Nov 04, 2022 11:10:00

TikTok acknowledges that 'Chinese staff can view user data' in European privacy policy update

On November 2, 2022, TikTok announced an update to its privacy policy for European users. As a result, it was clearly stated that Chinese companies can access TikTok data, so it is reported that ``TikTok has admitted that Chinese staff are accessing user data''.

Sharing an Update to our Privacy Policy | TikTok Newsroom

https://newsroom.tiktok.com/en-gb/an-update-to-our-privacy-policy

TikTok tells European users its staff in China get access to their data |
https://www.theguardian.com/technology/2022/nov/02/tiktok-tells-european-users-its-staff-in-china-get-access-to-their-data

TikTok privacy update in Europe confirms China staff access to data as GDPR probe continues | TechCrunch
https://techcrunch.com/2022/11/03/tiktok-privacy-policy-update-china/

In its privacy update announcement, TikTok said, 'We currently store European user data in the United States and Singapore, following a robust set of security controls and authorization protocols where necessary to conduct our business. , to certain employees of our group of companies located in Brazil, Canada, China, Israel, Japan, Malaysia, the Philippines, Singapore, South Korea and the United States in a manner permitted by the EU General Data Protection Regulation (GDPR), TikTok Europe Allows remote access to user data.'

On why TikTok allows companies in various countries, including China, to view user data, 'We rely on our global workforce to ensure that our community's TikTok experience is consistently enjoyable and safe. I will,” he explained. This new privacy policy applies to users in the EU, UK and Switzerland and will apply from December 2nd, 2022.

It is believed that TikTok's disclosure of user data storage and access is due to concerns and political pressure over the handling of data from more than 1 billion users worldwide.

According to British news media The Guardian, US President Joe Biden has revoked the presidential order on the sale of the US business ordered by his predecessor, former President Donald Trump, to TikTok. instructed the Department of Commerce to develop a 'recommendation to protect the data of users of The Committee on Foreign Investment in the United States , which oversees the national security implications of dealing with foreign companies, is also conducting a security review of TikTok.

TechCrunch, an IT news site, also pointed out the impact of the GDPR investigation led by the Irish Data Protection Commission (DPC). DPC will launch a survey on TikTok's compliance in September 2021, and the results of the review are scheduled to be compiled in early 2023. If Ireland's findings under Section 60 of the GDPR were approved, the GDPR investigation into TikTok would be settled in a relatively short period of time, but if other country's regulators objected, it would move to Section 65 dispute resolution procedures. It has to be done, and the review will take longer.

Therefore, TechCrunch says that TikTok may be trying to mitigate future impacts by preempting regulatory crackdowns and increasing transparency about how user data is handled in advance.

TechCrunch reached out to TikTok for comment on whether the privacy policy update is in any way related to the GDPR investigation, but a company spokesperson declined to comment.