;另一方面,数据所运行的网络空间也需得到保护,此谓“网络安全”。
如今,数据保护及网络安全能力已成为企业良好竞争力不可或缺的组成部分,企业需要在确保两者的前提下更高效地实现业务运营。此外,数据和网络相关产业也面临蓬勃发展:《2022年中国网络安全行业白皮书》就指出,未来5年,中国网络安全产业将实现强势增长。
在此背景下,法规及监管也没有落后,精专于相关领域的律师及律所因此在近年不断脱颖而出。服务于数据保护及网络安全领域需要律师具备怎样的新技术、新能力?相关领域对企业的服务又有怎样的新发展、新趋势?几位上榜律师与ALB分享了自己的执业经验与心得体会。
监管加剧
最近几年,网络安全与数据保护无疑是中国立法和监管的重点。立法层面来看,目前中国已经形成了所谓“三驾马车”的态势:即《网络安全法》《数据安全法》《个人信息保护法》都已出台生效。由此,中国迎来了网络安全与数据保护的新纪元,行业发展迎来巨变,企业也将面临更为严苛的合规挑战。
此外,国际立法层面来看,据《2022年度全球网络安全发展态势研究报告》显示,近期,美国、欧盟、澳大利亚、印度相继通过立法或指令,推动建立如《关键基础设施网络事件报告法》、《信息技术法》等强制性的网络安全事件报告机制。此外,美国出台的《联邦信息安全现代化法》以及欧盟最新的《数字市场法》,都为进一步构建网络安全合规管理平台奠定了基础。这也为中国企业的海外运营带来挑战。
数据和网络领域新法新规落地频繁,如何掌握最新监管动向,并深刻理解监管逻辑以预测未来方向,成为了近年来律师及企业法务部门热议的话题。对此,世辉律师事务所合伙人王新锐律师指出,实际上,面对数字化与网络化的飞速发展,律师、立法者与监管者面对着不小压力。“网络安全和数据保护领域的法规从碎片化到体系化、从原则规定到有很多细致的规则,具有其内在演变的逻辑。作为经常参与立法支撑工作的律师,我也感受到立法者和监管者面对新技术、新产业甚至新范式产生的各类风险,同样面对巨大压力。”
因此,他指出,律师有机会服务于这一全新且不断演变的领域,这是一种难逢的机遇,但也应采纳全新的执业心态。“不要把自己当作是现有法律规则的‘答题者’,而要持续去思考法律规则因何而变,什么是贯穿其中基本不变的,这样可以对法律制度进行一些拆解,分离出其中具有稳定性的部分和具有不确定性的部分,并及时和客户对齐。”
换句话说,选择执业于这一领域,就需要面对技术、监管、法律服务三者齐头并进的局面。“从某种意义上说,能预测到的挑战都是机会,预测不到的则是困难。”王律师总结道。
企业面临新挑战
数据的重要性愈发凸显,越来越多企业也逐渐将数字化转型列为至关重要的目标。然而,德勤《2021网络安全前瞻调研报告》指出,面对规模竞争的压力,企业领导人通常过于关注数字化转型的结果,而未能充分考虑网络安全的风险,其中蕴含的许多问题与挑战都特别需要法律人的关注。
汇业律师事务所合伙人李天航律师告诉ALB,就他观察,过去一年中,两类企业对于数据、网络相关的法律服务需求比较集中:一是跨国企业关于数据出境的需求;二是民营企业关于刑事合规的需求。
他和团队则特别关注于数据出境问题。“近几年,有关网络安全和数据保护的法律法规逐步健全,尤其是《个人信息保护法》《数据出境安全评估办法》的颁布施行,对企业数据出境提出了新的合规要求。过去一年,存在数据跨境传输行为的企业最集中的需求就是数据出境合规法律服务,亟需律所等专业法律服务机构帮助完成相关安全申报。”
伴随着《个人信息出境标准合同办法》在今年6月1日正式施行,重要数据的识别规则和重要数据清单也将陆续公布。因此李天航律师预测,未来一段时间内,数据出境的合规法律服务需求将较为集中,并且将呈现常态化的发展趋势。
“数据出境的法律服务相对而言比较前沿,没有太多可供借鉴的过往经验。因此,整个汇业网数团队在积极展开内部研究的同时,也加强了与监管部门的沟通,力求将工作做深、做细、做扎实,精准把控内部风险,合理做好整改方案,尽可能帮助客户提高申报通过率。”李律师说。
作为国内最早专注于网络安全和数据保护领域的一批律师,观韬中茂律师事务所合伙人王渝伟律师也观察到企业对数据及网络安全服务需求的不断细化,并就此安排团队及自身的发展规划。
“我们正专注打造一支专精于网络安全与数据隐私保护的法律团队,为各行业新型企业或新兴互联网产品的开发与革新保驾护航。”王律师说。
在此过程中,王渝伟律师特别使用新方法及工具来提供服务。“为了帮助企业应对日益趋严的监管,我们在引导和帮助客户在重点业务场景逐步引入自动化工具以及开发标准化的数据合规产品,与外部法律科技团队合作尝试合规服务的产品化、数据合规体系的自动化。另外,团队也会关注与监管机构、立法机构等之间的密切合作,推动中国数据合规领域立法与司法实践的发展,最终使客户从中受益。”
复合型能力
服务于全新的网络安全与数据保护领域,除了要敏锐洞察监管及行业发展动向,该领域对于律师也有着不同寻常的要求,对此上榜律师们有着不同的感悟。
王渝伟律师告诉ALB,作为较早执业于该领域的律师,他曾为国内第一批大数据公司提供服务,因此对网络安全与数据保护有着深刻理解,对于行业发展趋势也积累了独特观察和理解,回望过往,他有着不少感触。
王律师坦言,选择深耕网络安全与数据保护领域,既是一种“职业选择”,更是一种“热爱与责任”。“在服务过程中,因为关注到互联网、大数据、人工智能等在未来发展的可能性,也就更坚定了在这一领域深耕的想法和选择。同时,我爱好于技术发展,因此乐于透过自身执业,与顶尖技术进行碰撞,并从众多优秀的企业和项目中学习行业创新者身上优秀的专业素养。”
锦天城律师事务所合伙人吴卫明律师则特别强调服务于该领域,应具备复合的知识,并要求自己深度理解行业。
就他本人来说,除了具有丰富扎实的法学基本理论和实务经验外,他还具有电子商务学的博士学位。吴律师告诉ALB:“复合化的知识背景是做好该领域法律服务的基础,有利于理解客户的业务流程、数据处理环节,并能够将技术、商务与法律做更好的结合,从而为客户提供更具有落地性的合规法律服务。”
他进一步将网络安全与数据保护律师应具备的复合型特质分为三点:“其一,对于信息技术的发展以及应用需具有很强的理解能力,能够理解各种信息技术应用可能给业务流程、数据处理带来的影响;其次,对于数字经济的实质与体系需要具备深刻的认知,理解网络应用及新技术对于商业流程、业务流程的重塑,则更有利于把握数据保护的重点环节与管控要点,从而制定有效的方案;最后,需要理解特定的行业特点,数据保护建立在数据生命周期的基础之上,而数据生命周期又与特定的行业及业务流程紧密相关。”
此外,伴随着新技术、新模式、新法规的不断涌现,网络安全与数据保护领域也对律师提出了很多新要求。吴律师表示,超前的学习和研究能力,以及综合运用知识的能力,也能够使律师更好地适应不断变化的外部环境。
同时,其他行业的工作经验对于钻研该领域也有着莫大的助力。对汇业的李天航律师而言,逾15年的公安从业经验为他成为一名优秀的网络安全与数据保护律师奠定了扎实的基础。他告诉ALB:“所有的经历都是一种成长,所有的过往都是岁月的恩赐。过往公安的从业经历对我的律师执业和成长之路有莫大的帮助。”
具体来看,公安的工作经验有三个方面的帮助。首先是监管视角和思维模式的建立。李天航律师直言:“网络安全和数据保护本质是一项合规法律服务,而合规不仅仅包含静态的规则,还有动态地遵从与抗辩。无论是规则,还是遵从、抗辩规则,都需要从监管的视角和思维进行审视、矫正,才能更加符合实际。”
其次,是敏锐洞察力和解决问题能力的培养。“公安机关往往能够最先接触社会前沿问题,因此也会最早发现问题、最先考虑如何解决问题。尤其在遇到新类型问题的时候,必须要为一线执法部门提供具体的思路和落地执行的方法。由于法律有时原则性很强,颗粒度不够细,因而如何理解法律及其执行尤为重要。同样,我们在提供合规法律服务时,如果不能兼顾监管部门的理解和执法口径,合规方案的实操性和可落地执行性就会大打折扣。”
第三,则是对互联网行业和新技术领域的认识提升。在李天航律师看来,能够完成从警察到网络安全和数据保护律师的“无缝切换”,恰恰得益于他与网络安全执法相关的公安经历。“我始终能够与互联网行业和新技术应用领域保持密切接触,能够先后从执法者角度和法律服务从业者两个角度,审视这个领域的发展问题。”
当法律遇到技术
与此同时,“既懂法律也懂技术”,也愈发成为对该领域律师的硬实力要求之一。
对此王新锐律师坦言,和客户相比,律师永远是“门外汉”。不过,“其实很多大型公司的技术高手很善于向‘门外汉’解释基本技术原理和发展脉络,在和他们的沟通中能够学到很多。所以,只要律师构建起‘主动学习、善于提问、反复验证’的循环,就能把很多基础的技术问题大致搞清,在交流和服务中减少沟通成本,不影响法律判断”。
因此,王律师指出,不要因为律师的职业身份而自我设限,“求知终究是靠好奇心驱动的”。但律师也千万不要不懂装懂,“没搞清楚的时候一定要主动承认,千万不要掌握几个专业名词就沾沾自喜,客户以为律师懂了但律师其实不太懂,最容易酿成大错”。
李天航律师对此表示赞同,在他看来,数据保护与网络安全领域律师对前沿技术及其商业应用的理解和对行业问题的洞察,是其与行业从业人员顺畅沟通并提供法律服务的良好基础。“律师要能够和行业从业人员一样了解其所服务的企业,并讲对前沿技术的理解与分析转化为法律语言,梳理抽象出法律问题,在此基础上提出解决方案。”
然而,李律师也指出了法律与科技结合过程中可能蕴含的挑战:“前沿技术是创新的产物,而创新有可能会与现有规则、规律产生冲突。在此过程中产生的行政法律风险相对容易识别,法律责任也较可承受;但是刑事法律风险更难识别,一旦发生,将成为企业和从业人员的‘不可承受之重’。”
因此,如何使与数据保护和网络安全相关的刑事法律风险变得“可识别、能识别、可防范”,是他一直在思考的问题,对此,李律师认为,刑事司法经验在风险识别的深度、宽度、广度以及规则和制度体系的实操性、落地执行性方面,在都起着至关重要的作用。
展望未来
数字化时代将不断催生经济以新业态、新面貌高速发展,面对未来的机遇与挑战,上榜律师也在不断展开思索与规划。下一步,他们有着怎样的职业愿景?又如何设想业务及团队管理发展?
世辉的王新锐律师分享道,法律服务市场中,能够提供单一问题解决方案者众,而能够为复杂问题提供解决方案的人却一直供不应求。因此,想要在数据保护与网络安全这一新兴市场长久立足,律师特别需要培养自己处理复合型法律问题的能力。
“数据合规业务天然具有复合性,和多个业务领域,如资本市场、跨境并购、出口管制、反垄断、纠纷解决、劳动人事都有交叉,所以我希望自己和团队处理复杂问题的能力不断提高,但这也需要通过和同事、同行多合作而实现。”
“此外,我还有一个判断:法律职业对沟通能力的要求随着业务复杂度不断提高,未来不仅要和人沟通,还需要和机器沟通,这也是律所和团队管理的一个重点。”他说。
王渝伟律师则在打造自身品牌和服务特色方面有所规划。他告诉ALB:“我们团队计划通过引入跨行业、跨学科背景人才、引入第三方技术机构等方式,提高团队的自动化程度和响应速度,打造自身的品牌特色,为客户提供更高效率、更智能的法律服务与法律产品。”
王律师指出,他和团队未来几年将专注于车联网、金融科技、生命健康、智能智造等重点行业,并针对数据安全生态渠道、数据要素交易流通、企业数字化转型等几个领域的数据合规服务及相关合规服务进行深入布局,拓展并挖掘更多的业务机会。
李天航律师也将带领一群志同道合的法律人,“成为合格的合规律师,为客户提供更有性价比的高品质法律服务……人的能力和精力虽然是有限的,但希望我的团队以及律所每一名有志于在大合规道路上前行的同事,能够一起做好合格的合规律师。希望借助我们的法律服务,使企业不再经受法律风险的考验,希望帮助企业平衡好合规与商业模式的发展,助力企业更好地发展。”
在吴卫明律师看来,未来,相关领域律师的服务范畴可能会扩得更广,律师需要不断武装自己,为业务的变化做好准备。“数据保护是数字化进程中的核心内容,但数据保护并不是数字化的唯一内容。以数据保护为基础,以现代信息技术应用带来的法律问题解决为支撑,我希望能够持续服务于数字化发展,为数字化转型防控法律风险”。
2023 ALB China Top 15 Cybersecurity & Data Protection Lawyers
With the rapid development of science and technology, the complexities surrounding cybersecurity and data protection issues are increasing. In response to this, China has introduced a range of laws, regulations, and regulatory policies in recent years. Consequently, there is a growing demand for legal services specialising in data and cybersecurity. This year, ALB is launching its inaugural list of the top 15 cybersecurity and data protection lawyers to recognise the leading professionals in this field. These lawyers possess extensive legal knowledge, a deep understanding of regulations, and strong business acumen, enabling them to offer high-quality legal support for their clients' various cybersecurity and data protection requirements.
As human society enters the digital and information era, data has emerged as a significant factor of production. Deloitte says, "Data has profoundly transformed our production methods, lifestyles, and social governance models. With the continuous innovation of technologies for data collection, governance, application, and security, coupled with the rapid development of industries, technology has propelled data elements to become intrinsic conditions for the long-term growth of the national economy."
On the one hand, data itself, as a production factor, requires protection, commonly known as "data protection." On the other hand, the online environment in which data operates also demands safeguarding, referred to as "cybersecurity."
Presently, data protection and cybersecurity capabilities have become indispensable components for a company's competitiveness and the foundation upon which companies achieve more efficient business operations. Moreover, the data and Internet-related industries are experiencing significant growth, as projected by the 2022 White Paper on China's Cybersecurity Industry, which predicts robust expansion in China's cybersecurity industry over the next five years.
In this context, laws and regulations have kept pace with these advancements, leading to the emergence of numerous lawyers and firms specialising in these fields in recent years. Consequently, what new skills and capabilities are expected from data protection and cybersecurity lawyers? What are the latest developments and trends regarding services provided to enterprises in these fields? A number of the ranked lawyers share their insights with ALB.
INTENSIFYING REGULATION
Recently, cybersecurity and data protection have undoubtedly become the focal point of legislation and regulation in China. At the legislative level, three main pieces of legislation—the Cybersecurity Law, the Data Security Law, and the Personal Information Protection Law—have come into effect, ushering in a new era of cybersecurity and data protection. Industries are undergoing significant transformations, and enterprises will face increasingly stringent compliance challenges.
Internationally, according to the 2022 Global Cybersecurity Development Trend Research Report, the US, EU, Australia, and India have all recently enacted legislation or directives to promote the establishment of mandatory cybersecurity incident reporting mechanisms, such as the Cyber Incident Reporting for Critical Infrastructure Act and the Information Technology Act. Additionally, the U.S.'s Federal Information Security Modernization Act and the EU's latest Digital Markets Act have laid the foundation for building a more robust cybersecurity compliance management platform. All of these developments present challenges to the overseas operations of Chinese companies.
The frequent introduction of new data and cybersecurity laws and regulations has made understanding the latest regulatory trends, gaining deep insights into regulatory logic, and predicting future regulatory directions a hot topic among lawyers and in-house teams in recent years. Raymond Wang, Partner at Shihui Partners, highlights that amid the rapid development of digitisation and the Internet, lawyers, legislators, and regulators face immense pressure. He notes, "The evolution of cybersecurity and data protection laws and regulations, transitioning from fragmentation to systematisation and from general provisions to detailed rules, follows its inherent logic. I often participate in legislative support work and can sense the tremendous pressure legislators and regulators face when dealing with various risks arising from new technologies, industries, and even paradigms."
Therefore, Wang believes that while practicing in this new and evolving field presents a unique opportunity for lawyers, they must also adopt a fresh mindset. "We should not consider ourselves as merely providing answers to existing rules; instead, we should constantly contemplate the reasons behind rule changes and what remains unchanged. By doing so, we can distinguish stable components within the legal system from dynamic ones and promptly align ourselves with clients."
In other words, lawyers who choose to specialise in this field need to navigate the landscape where technology, regulation, and legal services progress hand in hand. Wang adds, "In a sense, predictable challenges are opportunities, whereas difficulties arise from the unpredictable."
NEW CHALLENGES FOR BUSINESS
As the significance of data continues to grow, an increasing number of companies have prioritised digital transformation as a crucial goal. However, Deloitte's 2021 Future of Cyber Survey highlights that, under pressure from the competition, business leaders often prioritise digital transformation outcomes without fully considering cybersecurity risks. The multifaceted issues and challenges in digital transformation require special attention from legal professionals.
Li Tianhang, Partner at Hui Ye Law Firm, explains to ALB that he has observed two types of enterprises with greater demands for data and Internet-related legal services over the past year. The first type pertains to multinational enterprises seeking assistance with data export, while the second type involves private enterprises seeking compliance with criminal law.
Li and his team closely monitor data export issues. "In recent years, cybersecurity and data protection laws and regulations have been gradually strengthened. Implementing the Personal Information Protection Law and the Measures for Data Export Security Assessment, in particular, has introduced new compliance requirements for data export. In the past year, enterprises engaging in cross-border data transfer have primarily sought data export compliance legal services. There is an urgent need for professional legal service providers, such as law firms, to assist these enterprises in completing relevant security applications."
With the implementation of the Measures for Standard Contracts on Personal Information Export on June 1, the criteria for identifying important data and the list of important data will soon be announced. Li predicts that the demand for compliance legal services related to data export will remain high and sustained in the future.
"Data export legal services are relatively new, with limited experience to reference. Therefore, while conducting internal research, the entire Hui Ye cybersecurity and data protection team has also enhanced communication with regulators. We strive to work in an in-depth, detailed, and thorough manner, accurately assess internal risks, develop reasonable rectification plans, and endeavour to improve the success rate of applications for our clients," says Li.
Wang Yuwei, Partner at Guantao Law Firm and among the first lawyers in China to specialise in cybersecurity and data protection, has also observed the evolving demands of enterprises for data and cybersecurity services. Accordingly, he has planned the development of himself and his team.
"We are focusing on building a legal team specializing in cybersecurity, data privacy, and protection to support the development and innovation of new enterprises or emerging Internet products across various industries."
Notably, Wang adopts new methods and tools to provide services. "To assist companies in coping with increasingly stringent regulations, we guide and aid clients in gradually adopting automation tools and developing standardised data compliance products for key business scenarios. We collaborate with external legal technology teams to explore the productisation of compliance services and automate data compliance. Additionally, our team closely collaborates with regulators and legislators to promote the development of legislation and judicial practices in the field of data compliance in China, ultimately benefiting our clients."
INTERDISCIPLINARY CAPABILITIES
To excel in the field of cybersecurity and data protection, lawyers have recognised the need for specific qualities and attributes. Wang Yuwei, reflecting on his early entry into the field, shares his insights and experiences of industry development trends. He views specialising in cybersecurity and data protection not only as a "career choice" but also as a "passion and responsibility." Wang's strong belief in the future potential of the internet, big data, AI, and his interest in technological advancements have fueled his commitment to this field. He continues to expand his knowledge by actively engaging with cutting-edge technologies, learning from industry innovators, and participating in top companies' projects.
Wu Weiming, a Partner at AllBright Law Offices, emphasises the importance of possessing comprehensive knowledge in serving the complex field. In addition to a solid foundation in legal theory and practical experience, Wu holds a PhD in e-commerce. He believes that a diversified knowledge background provides the basis for delivering effective legal services. It enables lawyers to understand clients' business processes, data handling aspects, and effectively integrate technology, business, and law to offer grounded and compliant legal solutions.
Wu further identifies three key traits cybersecurity and data protection lawyers should possess. Firstly, they should have a strong grasp of information technology's development and application and understand how different information technology applications impact business processes and data handling. Secondly, lawyers should possess a deep understanding of the essence and system of the digital economy. This knowledge allows them to comprehend how network applications and new technologies reshape business processes, identify crucial data protection and control aspects, and develop effective solutions. Lastly, lawyers need to comprehend the specific characteristics of industries since data protection is closely linked to the data life cycle, specific industries, and business processes.
Furthermore, the field of cybersecurity and data protection, with its constant influx of new technologies, models, and regulations, demands that lawyers adapt to these changes. Wu asserts that the ability to proactively study and research, as well as integrate knowledge effectively, empowers lawyers to navigate the evolving external environment.
Experience in other industries also proves valuable for specialisation in this field. Li Tianhang, drawing on his over 15 years of work in the public security industry, credits his solid foundation to becoming a top cybersecurity and data protection lawyer. He believes that all experiences contribute to personal growth, and his background in public security significantly aids his practice and professional development.
Li outlines three key aspects of the benefits derived from his previous experience. Firstly, it establishes a regulatory perspective and thinking model. Li emphasises that cybersecurity and data protection fundamentally involve legal compliance services, which require not only understanding static rules but also dynamic observance and defence. Approaching compliance from a regulatory perspective allows lawyers to offer more practical solutions.
Secondly, it cultivates keen insight and problem-solving skills. Public security organisations are often at the forefront of dealing with emerging societal issues. They are responsible for identifying problems and determining effective solutions. This experience equips lawyers to address new problems, interpret and enforce laws, and enhance the practicality and feasibility of compliance plans.
Lastly, Li highlights the advantage of improving understanding of the internet industry and new technologies. His seamless transition from police to a cybersecurity and data protection lawyer stems from his previous experience in public security law enforcement related to cybersecurity. By staying connected with the internet industry and keeping abreast of new technologies, Li has continuously examined the field's development from both law enforcement and legal service perspectives.
LAW MEETS TECHNOLOGY
In the field of cybersecurity and data protection, having a solid understanding of both law and technology has become increasingly crucial for lawyers. Raymond Wang acknowledges that lawyers are often considered "laymen" compared to their clients. However, he emphasises that lawyers can learn from technical experts in large companies who excel at explaining technical principles and development journeys to non-experts. By taking the initiative to learn, asking pertinent questions, and conducting thorough verification, lawyers can grasp many fundamental technical issues and reduce communication costs without compromising their legal judgment.
Wang believes that lawyers should not limit themselves due to their professional capacity, and the pursuit of knowledge should be driven by curiosity. However, it is essential for lawyers to refrain from pretending to understand when they don't. Admitting a lack of understanding and seeking clarification is crucial. Wang warns against complacency merely because a lawyer has acquired some technical jargon. Failing to genuinely comprehend a matter while giving the impression of understanding can lead to significant mistakes.
Li Tianhang shares this perspective, emphasising the importance of data protection and cybersecurity lawyers having a comprehensive understanding of cutting-edge technologies, their commercial applications, and industry issues. This knowledge forms a strong foundation for smooth communication with industry practitioners and enables lawyers to provide effective legal services. Lawyers must be able to comprehend the companies they serve and industry practitioners, translate complex technological concepts into legal language, identify and extract legal issues, and propose suitable solutions.
However, Li also highlights the challenges of combining law and technology. Cutting-edge technologies often lead to innovation that may conflict with existing laws and regulations. The administrative legal risks in this process are relatively identifiable and manageable, but criminal legal risks can be more difficult to detect. Once criminal legal risks materialise, they become an "unbearable burden" for enterprises and practitioners.
Li has been contemplating how to make criminal legal risks related to data protection and cybersecurity "identifiable and preventable." He believes that criminal justice experience plays a vital role in improving the identification, depth, breadth, and implementation of rules and systems, enhancing risk assessment capabilities, and devising practical strategies to mitigate criminal legal risks.
LOOKING AHEAD
In the digital era, the rapid development of the economy through new business formats presents both opportunities and challenges. Forward-thinking lawyers are continually contemplating their career aspirations and planning for the future of business and team management.
Raymond Wang believes that while many legal service providers can offer solutions to single problems, only a few can effectively address complex issues. Lawyers must enhance their ability to handle intricate legal challenges to thrive in the emerging data protection and cybersecurity market in the long run. Data compliance naturally intersects with multiple practice areas, such as capital markets, cross-border M&A, export control, antitrust, dispute resolution, labour, and HR. Wang aspires to upgrade his team's capability to handle complex issues continuously, fostering more cooperation with colleagues and peers.
Wang also envisions that the legal profession will increasingly demand strong communication skills in line with the growing complexity of business. In the future, lawyers will need to communicate not only with humans but also with machines. This aspect of law firm and team management will be a significant focus for him.
Wang Yuwei plans to develop his own brand and unique service features. His team aims to enhance automation and response speed by attracting professionals from various industries and disciplines and collaborating with third-party technical agencies. This strategy aims to create distinct brand characteristics and provide clients with more efficient and intelligent legal services and products. Over the next few years, Wang and his team will concentrate on key industries such as V2X, fintech, life health, and smart manufacturing. They will focus on data compliance and adjacent compliance services in data security ecological channels, data element transaction exchange, and enterprise digital transformation to scale up their operations and explore more business opportunities.
Li Tianhang envisions leading a group of like-minded legal professionals to become qualified compliance lawyers and deliver cost-effective, high-quality legal services to clients. He aims to support enterprises in avoiding legal risks and strike a balance between compliance and business model development. Li hopes that his legal services will enable enterprises to navigate legal challenges successfully and foster better development.
Wu Weiming anticipates that the scope of services for lawyers in related fields will further expand in the future. He emphasises the need for lawyers to equip themselves to adapt to evolving business dynamics continuously. Wu's goal is to serve digital development by focusing on data protection and resolving legal issues arising from the application of modern information technology. He aims to prevent and control legal risks associated with digital transformation.
|
2023 ALB China Top 15 Cybersecurity & Data Protection Lawyers |
|
Cai Kaiming蔡开明 Chen Jihong陈际红 Marissa Dong董潇 Kevin Duan段志超 Li Tianhang李天航 Meng Jie孟洁 Susan Ning宁宣凤 David Pan潘永建 Shen Xiaoyu申晓雨 Sun Chuan 孙川 Raymond Wang王新锐 Wang Yuwei王渝伟 Wu Weiming吴卫明 Samuel Yang杨洪泉 Zhang Tao张韬
|
