AI Sigil Logo
Contact Us
Back to all insights
A globe made of interconnected, multicolored circuit boards with LED lights tracing international borders and data pathways

Sections

Cross-Border Compliance Risks in AI Acquisitions

The Meta-Manus Review: Understanding Cross-Border Compliance Risk for Enterprise AI Buyers

Meta’s recent US$2 billion acquisition of the AI agent startup Manus serves as a critical case study for enterprise Chief Technology Officers (CTOs) regarding cross-border compliance risk. On January 9, 2026, China’s Ministry of Commerce announced it would examine whether this deal violated export controls, technology transfer rules, and overseas investment regulations, despite Manus relocating from Beijing to Singapore in 2025.

The Reality of Compliance Exposure

This investigation highlights an uncomfortable truth for enterprise AI buyers: a vendor’s corporate domicile does not guarantee regulatory safety. Dai Menghao, a legal expert specializing in export controls, emphasized that the technology itself, not the corporate registration, dictates jurisdiction.

Relocation Does Not Equal Freedom

Manus appeared compliant by relocating its 105-person team from Beijing to Singapore, laying off 80 mainland employees, and securing US$75 million in funding. Meta assured that there would be no ongoing Chinese ownership interests in Manus AI following the transaction, and that Manus would cease operations in China.

However, the Ministry of Commerce made it clear that corporate structure alone does not determine compliance. The spokesperson stated that all external investments, technology exports, and cross-border acquisitions must adhere to Chinese laws and regulations.

Potential Legal Ramifications

The investigation will scrutinize the timeline and methods of technology transfers from Manus’s China-based entities. Should regulators find that Manus failed to secure necessary export licenses prior to transferring technology or talent, its founders could face criminal charges under Chinese law.

Understanding the Regulatory Framework

China’s updated technology export control rules in 2020 expanded to cover certain algorithms, providing stronger legal grounds for government intervention in strategic technology deals. This became particularly relevant after US actions against ByteDance regarding TikTok’s US operations.

Enterprise AI buyers must grasp three critical areas when assessing vendor risk:

  • Export Controls: Advanced AI assets qualify as strategic and are subject to licensing requirements, regardless of where companies later incorporate.
  • Data Security Rules: Cross-border data transfers require regulatory approval, especially for datasets used in AI model training.
  • Overseas Investment Regulations: Transfers of technology assets by Chinese nationals must undergo government assessment, even post-corporate restructuring.

Implications for Due Diligence

The Manus investigation reveals significant gaps in how enterprise buyers evaluate AI vendor regulatory risk. Traditional procurement processes often overlook crucial factors such as:

  • Technology Origin Questions: Where was the AI model developed? Which export control regimes could claim authority?
  • Transfer Compliance: What regulatory approvals were obtained during relocation? Can the vendor demonstrate compliance with export licenses?
  • Operational Continuity: How would regulatory investigations affect service delivery? What notification obligations exist during reviews?

Experts predict that while the approval process may be lengthy, it could lead to conditions on how Manus technology can be used, rather than a complete block. This gives Beijing leverage in high-profile acquisitions.

Broader Implications for AI Strategy

The implications of this investigation extend beyond the Meta-Manus deal. If the Chinese government asserts jurisdiction over AI technology regardless of corporate restructuring, it sets a precedent for ongoing regulatory scrutiny in enterprise AI supply chains.

Enterprise buyers utilizing AI for functions like market research or data analysis must now consider provider stability amidst geopolitical tensions. The swift growth of Manus to US$100 million in annual recurring revenue highlights the rapid dependencies that can develop.

In summary, the Meta-Manus case underscores the importance of understanding that vendor compliance risk extends beyond contractual terms. Enterprise buyers must incorporate thorough due diligence processes that address these complex jurisdictional questions regarding the origin and development of AI technology.

More Insights

A safety helmet worn by drone operators

Revolutionizing Drone Regulations: The EU AI Act Explained

December 17, 2025 AI,AI Regulation,Drone Technology,Regulatory Framework
The EU AI Act represents a significant regulatory framework that aims to address the challenges posed by artificial intelligence technologies in various sectors, including the burgeoning field of...
Read More
A safety helmet worn by drone operators

Revolutionizing Drone Regulations: The EU AI Act Explained

December 1, 2025 AI,AI Regulation,Drone Technology,Regulatory Framework
The EU AI Act represents a significant regulatory framework that aims to address the challenges posed by artificial intelligence technologies in various sectors, including the burgeoning field of...
Read More
A light bulb to convey innovation and the bright potential of responsible AI solutions.

Embracing Responsible AI to Mitigate Legal Risks

November 29, 2025 AI,AI Ethics,AI Governance,AI Regulation
Businesses must prioritize responsible AI as a frontline defense against legal, financial, and reputational risks, particularly in understanding data lineage. Ignoring these responsibilities could...
Read More
A traffic light to illustrate the need for clear guidelines and regulations in managing AI technologies.

AI Governance: Addressing the Shadow IT Challenge

November 29, 2025 AI,AI Governance,AI Regulation Awareness,Regulatory Compliance
AI tools are rapidly transforming workplace operations, but much of their adoption is happening without proper oversight, leading to the rise of shadow AI as a security concern. Organizations need to...
Read More
A roadmap illustrating the journey companies must take to align with AI regulations.

EU Delays AI Act Implementation to 2027 Amid Industry Pressure

November 29, 2025 AI,AI Regulation,EU Compliance,Regulatory Compliance
The EU plans to delay the enforcement of high-risk duties in the AI Act until late 2027, allowing companies more time to comply with the regulations. However, this move has drawn criticism from rights...
Read More
A semiconductor chip

White House Challenges GAIN AI Act Amid Nvidia Export Controversy

November 29, 2025 AI,AI Regulation,Artificial Intelligence Governance,Technology Policy
The White House is pushing back against the bipartisan GAIN AI Act, which aims to prioritize U.S. companies in acquiring advanced AI chips. This resistance reflects a strategic decision to maintain...
Read More
Compliance checklist

Experts Warn of EU AI Act’s Impact on Medtech Innovation

November 29, 2025 AI,EU Compliance,Medtech Innovation,Regulatory Compliance
Experts at the 2025 European Digital Technology and Software conference expressed concerns that the EU AI Act could hinder the launch of new medtech products in the European market. They emphasized...
Read More
A tree

Ethical AI: Transforming Compliance into Innovation

November 29, 2025 AI,AI Ethics,Ethical AI
Enterprises are racing to innovate with artificial intelligence, often without the proper compliance measures in place. By embedding privacy and ethics into the development lifecycle, organizations...
Read More
A warning sign

AI Hiring Compliance Risks Uncovered

November 29, 2025 AI,AI Compliance,AI Regulation,Regulatory Compliance
Artificial intelligence is reshaping recruitment, with the percentage of HR leaders using generative AI increasing from 19% to 61% between 2023 and 2025. However, this efficiency comes with legal...
Read More