Overview
- TikTok was fined €530 million by the Irish Data Protection Commission, including €485 million for illegal data transfers to China and €45 million for inadequate transparency.
- The investigation found TikTok failed to ensure EU-equivalent protections for European user data accessed by staff in China under Chinese surveillance laws.
- TikTok disclosed in April 2025 that limited European user data had been stored in China, contradicting previous claims; this data has since been deleted.
- The company has six months to bring its data processing into compliance with GDPR or face suspension of all data transfers to China.
- TikTok plans to appeal the decision, citing its €12 billion Project Clover initiative to enhance European data security and claiming no data has been provided to Chinese authorities.