Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Protection

TikTok’s Trials and Tribulations Continue With UK Data Protection Fine

The UK’s data protection regulator fined TikTok £12.7 million for “failing to use children’s personal data lawfully”

TikTok privacy fine

TikTok has been fined £12.7 million (about $15.7 million) for breaches of UK data protection laws.

The UK’s data protection regulator (the ICO) has announced a fine of £12.7 million for “failing to use children’s personal data lawfully”. More specifically, the announcement states more than one million UK children under the age of 13 used the service in 2020; personal data of children was used without parental consent; and “TikTok ‘did not do enough’ to check who was using their platform and take sufficient action to remove the underage children that were.”

John Edwards, the UK Information Commissioner, commented, “There are laws in place to make sure our children are as safe in the digital world as they are in the physical world. TikTok did not abide by those laws… TikTok should have known better. TikTok should have done better. Our £12.7m fine reflects the serious impact their failures may have had.”

Nevertheless, this fine is a reduction from the ICO’s original notice of intent in September 2022 to fine TikTok £27 million. “Taking into consideration the representations from TikTok, the regulator decided not to pursue the provisional finding related to the unlawful use of special category data. That means this potential infringement was not included in the final amount of the fine set at £12.7 million,” says the announcement.

While this finding will please many privacy and children’s advocates, many others do not believe it is enough. “1.4 million UK kids opened a TikTok account and offered their personal data to be processed,” comments Tara Taubman-Bassirian, a privacy advocate and EU GDPR specialist. “Do we know how and with whom these were shared? What we know is TikTok might pay £12.7 million for it. How much TikTok made and will continue to make… we don’t know.”

This last comment is pertinent. “Why such a drastic reduction of the fine by half, with no injunction to delete the data unlawfully collected?” Does this mean, she asks, “infringement is OK if you pay the price?”

Related: TikTok Attorney: China Can’t Get U.S. Data Under Plan

Related: TikTok CEO Grilled by Skeptical Lawmakers on Safety, Content

Advertisement. Scroll to continue reading.

Related: Why TikTok Is Being Banned on Gov’t Phones in US and Beyond

Written By

Kevin Townsend is a Senior Contributor at SecurityWeek. He has been writing about high tech issues since before the birth of Microsoft. For the last 15 years he has specialized in information security; and has had many thousands of articles published in dozens of different magazines – from The Times and the Financial Times to current and long-gone computer magazines.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Learn how the LOtL threat landscape has evolved, why traditional endpoint hardening methods fall short, and how adaptive, user-aware approaches can reduce risk.

Watch Now

Join the summit to explore critical threats to public cloud infrastructure, APIs, and identity systems through discussions, case studies, and insights into emerging technologies like AI and LLMs.

Register

People on the Move

Coro, a provider of cybersecurity solutions for SMBs, has appointed Joe Sykora as CEO.

SonicWall has hired Rajnish Mishra as Senior Vice President and Chief Development Officer.

Kenna Security co-founder Ed Bellis has joined Empirical Security as Chief Executive Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.