TikTok data flows to China?

Ireland launches second probe into TikTok data flows to China

By Ellen O'Regan

Ireland's Data Protection Commission (DPC) has launched a fresh inquiry into TikTok's transfers of personal data to Chinese servers, it said Thursday, following on from its investigation that led to a €530 million fine against the company in April.

The Irish regulator in April was informed by TikTok of an issue that meant a limited amount of EU user data had been stored on servers in China, an issue it said it discovered in February.

The discovery contradicted the firm's long-held position that personal data of EU users was only accessed remotely by the platform's staff in China. But it came only just before the investigation concluded. Because of this, the DPC did not investigate it fully.

The regulator in April fined TikTok for not sufficiently protecting EU personal data from Chinese state surveillance.

The DPC earlier this year expressed "deep concern" that TikTok submitted "inaccurate information to the inquiry."

In a statement on Thursday, it said it had decided to open a new inquiry into the personal data transfers to servers in China after consulting with other data protection authorities in Europe.

The Irish regulator said the inquiry will focus on whether TikTok has complied with its obligations under the EU's General Data Protection Regulation, including articles relating to accountability, transparency, cooperation with supervisory authorities and compliance with rules around data transfers outside of the EU.

TikTok was notified earlier this week about the Irish DPC's decision to launch a fresh inquiry.

The company has been contacted for comment.