DUBLIN: TikTok was fined €530 million (US$600 million) by its lead European Union privateness regulator on Friday (Could 2) over considerations about the way it protects consumer data and was ordered to droop knowledge transfers to China if its processing isn’t introduced into compliance inside six months.
Eire’s Information Safety Commissioner (DPC) mentioned TikTok, owned by China’s ByteDance, failed to point out that EU customers’ private knowledge, a few of which is remotely accessed by employees in China, was afforded the excessive degree of safety supplied for beneath EU regulation.
Because of this, the short-video platform didn’t handle potential entry by Chinese language authorities to the info beneath counter-espionage and different legal guidelines recognized by TikTok as materially diverging from EU requirements, the DPC mentioned in a press release.
TikTok mentioned it strongly contested the discovering and that it has used the EU’s personal authorized framework, particularly so-called commonplace contractual clauses, to grant tightly managed and restricted distant entry. It plans to attraction the ruling.
It additionally mentioned the choice fails to completely take into account knowledge safety measures first rolled out in 2023 that independently monitor distant entry and guarantee EU consumer knowledge is saved in devoted knowledge centres in Europe and america.
TikTok, which has grown quickly amongst youngsters around the globe lately and has 175 million customers throughout Europe, added that it has by no means obtained a request for EU consumer knowledge from the Chinese language authorities, and has by no means supplied knowledge to them.
“This ruling dangers setting a precedent with far-reaching penalties for corporations and whole industries throughout Europe that function on a worldwide scale,” TikTok mentioned in a press release.
The DPC additionally discovered that whereas TikTok mentioned all through the four-year inquiry that it didn’t retailer EU consumer knowledge on servers in China, it disclosed final month that it found in February {that a} restricted quantity was saved in China and has since been deleted.
“The DPC is taking these latest developments very critically. We’re contemplating what additional regulatory motion could also be warranted,” DPC Deputy Commissioner Graham Doyle mentioned.
It’s the second time TikTok has been reprimanded by the DPC. It was fined €345 million in 2023 for breaching privateness legal guidelines relating to the processing of kids’s private knowledge within the EU.
The highly effective Irish privateness regulator, the lead regulator within the EU for most of the world’s high tech corporations because of the location of their regional headquarters in Eire, has additionally fined the likes of Microsoft’s LinkedIn, X and Meta because it was given sanctioning powers in 2018.
Beneath the EU’s Basic Information Safety Regulation, which additionally covers European Financial Space member states Iceland, Liechtenstein and Norway, the lead regulator for any given firm can impose fines of as much as 4 per cent of its world income.
