This report summarizes the top ten data breaches，respectively home and abroad，from official reports in 2019. Among them，overseas data breaches are concentrated in the realms of network website，health care and information technology；the main breach reason is hacker intrusion；the main types of personal data breached are names，email addresses，address or location information. By comparing with the situation abroad，the report depicts the data breach scenario of China in 2019：data breach events decreased yet scale increased；e-commerce retail and smart home are the major intruded industries；lack of security is the main reason for data breach. From the perspective of data protection regulations，2019 is the “first year of system supporting construction” and “first year of face recognition” in the area of global data protection. China’s data protection legislation has been set on agenda，and the specialized and subdivided data protection principles have been gradually endorsed，and data collection and transaction have been nationally standardized. In the future，the protection of sensitive data such as health and biometrics will be the focus；the overall trend of China’s data protection regulation innovation will be the emergence of legislative achievements and the improvement of national standards.