Security Advisory : Demystifying TikTok’s collection of your data

RGSA 05-07-24-01 ​

Date: May 7, 2024​

INTRODUCTION​

TikTok’s extensive data collection, including personal information and device usage patterns, raises privacy and security concerns, particularly due to its China-based parent company, ByteDance. While some experts argue that TikTok’s data collection is not inherently malicious, others express skepticism about the transparency of its practices.

​

​

WHAT TIKTOK GATHERS FROM YOU​

TikTok collects various types of information from users:

1. Personal Data: Tiktok has access to personal data like contacts, calendars, information about which device you’re using, which operating system and your location.​
2. ​TikTok monitors the content you engage with and for how long – similar to Facebook. ​
3. Device Usage: TikTok monitors how you use your device and how it functions, including “keystroke patterns or rhythms, battery state, audio settings and connected audio devices,”.​
4. Location Data: TikTok can collect precise GPS information about its users. ​​

IMPLICATIONS OF DATA COLLECTION​

Data collection by social media platforms like TikTok can pose several risky implications for everyday users:​

1. Privacy Concerns: Social media platforms often collect extensive personal data, including contacts, location, and browsing habits. This raises concerns about user privacy, especially if this data is shared or sold to third parties without consent.​
2. ​Targeted Advertising: User data is often used to create targeted advertising campaigns. While some users may find this convenient, others may feel uncomfortable with the level of personalization and the potential manipulation of their preferences and behaviors.​
3. Data Breaches: Storing large amounts of personal data increases the risk of data breaches. If a platform’s security measures are breached, users‘ sensitive information could be exposed, leading to identity theft, financial fraud, or other forms of cybercrime.​
4. Surveillance and Tracking: Social media platforms track users‘ online activities across different websites and devices to create comprehensive profiles. This surveillance can infringe on user privacy and autonomy, as individuals may feel constantly monitored and manipulated by algorithms.​
5. Political Manipulation: Social media platforms have been implicated in spreading misinformation, propaganda, and divisive content. By collecting user data and targeting specific demographics, malicious actors can exploit social media for political manipulation and influence campaigns.

HOW RICHTER GUARDIAN CAN HELP YOU​

Call us or send us an email at: +1 844-908-3950 and support@richterguardian.com if you are unsure. Connect with our cyber concierge to verify the legitimacy of a situation.