China has a functioning copyright registration system. The legal framework is largely in place — the Copyright Law was amended in 2020 to increase statutory damages and introduce punitive damages. The enforcement mechanisms exist, at least on paper.
But for a foreign software company, the gap between the legal framework and the practical reality of protecting software in the Chinese market is where the money is lost. Here’s what actually happens and what you can do about it.
Registration Is the Foundation
Copyright in China arises automatically upon creation, the same as in most jurisdictions. A software program is protected as soon as it’s written, without any registration requirement.
In practice, a foreign company that wants to enforce its copyright in China needs registration. The China Copyright Protection Center accepts applications for software copyright registration, and the registration certificate is the primary evidence of ownership that Chinese courts accept. Without a registration certificate, proving ownership of the software in litigation is significantly more difficult — you’re proving a negative (that the defendant didn’t create the software) rather than a positive (that you registered it first).
The registration process requires submitting the source code — the first thirty pages and the last thirty pages of the source code, with sensitive portions blanked out at the applicant’s discretion. For software with fewer than sixty pages of source code, the entire code must be submitted. The registration also requires a description of the software’s functions, the programming language, the operating environment, and the number of lines of code.
The registration timeline is typically thirty working days from the acceptance of the application. Expedited processing is available for an additional fee and reduces the timeline to approximately ten working days.
The Enforcement Problem
The enforcement of software copyright in China has improved significantly but remains uneven. Large-scale commercial piracy — factories running unlicensed copies of design software, companies distributing counterfeit software on physical media — is prosecuted and generally results in criminal penalties. The authorities understand that commercial piracy damages China’s reputation as a market and undermines the domestic software industry.
End-user piracy — the small company that installs one copy of software on five computers — is harder to enforce. The amount in dispute is small, the evidence is harder to collect, and the enforcement authorities are less motivated. A foreign software company can’t realistically sue every small company that’s using its software without a license.
The practical approach for most foreign software companies is a tiered strategy. For large commercial users, enforcement through litigation or administrative complaint is realistic and cost-effective. For small users, the strategy shifts to compliance campaigns — letters notifying companies of their licensing obligations, offers to regularize their license position, and, as a last resort, targeted enforcement against representative defendants to create deterrence.
Source Code Protection
The software copyright registration process requires submitting source code to the China Copyright Protection Center. The CCPC maintains the deposited source code in confidence, but a foreign company that’s uncomfortable depositing its source code with a Chinese government agency should know that the deposit is a limited extract — thirty pages at the beginning and thirty at the end — rather than the complete codebase.
The source code deposit can be redacted to exclude trade secrets. The CCPC’s guidance allows applicants to black out portions of the deposited source code that contain trade secrets, as long as the code as deposited is sufficient to identify the software. The redaction should be done consistently — blacking out every other line may raise questions, but blacking out specific algorithms or sensitive data processing routines is generally accepted.
For software that’s particularly sensitive — encryption algorithms, financial trading systems, defense-related applications — the company should consider whether copyright registration in China is the right tool for the job. Copyright protects the expression of the software, not its functionality. If the company’s primary concern is that a Chinese competitor will study the source code and replicate the functionality without copying the code, copyright is not the right mechanism.
Open Source Software
Chinese companies use open source software extensively, and the Chinese courts have begun to develop jurisprudence on open source license enforcement. In a 2021 case, the Intellectual Property Court of the Supreme People’s Court held that a user of GPL-licensed software who failed to comply with the license’s source code disclosure obligations had infringed the copyright holder’s rights.
The implication for foreign companies is that open source licenses are enforceable in China, at least in principle. A company that licenses its software under an open source license can enforce the license terms against Chinese users who violate them.
The more common scenario for foreign companies is the reverse — a Chinese software vendor incorporates open source code into a product sold to the foreign company, creating a compliance risk for the foreign company. Due diligence on Chinese software acquisitions should include an open source audit to identify components governed by copyleft licenses that could create obligations for the acquirer.
Practical Steps for Foreign Software Companies
First, register the copyright before entering the Chinese market. The registration certificate is the foundation of any enforcement strategy, and obtaining it before problems arise is faster and easier than reacting to infringement.
Second, use technical protection measures. Software activation, license key verification, and online authentication are harder to circumvent in a commercial context — a factory that circumvents license activation is doing something the owner can point to as evidence of intentional infringement.
Third, choose the right distribution model. A software-as-a-service model, where the software runs on the foreign company’s servers and Chinese users access it through a web interface, eliminates the local installation that’s the vector for most unauthorized copying. This doesn’t work for all software categories, but when it does, it’s the most effective protection available.
Fourth, build relationships with local enforcement authorities before there’s a problem. The local copyright bureau, the market supervision bureau, and the public security bureau’s economic crime unit are more responsive to a company they know than to a foreign entity that appears for the first time with a complaint. Industry associations, chambers of commerce, and professional advisors can facilitate these introductions.