Is VPN Use Illegal in China? Legal Boundaries and Key Case Studies

5/26/2026 · 2 min

Overview of China's VPN Legal Framework

In China, VPN (Virtual Private Network) technology itself is not illegal, but its use is strictly regulated. According to the Provisional Regulations on the Administration of International Networking of Computer Information Networks and the Measures for the Administration of International Internet Gateway Bandwidth, no unit or individual may establish or use other channels for international networking without approval from the telecommunications authority. This means that using unauthorized VPNs to access overseas websites may constitute a violation.

Legal vs. Illegal Boundaries

Legal Use Cases

  • Approved cross-border corporate communications: Foreign-invested or domestic enterprises approved by the Ministry of Industry and Information Technology (MIIT) can use legal VPNs for internal data exchange.
  • Academic research and international cooperation: Universities or research institutions, after approval, may access international academic resources via dedicated channels.
  • Personal compliance needs: For example, holding a legitimate international credit card and accessing overseas bank websites through services provided by authorized operators is generally not considered illegal.

Illegal Use Cases

  • Setting up private VPNs: Individuals or enterprises building VPN servers without permission for personal or third-party use.
  • Distributing VPN tools: Sharing or selling VPN software or tutorials online to induce others to bypass the firewall.
  • Engaging in illegal activities: Using VPNs to access gambling, pornography, violent content, or to conduct cyberattacks, fraud, etc.

Key Case Studies

Case 1: Individual Penalized for Using VPN

In 2020, Li, an employee of a Shenzhen company, was warned and fined 1,000 RMB by public security authorities for using a VPN to access overseas social media platforms. The VPN software Li used was not approved by MIIT, and the websites accessed contained sensitive information.

Case 2: VPN Provider Criminally Liable

In 2019, the founder of the well-known VPN service "KuaiFan" was sentenced to three years in prison and fined 500,000 RMB for providing illegal VPN services, convicted of "providing programs and tools for illegally侵入 and controlling computer information systems." The service had provided cross-border networking to over 100,000 users without a license.

Case 3: Enterprise Fined for Unauthorized VPN Use

In 2021, the Shanghai branch of a multinational consulting firm was ordered to rectify and fined 200,000 RMB by MIIT for using an unauthorized VPN for internal communications. Although a foreign enterprise, the company failed to apply for the required international networking license.

Compliance Recommendations

  1. Use authorized services: For cross-border networking needs, choose VPN services approved by MIIT (e.g., international leased lines from major telecom operators).
  2. Avoid distributing tools: Do not share or recommend unapproved VPN software to avoid legal liability.
  3. Monitor policy updates: China's cybersecurity regulations are constantly evolving; regularly check official announcements from MIIT or the Cyberspace Administration of China.
  4. Consult legal experts: Enterprises or individuals with cross-border networking needs should seek professional legal advice to ensure compliance.

Related reading

Related articles

A Guide to VPN Legality: Compliance Practices and Risk Mitigation Under National Legal Frameworks
This article systematically reviews the legal regulatory frameworks for VPNs in major countries (China, the US, the EU, Russia, India, etc.), analyzes the boundaries between legal use and violations, and provides compliance operation suggestions and risk mitigation strategies for enterprises and individual users.
Read more
The Legal Landscape of VPNs: Global Regulatory Frameworks and User Compliance Guide
This article provides a comprehensive overview of VPN legal regulations across major countries and regions, analyzes potential legal risks for users, and offers compliance guidance to help readers enjoy online freedom while avoiding legal pitfalls.
Read more
Cross-Border Data Flow and VPN Compliance: Legal Frameworks and Technical Implementation for Enterprise Deployment
This article delves into the compliance requirements for enterprise VPN deployment in cross-border data flows, analyzing China's Cybersecurity Law, Data Security Law, Personal Information Protection Law, and key technical considerations such as encryption standards, audit logs, and access controls, to help enterprises build lawful cross-border data transmission solutions.
Read more
Compliance Boundaries for Cross-Border VPN Deployment: Technical Options Under China's Legal Framework
This article delves into the compliance boundaries for cross-border VPN deployment under China's legal framework, analyzing key regulations such as the Cybersecurity Law and Data Security Law, and offering technical solution recommendations for secure and compliant cross-border network connectivity.
Read more
Cross-Border Data Compliance and VPN Usage: A Guide to Mitigating Legal Risks for Enterprises
This article delves into the legal compliance risks enterprises face when using VPNs for cross-border data transfers, including constraints from China's Cybersecurity Law, Data Security Law, Personal Information Protection Law, and international regulations like GDPR, offering specific risk mitigation strategies and best practices.
Read more
Legal Characterization of VPN Circumvention: Judicial Practice and User Liability Under China's VPN Ban
This article provides an in-depth analysis of the legal framework surrounding China's VPN ban, examining the administrative and criminal characterization of circumvention, reviewing recent judicial precedents, and clarifying the legal liabilities and risks for ordinary users.
Read more

FAQ

Will individuals definitely be punished for using VPNs to bypass the firewall?
Not necessarily. If an individual uses an unauthorized VPN to access overseas websites with minor circumstances, they may only receive a warning or fine. However, if used to distribute illegal information or endanger national security, more severe legal consequences may apply.
Do I need to apply to use a legal VPN in China?
Yes. Enterprises or individuals needing VPN for international networking must apply through licensed operators (e.g., China Telecom, China Unicom) and obtain approval from MIIT.
What special rules apply to foreign enterprises using VPNs in China?
Foreign enterprises must comply with Chinese law, apply for international networking leased lines through legal channels, and ensure VPNs are used only for internal business communications, not for accessing illegal content or providing networking services to third parties.
Read more