This week, the Chinese company ByteDance, which owns the short video platform TikTok, was fined €530 million ($600 million) by the European Union for failing to comply with regional user data protection requirements. The penalty followed allegations that TikTok transferred European users’ data to China, in violation of EU laws.
The Irish Data Protection Commission ruled that TikTok did not provide sufficient evidence proving that its employees in China lacked access to data from users within the EU. Under current European legislation, companies are required to store user data within the region. Alongside the administrative fine, TikTok has been ordered to align its data processing practices with EU laws within a six-month period.
TikTok’s user base in Europe is estimated at around 175 million people. This recent penalty adds to a growing list of regulatory issues the company has faced in the EU. Notably, in 2023, TikTok was fined €345 million for failing to comply with rules related to the processing of children’s personal data.
TikTok Responds to Regulatory Ruling
Following the decision, TikTok representatives stated that the company intends to challenge the regulator’s ruling. According to the platform, the decision does not fully reflect the data protection measures introduced in 2023. These include independent oversight of remote data access and the establishment of dedicated data centers in Europe and the United States, aimed at securely storing EU user information.
The company emphasized that it has never received requests from Chinese authorities seeking access to EU user data, notes NIX Solutions. ByteDance maintains that its practices are in line with data protection standards and continues to stress its commitment to user privacy in the region.
As the situation develops, we’ll keep you updated on any further decisions, appeals, or changes in TikTok’s approach to handling user data in the EU.