IDEAS home Printed from https://ideas.repec.org/a/eee/finlet/v76y2025ics1544612325003058.html

Does cybersecurity regulation promote digital transformation? Evidence from the Cyber Security Law in China

Author

Listed:
  • Jin, Xianglan
  • Cui, Huizhu
  • Liu, Fengwei
  • Hu, Ziqiang
  • Cai, Yonghao

Abstract

This study investigates the impact of cybersecurity regulation on corporate digital transformation, using China's Cyber Security Law implementation as a quasi-natural experiment. Based on data from 3,024 Chinese firms from 2008 to 2022, we find that cybersecurity regulation significantly promotes digital transformation. Heterogeneity analysis reveals that the effect is more pronounced for state-owned enterprises (SOEs) and firms with positive performance feedback. SOEs are more responsive to regulatory requirements owing to their policy-driven nature, while firms with positive performance feedback are better positioned to allocate resources for digital transformation. This study contributes to the literature on cybersecurity and digital transformation and provides notable insights for policymakers to optimize cybersecurity regulation development.

Suggested Citation

  • Jin, Xianglan & Cui, Huizhu & Liu, Fengwei & Hu, Ziqiang & Cai, Yonghao, 2025. "Does cybersecurity regulation promote digital transformation? Evidence from the Cyber Security Law in China," Finance Research Letters, Elsevier, vol. 76(C).
    • Handle: RePEc:eee:finlet:v:76:y:2025:i:c:s1544612325003058
    DOI: 10.1016/j.frl.2025.107041
    as

    Download full text from publisher

    File URL: http://www.sciencedirect.com/science/article/pii/S1544612325003058
    Download Restriction: Full text for ScienceDirect subscribers only
    File URL: https://libkey.io/10.1016/j.frl.2025.107041?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to

    for a different version of it.

    References listed on IDEAS

    as
    1. Pereira, Guillermo Ivan & Specht, Jan Martin & Silva, Patrícia Pereira & Madlener, Reinhard, 2018. "Technology, business model, and market design adaptation toward smart electricity distribution: Insights for policy making," Energy Policy, Elsevier, vol. 121(C), pages 426-440.
    2. Geng, Haipeng & Su, Zhongfeng & Wang, Junkai, 2025. "The impact of management equity incentive on firms' risk-taking under different monitoring conditions," International Review of Financial Analysis, Elsevier, vol. 97(C).
    3. Plekhanov, Dmitry & Franke, Henrik & Netland, Torbjørn H., 2023. "Digital transformation: A review and research agenda," European Management Journal, Elsevier, vol. 41(6), pages 821-844.
    4. Zhu, Changchun & Li, Na & Ma, Jing, 2024. "Impact of CEO overconfidence on enterprise digital transformation: Moderating effect based on digital finance," Finance Research Letters, Elsevier, vol. 59(C).
    5. Priya Garg, 2020. "Cybersecurity breaches and cash holdings: Spillover effect," Financial Management, Financial Management Association International, vol. 49(2), pages 503-519, June.
    6. Wang, Fangjun & Wang, Hao & Li, Jiyuan, 2024. "The effect of cybersecurity legislation on firm cost behavior: Evidence from China," Pacific-Basin Finance Journal, Elsevier, vol. 86(C).
    7. Fan Yang & Jian Xu, 2018. "Privacy concerns in China's smart city campaign: The deficit of China's Cybersecurity Law," Asia and the Pacific Policy Studies, Wiley Blackwell, vol. 5(3), pages 533-543, September.
    8. Fan Yang and Jian Xu, 2018. "Privacy concerns in China's smart city campaign: The deficit of China's Cybersecurity Law," Asia and the Pacific Policy Studies 201839, Crawford School of Public Policy, The Australian National University.
    9. Kwon, Ohbyung & Lee, Namyeon & Shin, Bongsik, 2014. "Data quality management, data usage experience and acquisition intention of big data analytics," International Journal of Information Management, Elsevier, vol. 34(3), pages 387-394.
    10. Hao Jiang & Naveen Khanna & Qian Yang & Jiayu Zhou, 2024. "The Cyber Risk Premium," Management Science, INFORMS, vol. 70(12), pages 8791-8817, December.
    11. Soomro, Zahoor Ahmed & Shah, Mahmood Hussain & Ahmed, Javed, 2016. "Information security management needs more holistic approach: A literature review," International Journal of Information Management, Elsevier, vol. 36(2), pages 215-225.
    12. Xiang, Cheng & Chen, Fengwen & Wang, Qian, 2020. "Institutional investor inattention and stock price crash risk," Finance Research Letters, Elsevier, vol. 33(C).
    13. Lattanzio, Gabriele & Ma, Yue, 2023. "Cybersecurity risk and corporate innovation," Journal of Corporate Finance, Elsevier, vol. 82(C).
    14. Sara Quach & Park Thaichon & Kelly D. Martin & Scott Weaven & Robert W. Palmatier, 2022. "Digital technologies: tensions in privacy and data," Journal of the Academy of Marketing Science, Springer, vol. 50(6), pages 1299-1323, November.
    Full references (including those not matched with items on IDEAS)

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Yu Sang & Kannan Loganathan & Priya Sukirthanandan, 2025. "A Study on the Impact of Corporate Digital Transformation on Environmental, Social, and Governance (ESG) Performance: Mechanism Analysis Based on Resource Allocation Efficiency and Technological Gap," Sustainability, MDPI, vol. 17(8), pages 1-31, April.
    2. Chen, Hongze & Li, Conggang & Liu, Jiatao & Xu, Rong, 2025. "Navigating digital frontiers: The impact of China's cybersecurity law on corporate digital innovation," International Review of Financial Analysis, Elsevier, vol. 103(C).
    3. Xu, Jing, 2025. "Cybersecurity governance and corporate innovation: evidence from China," Finance Research Letters, Elsevier, vol. 82(C).

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Lee, Chien-Chiang & Wang, Chih-Wei & Lin, Weizheng & Chen, En-Jia, 2025. "Cyber risk and corporate share repurchases," International Review of Financial Analysis, Elsevier, vol. 103(C).
    2. Xu, Gengxi & Li, Yugang & Liu, Shanshan & Ye, Zhuhong, 2026. "Cybersecurity risk and firm growth: Empirical evidence based on text analysis," The North American Journal of Economics and Finance, Elsevier, vol. 81(C).
    3. Huy Viet Hoang, 2025. "Who Pays for Cybersecurity? Corporate Dividends in Response to Cybersecurity Risk in US Firms," Journal of the Knowledge Economy, Springer;Portland International Center for Management of Engineering and Technology (PICMET), vol. 16(6), pages 18085-18123, December.
    4. Caprotti, Federico & Liu, Dong, 2020. "Emerging platform urbanism in China: Reconfigurations of data, citizenship and materialities," Technological Forecasting and Social Change, Elsevier, vol. 151(C).
    5. Tan, Weijie & Guo, Binhua & Zhang, Qiantao, 2025. "Cybersecurity governance and corporate market value: Perspectives from investor trust and supply chain trust," Pacific-Basin Finance Journal, Elsevier, vol. 90(C).
    6. Gao, Lujia & Chen, Zhaoying & Zhao, Wei & Lai, Xuanyu, 2025. "Does cybersecurity regulation reduce corporate data-breach risk?," Finance Research Letters, Elsevier, vol. 78(C).
    7. Wang, Yu & Dong, Fan, 2025. "How intellectual property protection enhances data capitalization: The mediating effects of resources and willingness to capitalize on data," International Review of Financial Analysis, Elsevier, vol. 107(C).
    8. Martin Eling & Michael McShane & Trung Nguyen, 2021. "Cyber risk management: History and future research directions," Risk Management and Insurance Review, American Risk and Insurance Association, vol. 24(1), pages 93-125, March.
    9. Xu, Yao & Zhao, Feng & Zhang, Qi, 2025. "How does the cybersecurity law affect corporate investment," International Review of Financial Analysis, Elsevier, vol. 103(C).
    10. Shadi Shayan & Ki Pyung Kim & Tony Ma & Tan Hai Dang Nguyen, 2020. "The First Two Decades of Smart City Research from a Risk Perspective," Sustainability, MDPI, vol. 12(21), pages 1-20, November.
    11. Liu, Xiaohui & Luo, Juan & Yawson, Alfred, 2025. "Equity offering following cyberattacks," Journal of Corporate Finance, Elsevier, vol. 91(C).
    12. Wang, Yu & Wang, Qin, 2025. "Intellectual property protection and corporate data-breach risks," International Review of Financial Analysis, Elsevier, vol. 107(C).
    13. Calvard, Thomas Stephen & Jeske, Debora, 2018. "Developing human resource data risk management in the age of big data," International Journal of Information Management, Elsevier, vol. 43(C), pages 159-164.
    14. Xu, Jing, 2025. "Cybersecurity governance and corporate innovation: evidence from China," Finance Research Letters, Elsevier, vol. 82(C).
    15. Sulong, Zunaidah & Fuszder, Md. Habibur Rahman & Abdullah, Mohammad & Abakah, Emmanuel Joel Aikins, 2025. "Cybersecurity risk and bank risk-taking," Journal of Behavioral and Experimental Finance, Elsevier, vol. 47(C).
    16. Tang, Rui & Li, Mingyu, 2026. "Cybersecurity and corporate resilience –a study based on listed companies in China," Technology in Society, Elsevier, vol. 84(C).
    17. Farhad, Mohsin Ali, 2024. "Consumer data protection laws and their impact on business models in the tech industry," Telecommunications Policy, Elsevier, vol. 48(9).
    18. Rebenaque, Olivier & Schmitt, Carlo & Schumann, Klemens & Dronne, Théo & Roques, Fabien, 2023. "Success of local flexibility market implementation: A review of current projects," Utilities Policy, Elsevier, vol. 80(C).
    19. de Camargo Fiorini, Paula & Roman Pais Seles, Bruno Michel & Chiappetta Jabbour, Charbel Jose & Barberio Mariano, Enzo & de Sousa Jabbour, Ana Beatriz Lopes, 2018. "Management theory and big data literature: From a review to a research agenda," International Journal of Information Management, Elsevier, vol. 43(C), pages 112-129.
    20. Jia Liu & Jingyao Li & Shuwei Wang, 2025. "Do Executives with IT Backgrounds Influence the Selection of Corporate Auditors in the Context of Digital Innovation?—An Examination from a Sustainability Perspective," Sustainability, MDPI, vol. 17(19), pages 1-19, October.

    More about this item

    Keywords

    ;
    ;
    ;
    ;
    ;

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:eee:finlet:v:76:y:2025:i:c:s1544612325003058. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Catherine Liu (email available below). General contact details of provider: http://www.elsevier.com/locate/frl .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.