Irelandโs Data Protection Commission said it remained concerned over accuracy of information provided by the company.
The European Union has launched a fresh privacy investigation into micro-video platform TikTok over the storage of European usersโ data in China, the regulator announced on July 10.
Irelandโs Data Protection Commission (DPC) opened the inquiry as a follow-up to an earlier probe, which concluded on May 2 and resulted in TikTok being fined $620 million (530 million euros) for violating the EUโs data protection rules.
The DPC is serving as the blocโs lead regulator for TikTok, owned by Beijing-based tech giant ByteDance, because the companyโs European headquarters is in Dublin.
Due to its tax breaks, many tech firms are based in the Republic of Ireland.
The data regulator said that during the earlier investigation, TikTok had stated that personal data belonging to users in the European Economic Area (EEA) had only been accessed remotely and was not stored on servers located within China.
However, TikTok informed the DPC in April that it had discovered in February that usersโ data had been stored in servers in China.
The DPC said that at the time, it was deeply concerned that the company had submitted inaccurate information and was considering what further regulatory action to take.
โAs a result of that consideration, the DPC has now decided to open this new inquiry into TikTok,โ the regulator said on July 10.
โThe purpose of the inquiry is to determine whether TikTok has complied with its relevant obligations under the [General Data Protection Regulation] in the context of the transfers now at issue, including the lawfulness of the transfers.โ
TikTokโs Response
In response, TikTok said it had notified the DPC of the rules breach, after it had embarked on data localization program Project Clover, which involves building three data centers in Europe in a bid to ease the blocโs security concerns.
The company said: โOur teams proactively discovered this issue through the comprehensive monitoring TikTok implemented under Project Clover.
โWe promptly deleted this minimal amount of data from the servers and informed the DPC. Our proactive report to the DPC underscores our commitment to transparency and data security.โ
TikTok had said following the May 2 ruling that it would appeal against the DPCโs earlier decision.
A statement published on the social media platformโs website at the time said: โThis decision has implications not just for TikTok, but for any company in Europe operating globally. We disagree with this decision and intend to appeal it in full.โ
