Abstract: The deep integration of the global digital economy and the sports industry has promoted the cross-border flow of sports data and also given rise to the issue of sports data sovereignty. Strengthening the security guarantee of sports data is not only an inevitable requirement for safeguarding personal information rights and interests, but also an essential part of implementing the overall national security outlook and safeguarding national data sovereignty. On the basis of clarifying the sovereign connotation and protection predicament of cross-border flow of sports data, sports data is classified into five categories and twelve types according to data types, generation scenario, and specific information. Further, based on rights association, legal constraints and the degree of harm, it is classified into three risk levels. To address the sovereignty risks of sports data and achieve a governance balance of absolute control and controllable flow, three levels of governance strategies are proposed. With the separation of the three rights and the combination of control rights as narration, a regulatory framework that integrates core laws, industry rules and supporting detailed rules is formed to consolidate the institutional foundation for the protection of sports data sovereignty. By adopting the strategy of integrating rights and responsibilities and empowering technological collaboration, a refined mechanism that is full-chain, differentiated and combines technology and management is formed to enhance the governance capacity of cross-border sports data flow. Finally, driven by the transformation from static configuration to dynamic resilient governance, a dynamic path that connects cross-border judicial collaboration, international coordinated rights response and classified and graded relief should be established to strengthen the solid defense line for the protection of sports data sovereignty.