 Does cybersecurity regulation reduce corporate data-breach risk?Lujia Gao, Zhaoying Chen, Wei Zhao and Xuanyu Lai Finance Research Letters, 2025, vol. 78, issue C Abstract: This study examines the impact of cybersecurity regulation on corporate data-breach risk, leveraging China's Cybersecurity Law implementation as a quasi-natural experiment. Using data from 3,761 Chinese firms from 2007 to 2022, this study reveals that cybersecurity regulation effectively mitigates data-breach risk by enhancing firms’ cybersecurity cultures and systems. Subsequent heterogeneity analysis reveals that the effect is more pronounced for non-state-owned enterprises and high-tech industries. This study contributes to the literature on cybersecurity and data breaches, providing policymakers with insights to optimize cybersecurity regulations. Keywords: Cybersecurity regulation; Data-breach risk; Cybersecurity law; Cybersecurity risk (search for similar items in EconPapers) Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:eee:finlet:v:78:y:2025:i:c:s1544612325004349 DOI: 10.1016/j.frl.2025.107171 Access Statistics for this article Finance Research Letters is currently edited by R. Gençay More articles in Finance Research Letters from Elsevier |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.