Privacy, Governance, Risk and Compliance

TikTok hit with nearly $367M penalty for children’s data privacy violations

TikTok has been imposed an almost $367 million fine by Ireland's Data Protection Commission over the management of children's data privacy that was adherent to Europe's General Data Protection Regulation laws, reports The Verge. Aside from discovering that TikTok made children's accounts public by default, allowing access to comments, Stitch, and duets functionality, the DPC also noted that the video sharing app's "Family Pairing" functionality was not able to ensure that children's accounts were only connected with the accounts of their parents or guardians. TikTok's age verification process also failed to ensure that youths younger than 13 were not able to access the app, according to the IDC probe. The IDC has given TikTok three months to comply with GDPR rules. TikTok's penalty comes a year after Meta was given an over $400 million fine for failing to restrict teen users from creating business profiles and making contact details public on Instagram.

Related

Data breach impacts Airsoft community site

Major airsoft game host and equipment renter Airsoft C3 had the sensitive data of 75,000 individuals part of its enthusiast community website compromised due to a Google Cloud Storage Bucket misconfiguration, indicating a significant threat to the U.S. airsoft community, according to Cybernews.

Data breach hits Panda Restaurants

BleepingComputer reports that major Asian-American restaurant company Panda Restaurant Group, which counts Panda Express and Hibachi-San as its subsidiaries, had the personal data of its current and former associates compromised following a breach of its corporate systems in March.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.