- TikTok Opens European Data Center Amid Surveillance Concerns
- European User Data Stored in Dublin to Address Security Worries
- Third-Party Security Firm to Audit TikTok’s Data Controls
TikTok has opened its first European data center to allay concerns regarding Chinese government surveillance.
As part of its ongoing response to data privacy concerns surrounding the video-sharing app’s ties to China, the company says it is now migrating European users’ data to servers in Dublin.
TikTok, which is owned by the Chinese company ByteDance, claims it has never provided Beijing with data.
Critics are concerned that the Chinese government may request access at any time.
In addition, the video-sharing behemoth will grant a European security firm access to audit its cyber-security and data protection controls.
TikTok has dubbed this initiative “Project Clover” in recognition of Ireland’s crucial involvement. It is concurrent with “Project Texas”, which promised similar measures to U.S. legislators in 2020.
Earlier this year, TikTok was subject to several cyber-security and privacy-based government restrictions.
Several institutions, including the government of the United Kingdom, the European Parliament, the European Commission, and the EU Council, have decided to ban the app from official devices.
Maintaining data in Europe
A major concern of European security officials is the possibility that the Chinese government could gain access to the user information held by TikTok.
The app’s installation could allow Beijing to access emails, contacts, and other correspondence, according to regulations.
To alleviate these concerns, TikTok will now store European user data on-site.
One Dublin data centre is active, with plans for two more in Ireland and one in Hamar, Norway.
One of these three data centres will transport 150 million European TikTok users’ data.
Independent examination
Theo Bertram, vice president of public policy for TikTok in Europe, stated in an update on the project and alongside the announcement of the first data center going online that a third-party security company would independently audit TikTok’s work at the data center.
In Europe, Project Clover has hired NCC Group to assess TikTok’s data controls and report incidents.
NCC Group’s worldwide director of privacy, Stephen Bailey, was thrilled that TikTok chose NCC as its third-party security provider.
“Our objective scrutiny, monitoring, and assurance means that platform users in Europe and the United Kingdom can have confidence in TikTok’s enhanced data security standards, which exceed European regulatory requirements,” he said.
TikTok said NCC Group would investigate “suspicious or anomalous access attempts” and tighten security.
In the following months, TikTok and NCC Group will explain to European policymakers how this system will operate in practice.