Amid mounting fears about data privacy and China’s potential influence over TikTok, the company has faced bans on government staff phones. To address the concerns, TikTok is establishing three data centres, two in Ireland and one in Norway, to store user data within Europe.
TikTok has taken a significant step towards enhancing its data security programme by enlisting the services of British cybersecurity firm NCC as part of “Project Clover.”
Amid mounting fears about data privacy and China’s potential influence over TikTok, the company has faced bans on government staff phones. To address the concerns, TikTok is establishing three data centres, two in Ireland and one in Norway, to store user data within Europe.
The first Irish data centre is already up and running, with data migration in progress, while the remaining hubs should be online by the end of 2024. TikTok has underlined its proactive approach to data protection, with Elaine Fox, head of privacy in Europe, emphasising the importance of storing data for the European Economic Area (EEA) and UK users in a secure area called the “European enclave,” hosted temporarily in the U.S.
TikTok and NCC plan to move into discussions with European policymakers to explain the practicalities of their data security system in the upcoming months.
Project Clover, announced in March, arrives as a response to increasing scrutiny from lawmakers in the US and in Europe. The initiative seeks to address data security concerns as TikTok pushes to safeguard user information and enhance trust.
Know the risks
As global regulatory frameworks develop, it’s never been more important for organisations to stay on top of new laws and understand how they stand to impact data protection programmes.
The themes are explored in depth at #RISK Amsterdam this month, where experts debate international data transfer rules and regulations across global geographies.
Not to be missed:
Session: EU-US Data Transfers: Time to Relax?
Date: Wednesday 27 September
Location: Privacy and Security Hub
Time: 10:00 - 11:00 CET
Replacing Privacy Shield has been a long and complicated process, apparently accelerated by the war in Ukraine and several concessions from the negotiators. But with Max Schrems already declaring his intention to challenge the new agreement, will EU and US data controllers ever truly be out of limbo?
This session examines the new data transfer framework’s strengths and weaknesses, and explores what action businesses can take to prepare if the framework fails.
Session: Shaping Europe’s Digital Future: Cybersecurity Law and Regulation
Date: Thursday 28 September, 2023
Location: Privacy, Security & ESG Theatre
Time: 15:00pm – 16:00pm (CET)
We explore the emerging trends and challenges in cybersecurity law and regulation and discuss how organisations can navigate this complex landscape to mitigate risk.
Panellists will look at the most upcoming and recently passed cybersecurity laws, regulations and amendments that are likely to have a major impact on a wide range of businesses, explaining who is covered and exploring the main obligations.
CLICK HERE FOR THE FULL #RISK AMSTERDAM AGENDA
With over 50 exhibitors, keynote presentations from over 100 experts and thought leaders, panel discussions, and breakout sessions, #Risk Amsterdam 2023 is the perfect place to learn about the present and future risk landscape.
Click here to register for #RISK Amsterdam
Do you know what data is being used to ‘train’ the AI in your organisation?
Do you have a process for managing ‘risk’ in the use of AI?
Are employees being trained in the use of AI?
Attend #RISK to learn & knowledge share:
Learn more about #RISK Amsterdam – 27th & 28th September 2023
No comments yet