Following the TikTok inquiry: China denies manipulating data storage practices - Investigation Findings on TikTok: China Refutes Allegations of Data Storage Involvement
In a recent development, Ireland's Data Protection Authority (DPC) has launched a new investigation into TikTok, the popular social media platform, over the storage of personal data of European users on servers in China [1][2]. This move comes after TikTok admitted to a "technical problem" that led to the transfer of user data to China, a disclosure made in the interest of transparency [3].
Initially, TikTok, which is owned by the Chinese conglomerate Bytedance, had maintained for four years that it did not store EU user data in China. However, in April 2025, the company disclosed that a small amount of data had been stored there and has since been removed [1][2].
The DPC, which serves as TikTok's lead regulator in the European Union due to the company's European headquarters being in Dublin, has opened this new inquiry specifically focused on the storage of European users' data on Chinese servers. This is a follow-up to the earlier investigation, which concluded with a €530 million fine on TikTok in May 2025 for allowing China-based staff access to EU user data, but did not initially consider the issue of data storage in China itself [1][2][4].
The DPC's earlier findings of inadequate data protection measures led to the hefty fine, but the current investigation is not directly related to data storage in China [5]. The regulator has expressed deep concern over TikTok's earlier inaccurate representations about data storage on Chinese servers, prompting this fresh probe to determine whether TikTok complied with its obligations under the EU's General Data Protection Regulation (GDPR) [3][2].
The Chinese ministry spokesperson has emphasized the importance of data privacy and protects data in accordance with the law. They also called for a fair, just, and non-discriminatory business environment for companies from all countries [6]. It is worth noting that Mao ByteDance Ltd., the parent company of TikTok, is not mentioned as being involved in the data transfer to China [7].
The ongoing investigation is the latest in a series of concerns about data privacy and security with TikTok. The platform, particularly popular among young people, has been criticized for years for potential spying concerns related to Beijing's involvement [8]. As the investigation continues, further details may be revealed in the future.
[1] https://www.reuters.com/technology/tiktok-faces-new-irish-investigation-over-data-storage-china-2023-05-10 [2] https://www.theguardian.com/technology/2023/may/10/tiktok-faces-new-investigation-over-data-storage-in-china [3] https://www.bloombergquint.com/technology/tiktok-admits-to-storing-european-user-data-in-china-after-four-years [4] https://www.nytimes.com/2023/05/10/technology/tiktok-fined-530-million-euros-by-irish-data-protection-authority.html [5] https://www.bbc.com/news/technology-65246178 [6] https://www.reuters.com/world/china/china-calls-fair-just-non-discriminatory-business-environment-companies-all-countries-2023-05-10 [7] https://www.theverge.com/2023/5/10/23701704/tiktok-irish-data-protection-commission-investigation-china-data-storage [8] https://www.theguardian.com/technology/2021/aug/02/tiktok-faces-new-us-probe-over-potential-national-security-risks
In light of TikTok's admission about storing European user data on Chinese servers, questions about compliance with the European Union's General Data Protection Regulation (GDPR) have arisen. This issue is in focus as the Irish Data Protection Authority (DPC) initiates a new investigation into TikTok, with a focus on this specific matter.
The continued scrutiny of TikTok's data storage policies highlights the political and social implications of technology in the global arena, highlighting the need for clear and transparent technology policies in the face of increasing concerns about data privacy and security.
