Security News > 2022 > July > TikTok Postpones Privacy Policy Update in Europe After Italy Warns of GDPR Breach

The reversal, reported by TechCrunch, comes a day after the Italian data protection authority - the Garante per la Protezione dei Dati Personali - warned the company against the change, citing violations of data protection laws.

"The personal data stored in users' devices may not be used to profile those users and send personalized ads without their explicit consent," the Garante said.

"From 13 July, 2022, TikTok will rely on its 'legitimate interests' as its legal basis to use on-TikTok activity to personalize the ads of users who are 18 or over," the ByteDance-owned company said in a notice announcing the changes.

The update to its personalized advertising settings covers users who reside in the European Economic Area, the U.K., and Switzerland.

The Garante, which said it launched a fact-finding exercise, noted that the proposed policy modifications are incompatible with the Italian personal data protection law as well as the E.U. ePrivacy Directive, which regulates cookie usage, email marketing, data minimization, and other aspects of data privacy by mandating a user's consent before processing such information.

The latest intervention from the Garante also arrived less than two weeks after it attracted scrutiny in the U.S. over worries that U.S. users' data had been accessed by TikTok engineers in China, prompting the company to establish new guardrails.

News URL

https://thehackernews.com/2022/07/tiktok-postpones-privacy-policy-update.html