Ireland’s Data Protection Commission imposes a €530 million fine on TikTok. The Commission announced on Friday that TikTok violated the General Data Protection Regulation (GDPR) by transferring personal data of European Economic Area (EEA) users to China without adequate protection measures. The decision was made by the Data Protection Commissioners Des Hogan and Dale Sunderland and communicated to TikTok. The investigation found that TikTok failed to meet the transparency requirements of the GDPR by not providing sufficient information to users about data transfers to China. TikTok was instructed to bring its data processing in line with GDPR requirements within six months, or face suspension of data transfers to China. Another aspect of the investigation involved discovering that TikTok was storing some data on servers in China, despite earlier claims to the contrary. The Commission is now reviewing whether further regulatory measures are necessary.
1 minute read