TikTok faces fresh European privacy investigation over China data transfers
The Data Protection Commission opened the inquiry as a follow up to a previous investigation that ended earlier this year with a 530 million euro ($620 million) fine after it found the video sharing app put users at risk of spying by allowing remote access their data from China.
The Irish national watchdog serves as TikTok's lead data privacy regulator in the 27-nation EU because the company's European headquarters is based in Dublin.
During an earlier investigation, TikTok initially told the regulator it didn't store European user data in China, and that data was only accessed remotely by staff in China. However, it later backtracked and said that some data had in fact been stored on Chinese servers. The watchdog responded at the time by saying it would consider further regulatory action.
'As a result of that consideration, the DPC has now decided to open this new inquiry into TikTok,' the watchdog said.
'The purpose of the inquiry is to determine whether TikTok has complied with its relevant obligations under the GDPR in the context of the transfers now at issue, including the lawfulness of the transfers,' the regulator said, referring to the European Union's strict privacy rules, known as the General Data Protection Regulation.
TikTok did not respond immediately to a request for comment.
TikTok, which is owned by China's ByteDance, has been under scrutiny in Europe over how it handles personal user information amid concerns from Western officials that it poses a security risk.
Under GDPR, European user data can only be transferred outside of the bloc if there are safeguards in place to ensure the same level of protection. Only 15 countries or territories are deemed to have the same data privacy standard as the EU, but China is not one of them.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
an hour ago
- Yahoo
US retailer Ulta Beauty enters UK market with Space NK acquisition
US beauty retailer Ulta Beauty has completed the acquisition of British beauty retailer Space NK from Manzanita Capital, marking its entry into the UK market. The financial details of the transaction were not made public. The acquisition was financed using Ulta Beauty's available cash and its existing credit facility. This deal is not anticipated to significantly affect Ulta Beauty's financial outcomes for fiscal 2025 and will not interfere with its ongoing capital allocation initiatives, such as its share repurchase programme. Ulta Beauty CEO and president Kecia Steelman stated: 'We are excited to enter the UK market via the Space NK banner. 'International expansion is an integral part of our Ulta Beauty Unleashed plan, and the acquisition of Space NK offers a unique and strategically compelling opportunity to enter the growing UK market with a successful and growing brand. Along with our initiatives in Mexico and the Middle East, we are creating a broader platform for Ulta Beauty to unlock long-term, profitable growth.' Space NK has 83 stores across the UK and Ireland as well as its online platform. Post acquisition, Space NK will function as an independent subsidiary under Ulta Beauty and will continue under the leadership of its current management team, including CEO Andy Lightfoot. Lightfoot stated: 'We have long respected Ulta Beauty as the leading speciality beauty retailer in the US. We are energised and excited by the opportunity to join Ulta Beauty and benefit from its scale, brand relationships and resources to further fuel our mission to serve beauty-obsessed consumers through expertise and innovation.' Goldman Sachs has been appointed as the exclusive financial advisor to Ulta Beauty for this transaction, with Latham & Watkins providing legal counsel. Raymond James is acting as the exclusive financial advisor to Space NK, with Bryan Cave Leighton Paisner offering legal services to both Manzanita Capital and Space NK. In October 2024, Ulta Beauty revealed plans to open 200 new stores by 2027. "US retailer Ulta Beauty enters UK market with Space NK acquisition" was originally created and published by Retail Insight Network, a GlobalData owned brand. The information on this site has been included in good faith for general informational purposes only. It is not intended to amount to advice on which you should rely, and we give no representation, warranty or guarantee, whether express or implied as to its accuracy or completeness. You must obtain professional or specialist advice before taking, or refraining from, any action on the basis of the content on our site.
Politico
2 hours ago
- Politico
Trump delayed his tariffs again. This could be the last time.
Trump's impatience is decades in the making. Since the 1980s, he has fumed about other countries taking advantage of the U.S. on trade, and reciprocal tariffs, as he calls them, were a way to settle the score. But after three months of negotiating, his administration has little to show for its efforts: The U.S. has reached a deal with the U.K., but Vietnam has yet to formally accept a key part of an agreement the U.S. says it has reached with the country; and the U.S.'s 'deal' with China is only a framework to continue trade talks. 'If there's two issues that define Donald Trump, it's immigration and tariffs … With respect to tariffs, it's all simple. It comes down to simple fairness — that the United States is the greatest market to have access to, and there's a sense that we are giving away complete and unfettered access,' said Sean Spicer, who served as press secretary during Trump's first term. 'What I think largely is misunderstood is people focus on deadlines and dates as opposed to results.' Still, substantive trade deals are at odds with Trump's effort to erect a tariff wall around the U.S. that will lure back domestic manufacturing and boost revenue. And any deal to significantly lower another country's trade barriers may require concessions from the U.S. so both countries can sell the deals to their constituents as a win. But the president's use of tariffs as a cudgel has forced countries to the table, even those that were originally resistant to making concessions. After months of talks with the U.S., the European Union is finally dropping plans to levy a tax on digital companies, an important win for the U.S. and a concession that may give the EU a boost as it enters the final stretch of trade talks. The bloc is confident that it will achieve an agreement ahead of the Aug. 1 deadline. 'I think we will have some framework agreement before [Aug. 1],' said an E.U. official, granted anonymity to discuss sensitive negotiations said. The extension also offers time for countries to finalize deals with the Trump administration. Trade talks with South Korea were, for instance, were delayed because of the country's election, and the additional three weeks may give the two countries time to finalize a framework agreement. The U.S. in a recent letter put Canada on a similar timeline as countries facing reciprocal tariff rates, a decision Canadian officials were happy with, even as the U.S. threatened to bump the tariff rate on the country to 35 percent. Still, the chaotic rollout of his tariffs over the past four months — and Trump's wielding of tariff rates as bargaining chips rather than policy positions — has some trading partners skeptical that Aug. 1 is a hard deadline. They suspect he will backpedal over concerns about the market-roiling effects of higher tariffs and the threat they'll pose to his administration's efforts to temper inflation.
Android Authority
2 hours ago
- Android Authority
Cops say criminals use a Google Pixel with GrapheneOS — I say that's freedom
Calvin Wankhede / Android Authority Police in Spain have reportedly started profiling people based on their phones; specifically, and surprisingly, those carrying Google Pixel devices. Law enforcement officials in Catalonia say they associate Pixels with crime because drug traffickers are increasingly turning to these phones. But it's not Google's secure Titan M2 chip that has criminals favoring the Pixel — instead, it's GrapheneOS, a privacy-focused alternative to the default Pixel OS. As someone who has used a Pixel phone with GrapheneOS, I find this assumption a bit unsettling. I have plenty of reasons to use GrapheneOS, and avoiding law enforcement isn't on the list at all. In fact, I think many Pixel users would benefit from switching to GrapheneOS over the default Android operating system. And no, my reasons don't have anything to do with criminal activity. Why I use and recommend GrapheneOS A privacy-focused operating system may seem more trouble than it's worth. But when I replaced Google's Pixel OS with GrapheneOS, I found it to be a transformative experience. For one, the installation was painless, and I didn't lose any modern software features. Installing aftermarket operating systems used to equal a compromised smartphone experience, but I didn't find that to be true in the case of GrapheneOS. Case in point: even though GrapheneOS doesn't include any Google services, I was surprised to find that you can install the Play Store with relative ease and almost all apps work flawlessly — even most banking ones. This is impressive for any open-source fork of Android, but GrapheneOS goes above and beyond in that it also has some major privacy and security benefits. Primarily, it locks down various parts of Android to reduce the number of attack vectors and enforces stricter sandboxing to ensure that apps remain isolated from each other. GrapheneOS just works, with almost no feature or usability compromises. Take Google apps as an example. On almost all Android phones sold outside China, Google has far-reaching and system-level access to everything: your precise location, contacts, app usage, network activity, and a load of other data. You cannot do anything to stop it, whether you'd like to or not. However, you can with GrapheneOS because it treats Google apps like any other piece of unknown software. This means Google apps are forced to run in a sandbox where they have limited access to your data. GrapheneOS' sandboxing extends to invasive apps like Google Play Services and the Play Store. You can explicitly disable each and every permission for these apps manually — in fact, most permissions are disabled by default. Even better, you can create different user profiles to isolate apps that require lots of permissions. GrapheneOS can forward notifications to the primary user profile, unlike stock Android. GrapheneOS limits Google's reach into your phone more than any other flavor of Android. On the subject of app permissions, GrapheneOS builds on that, too. For example, you can stop apps from accessing the internet and reading your device's sensors — stock Android doesn't expose such granular control. And while Android permissions often take the all-or-nothing approach, GrapheneOS lets you select only the exact contacts, photos, or files that you want visible to an app. Finally, my favorite GrapheneOS feature is the ability to set a duress PIN. When entered, this secondary PIN will initiate a permanent deletion of all data on the phone, including installed eSIMs. If I'm ever forced to give up my phone's password, I can take solace in the fact that the attacker will not have access to my data. If you have nothing to hide… Sensors permission Auto reboot Disallowed permissions You might be wondering: if I don't have anything to hide, why should I bother using GrapheneOS? That's a fair question, but it misses the point. I don't use GrapheneOS because I have something to hide — I use it to exercise control over the device I own. I find it comforting that Google cannot collect data to nearly the same extent if I use GrapheneOS instead of Pixel OS. The benefits of using GrapheneOS extend far beyond just hiding from Google, though, and it's why the project has landed under the scanner of law enforcement. I believe that GrapheneOS catching attention from law enforcement just proves how much it raises the bar on privacy. GrapheneOS has built a number of app isolation-based safeguards to ensure that your phone cannot be infected remotely. The technical details are longer than I can list, but in essence, the developers stripped out parts of Android's code that could be exploited by bad actors. Some security improvements have even been suggested and incorporated into AOSP, meaning GrapheneOS' efforts have made all of our devices a tiny bit more secure. Does GrapheneOS take privacy and security too far? Megan Ellis / Android Authority GrapheneOS is one of many tools that now face suspicion and political pressure simply for making surveillance harder. Take the Signal app as another example. The encrypted messaging app has been repeatedly targeted by EU lawmakers in recent years. Specifically, a proposed 'Chat Control' legislation would compel secure messaging platforms to scan all communication — including those protected by end-to-end encryption — for illegal content such as Child Sexual Assault Material. Messaging apps in the EU would be required to scan private communications before they're encrypted, on the user's device, and report anything that looks suspicious. While encryption itself wouldn't be banned, Signal's developers have rightly pointed out that mandatory on-device scanning essentially equals a backdoor. A rogue government could misuse these privileges to spy on dissenting citizens or political opponents, while hackers might be able to steal financial information. Regulators have long asked privacy apps to compromise on their singular mission: privacy. There's a bitter irony here, too, as GrapheneOS recently pointed out in a tweet. The Spanish region of Catalonia was at the center of the massive Pegasus spyware scandal in 2019. Pegasus, a sophisticated surveillance tool sold exclusively to governments, was reportedly used to hack phones belonging to Members of the European Parliament and eavesdrop on their communications. Yet, police in this very region are now scrutinizing savvy Pixel and GrapheneOS users for hardening their devices against unlawful surveillance and other attack vectors. Open source developers cannot control what their software is used for, and that's true for GrapheneOS and Signal. Sure, some criminals will naturally want to take advantage of the privacy and security tools the rest of us use. One could say the same thing about matchboxes being used for arson and cash being used for money laundering, but no one's calling on regulators to outlaw either. In fact, law enforcement profiling is frowned upon by most of us. So, if I use GrapheneOS on my Pixel to keep my data away from Big Tech, potential hackers, or even eavesdropping governments, that alone should not put me in the same league as drug dealers. But if it does, so be it.
