Carol Sun specializes in Government Enforcement and Investigation, Data Protection and Cybersecurity, and White-collar Crime. Prior to joining JunHe, she was the head of compliance practice at leading Chinese law firms. Carol is a leading lawyer with significant industry recognition in the practice of cross-border compliance and data protection.
Carol is one of the few lawyers who helps the clients to consider and comply with China's data security requirements in complex cross-border government enforcement and investigations and provides pragmatic solutions. She has extensive experience working with international law firms and serving Chinese and Western multinational enterprises. She understands not only China's legal requirements, but also the legal procedures in other key jurisdictions, and is able to handle conflict of laws issues. Carol is committed to helping her clients navigate the increasingly complex global compliance landscape. She has represented clients in a number of milestone government investigations involving multiple jurisdictions, including China, the United States, and Europe, and has assisted clients in regulatory compliance and crisis management projects in anti-corruption, sanctions, and cross-border data transfer matters.
Carol Sun is highly regarded as a pioneer in personal information protection and data security, with a particular focus on cross-border data transfer regulations, personal information protection rules, and the incident response of data breach. She has represented nearly 100 domestic and foreign enterprises from various fields such as smart devices, medical and healthcare, biotechnology, Internet of Things, video surveillance, artificial intelligence, Internet technology, finance, consumer products and other emerging and traditional industries in personal information protection and cybersecurity projects.
In 2023 and 2022, Carol was recognized by Chambers Greater China Region in "Data Protection & Privacy" area. In 2019, Carol was named as one of the "Women in Data" by Global Data Review, alongside the Chair of the European Data Protection Board and the General Counsel of the UK Information Commissioner's Office.
In the area of compliance investigations, Carol regularly leads internal investigations on behalf of her clients for a variety of issues including trade secret infringement, embezzlement, and conflicts of interest and corruption. She assists her clients in understanding whether there are systemic compliance risks and provides remediation recommendations.
Carol Sun is frequently invited by major legal publishers such as Chambers, Thomson Reuters, Wolters Kluwer and LexisNexis to give speech and provide Chinese legal guidance on compliance and investigations, anti-corruption, sanctions, and data security.
LL.M., Fudan University
BEc., Dalian University of Technology
Carol Sun is qualified to practice law in China.
Mandarin and English
Chambers Great China 2023