The two top members of the Senate Intelligence Committee on Tuesday urged the Federal Trade Commission to investigate TikTok and its parent company over how it handles user data.
In a letter to FTC Chair Lina Khan, Sen. Mark Warner, D-Va., the committee’s chairman, and Sen. Marco Rubio, R-Fla., its vice chairman, cited recent news reports that TikTok’s parent company, China-based ByteDance, has been “accessing data on U.S. users, in contravention of several public representations.”
“We ask that your agency immediately initiate [an] investigation on the basis
of apparent deception by TikTok, and coordinate this work with any national security or counter-intelligence investigation that may be initiated by the U.S. Department of Justice,” the senators wrote. “Additionally, these recent reports suggest that TikTok has also misrepresented its corporate governance practices.”
Last month, Buzzfeed News reported that U.S. user data has been repeatedly accessed from China, raising security concerns that China’s government could access sensitive personal information through backdoor methods. TikTok called the report misleading.
On Tuesday, TikTok said that it limits access to U.S. user data across regions, including to China.
“That access is subject to a series of robust controls, safeguards like encryption for certain data, and authorization approval protocols overseen by our U.S.-based leadership/security team,” Michael Beckerman, TikTok’s vice president and head of public policy, Americas, said in a statement.
TikTok last month said it had moved data on U.S. users to Oracle Corp.
ORCL,
servers, “to give users even more peace of mind.”
But that did not allay the senators’ concerns.
“While TikTok has suggested that migrating to U.S.-based storage from a U.S. cloud service provider alleviates any risk of unauthorized access, these latest revelations raise concerns about the reliability of TikTok representations,” they wrote. “In light of repeated misrepresentations by TikTok concerning its data security, data processing, and corporate governance practices, we urge you to act promptly on this matter,” they said to the FTC’s Khan.
The security of TikTok’s data has been an issue for years, and in 2020 the Trump administration ordered ByteDance to divest TikTok, though that policy was never resolved following the election.
Last week, Brendon Carr, a Republican member of the Federal Communications Commission, asked Apple Inc.
AAPL,
and Alphabet Inc.’s
GOOGL,
GOOG,
Google to remove TikTok from their app stores, saying it poses a national security threat, citing the revelations in the Buzzfeed report.