View from Peter Lancos, CEO
"Welcome to eXate's Global Data Diaries...
This week, the hugely popular Chinese social media platform TikTok has been probed by Ireland’s Data Protection Commission (DPC). The regulator has opened two investigations into the video sharing platform - the first covers how TikTok handles children’s data, and whether it complies with Europe’s General Data Protection Regulation. Additionally, they will be examining TikTok's transfer of personal data to China, where its parent entity is based, ensuring the company meets requirements set out in the regulation covering personal data transfers to third countries.
In other news, China's industry ministry recently published a notice on telling companies to step up cyber and data security oversights over connected vehicles, saying that security risks in the industry had become increasingly prominent. All relevant companies should establish data security management systems and regularly assess risks from network attacks, the Ministry of Industry and Information Technology said in a statement."
TikTok's lead EU regulator opens two data privacy probes
TikTok's lead data privacy regulator in the European Union has opened two inquiries into the Chinese-owned short-video platform related to the processing of children's personal data and transfers of personal data to China.
Ireland's Data Protection Commission, which is lead EU regulator for many of the world's top internet firms due to the location of their regional headquarters in Ireland, is allowed to impose fines of up to 4% of global revenue.
China’s tech regulator orders smart vehicle makers and telecom operators to enhance data and network security
China’s main technology industry regulator has urged telecommunications companies, internet of vehicles (IoV) manufacturers, and relevant service providers to ramp up data security, in a new regulatory push that could increase compliance costs for firms such as Tesla in China.
Britain looks to weaken rules on data privacy
The UK government plans to strip a series of “administrative burdens” from data protection law in a move that would enshrine the concept of more flexible, risk-based ‘privacy management’ into legislation.