Saturday , May 3 2025
€530 million

TikTok fined €530 million for sending E.U. Data to China

Ireland’s Data Protection Commission fined TikTok €530 million ($601 million) on Friday for violating data protection laws by transferring European users’ data to China.

“TikTok infringed the GDPR regarding its transfers of EEA [European Economic Area] User Data to China and its transparency requirements,” the DPC said in a statement. “The decision includes administrative fines totaling €530 million and an order requiring TikTok to bring its processing into compliance within 6 months.”

TikTok fined €530 million for sending E.U. Data to China

Ireland's Data Protection Commission fined TikTok €530 million ($601 million) on Friday for violating data protection laws by transferring European...
Read More
TikTok fined €530 million for sending E.U. Data to China

Microsoft New Accounts Go Passwordless By Default

Microsoft is focusing on eliminating password-based authentication, promoting passwordless sign-in and sign-up methods instead. For the past decade, Microsoft has...
Read More
Microsoft New Accounts Go Passwordless By Default

SonicWall Patched for SSRF Vulnerability in SMA1000 Appliances

SonicWall's Product Security Incident Response Team (PSIRT) has released a critical update for its SMA1000 series appliances due to a...
Read More
SonicWall Patched for SSRF Vulnerability in SMA1000 Appliances

Patch Now! SonicWall Confirms Active Exploitation of SMA 100 Vulns

On April 29, 2025, SonicWall announced that two previously disclosed vulnerabilities in its SMA 100 Series appliances are being actively...
Read More
Patch Now! SonicWall Confirms Active Exploitation of SMA 100 Vulns

Commvault Confirms Its Azure Cloud Environment Breach via Zero-Day Attack

Commvault confirmed that a sophisticated cyberattack exploiting a zero-day vulnerability breached its Azure cloud environment earlier this week. On February...
Read More
Commvault Confirms Its Azure Cloud Environment Breach via Zero-Day Attack

Ransomware Attack On Biopharma : Hacker seeks $80k

Indian Pimpri Chinchwad police's cyber cell is looking into a complaint where a hacker demanded $80,000 (over Rs 68 lakh)...
Read More
Ransomware Attack On Biopharma : Hacker seeks $80k

Apple warns new victims of spyware attacks across the world

This week, Apple notified several individuals it believes were targeted by government spyware, according to two of those individuals. As...
Read More
Apple warns new victims of spyware attacks across the world

Ticket resaler exposed ​​520,054 records size of 200 GB

Cybersecurity researcher Jeremiah Fowler discovered a non-password-protected database with 520,054 records from an event ticket resale platform and reported it...
Read More
Ticket resaler exposed ​​520,054 records size of 200 GB

“bCloud” Starts Journey in Bangladesh Targeting Cloud Solutions

Banglalink, the country’s leading digital operator, has launched bCloud, its very own cloud service brand aimed at delivering world-class cloud...
Read More
“bCloud” Starts Journey in Bangladesh Targeting Cloud Solutions

Researcher Found Multiple Vulnerabilities In Apple’s AirPlay Protocol

Security vulnerabilities in Apple's AirPlay Protocol and SDK put both third-party and Apple devices at risk of various attacks, including...
Read More
Researcher Found Multiple Vulnerabilities In Apple’s AirPlay Protocol

The order, in addition, requires the company to suspend data transfers to China within the time period.

The penalty stems from a September 2021 investigation into the company’s transfer of personal data to China and its adherence to strict data protection laws concerning data transfers to other countries.

DPC Deputy Commissioner Graham Doyle commented that TikTok’s transfer of personal data to China violated Article 46(1) of the GDPR because it did not ensure that EEA users’ data received the same privacy protections as in the EU.

Doyle further added that TikTok did not address concerns arising from potential access by Chinese authorities under anti-terrorism and counter-espionage laws in the country and which “materially” diverged from European Union standards.

The DPC criticized TikTok for giving incorrect information during an investigation, claiming it didn’t store EEA users’ data on Chinese servers. However, last month, TikTok revealed that it found an issue in February 2025, confirming that some EEA data had been stored on servers in China.

“Whilst TikTok has informed the DPC that the data has now been deleted, we are considering what further regulatory action may be warranted, in consultation with our peer EU Data Protection Authorities,” Doyle said.

Christine Grahn, TikTok’s head of public policy and government relations for Europe, said the decision failed to take into account Project Clover, a data security initiative aimed at protecting European user data, and that the ruling does not reflect the current safeguards put in place.

“The DPC itself recorded in its report what TikTok has consistently said: it has never received a request for European user data from the Chinese authorities, and has never provided European user data to them,” Grahn said.

This is the second fine levied by the DPC against the ByteDance-owned company. In September 2023, TikTok was handed a €345 million (then about $368 million) fine for violating GDPR laws in relation to its handling of children’s data.

Check Also

symlink

16,000+ Fortinet devices compromised with symlink backdoor, Mostly in Asia

According to Shadowserver Foundation around 17,000 Fortinet devices worldwide have been compromised using a new …

Leave a Reply

Your email address will not be published. Required fields are marked *

This will close in 6 seconds