Derek Xia

I am an associate at Bird & Bird's Beijing office, specialising in regulatory compliance across data privacy, cybersecurity, telecommunications, AI, and intelligent connected vehicles, with extensive experience advising multinational corporations operating in China as well as Chinese enterprises expanding globally.

My expertise lies in multi-jurisdictional data compliance, helping businesses navigate regulatory landscapes in China, EMEA, APAC, LATAM and North America. My clients span industries including automotive, technology, finance, security, healthcare, agriculture, hospitality, and aviation.

I provide comprehensive support in conducting data compliance due diligence, drafting customer/employee-facing privacy documents, developing internal data compliance policies (e.g., data security policies, data classification guidelines, data retention policies, data subject request policies, and data breach response plans), establishing cross-border data transfer compliance frameworks, liaising with regulatory authorities.

Beyond data privacy, I have substantial experience in providing multi-jurisdictional compliance advice on telecommunications licensing, radio frequency approvals, telecom equipment certifications, intelligent connected vehicle road testing, and AI governance.