Popular video-sharing app TikTok is under a fresh investigation by its main regulator in the European Union over data storage in China.
TikTok, owned by Beijing-based Bytedance, registered its EU headquarters in Ireland, making the Irish privacy watchdog the lead supervisory authority over the company within the 27-nation bloc.
During the earlier investigation, TikTok maintained that European users’ personal data was “not stored on servers located within China” and could only be accessed by TikTok staff in China remotely, the Irish DPC said on July 10.
However, in April, regulators learned from TikTok that limited European user data “had in fact been stored on servers in China,” contrary to the evidence the company had previously presented, according to the statement.
In their previous decision, Irish regulators expressed “deep concern” that “TikTok had submitted inaccurate information.”
After consulting with other data protection commissions in the EU, the regulators decided to initiate this inquiry into TikTok. The focus of the second inquiry will be to determine whether TikTok met its obligations under GDPR when transferring user data back to China, according to the statement.
The Irish DPC said it notified TikTok about the new probe earlier this week.
The Epoch Times has reached out to TikTok for comment.
As part of the decision, the Irish DPC ordered TikTok to suspend all data transfers to China, unless it could bring its data processing practices into compliance with the GDPR within six months.
TikTok responded at the time that the company strongly contested the finding by the Irish DPC, stating that it has used the EU’s own legal framework, specifically so-called standard contractual clauses, to grant tightly controlled and limited remote access. The company is appealing that ruling.
It also noted that the DPC’s ruling was based on a “select period” that ends in May 2023, before the launch of a data localization plan called Project Clover, which involves building three data centers within the EU.






