Place: Professionals / Details
Practice Areas

Maggie Meng is a partner based in our Beijing office,she is specialized in cybersecurity and data protection and regulatory compliance in the field of TMT & IoT, e-commerce and internet ad.


Her present clients mostly are notable internet giants, unicorn companies, commercial banks, Fintech Companies, IoT companies and pharmaceutical industrial companies.


Work Experience
  • She previously worked at Fortune 500 companies like Nokia and a well-known law firm for more than ten years. She provided legal advice for large-scale enterprises on various bidding projects with the contract value over 100 million RMB, and has rich experience in M&A and VC.
  • She has been the General Counsel and Data Protection Officer (DPO) of Mobvoi which is an AI unicorn company respectively invested by Google and Volkswagen. When working at Mobvoi, she was mainly responsible for legal affairs, regulatory compliance, IPR, world-wide policies’ research, and affairs of government relations; led the team to support domestic and international business operations, corporate strategy, IPO preparation and investment and financing, and dispute resolution affairs; formulated and implemented internal policies, guidelines, SOPs that are able to comply with internal compliance system, including anti-corruption/ anti-bribery, product quality and supply chain management, trade compliance, and data protection pursuant to laws and regulations of CN, US, EU and other jurisdictions. She has built up abundant data compliance systems and methodologies that could be put into practice and was once interviewed by China Central Television (CCTV) regarding experience on GDPR compliance.
  • She has served as a Chief Legal Counsel of Criteo Advertising Co., Ltd. (Greater China Region), providing legal supports in respect of domestic and international operation of advertising business and global projects.

Admitted in the PRC

Bachelor of Law: Peking University 
Master of Laws: Beasely Law School, Temple University, USA
Master of Business Administration: China Ocean University

Typical Commentary Articles

Uncertainty about corporate restructuring projects and effective communication with the government;

Discussion on the construction of legal framework of China's Charity Trust;

Good Practice of data compliance for AI enterprise;

Facebook event- Reflections of data compliance on the AI industry;

GDPR take into effect, how to build a compliance system based on different jurisdictions;

Discussion on the methodology of implementation of PIA based on “Personal Information Security Impact Assessment Guide”;

How does the enterprise inform and protect the user's personal information subject rights;

View on how to comply with data protection in the new retail industry;

Microsoft, Facebook, Google and Twitter have teamed up to launch data migration projects: open source plans for data portability;

Research report on data privacy drafting;

Impact on IoT industry from Connected Device Act of California;


Translation of data protection legislations of various jurisdictions

California Consumer Privacy Act, Brazilian General Data Protection Act, Indian Personal Data Protection Act, Russian Federation Personal Data Protection Act, NIST Small Business Cybersecurity Act, California IoT Device Network Security Act, Regulation “on a framework for the free flow of non-personal data in the European Union”, and other important documents of US federal privacy legislation.