The U.K.’s data privacy regulator warned social media platform TikTok it could be fined 27 million pounds (U.S. $29 million) for failing to protect children’s data.
An investigation opened by the Information Commissioner’s Office (ICO) in 2019 found the company might have breached the U.K.’s version of the General Data Protection Regulation (GDPR) regarding privacy protections for children using TikTok between May 2018 and July 2020, the regulator announced Monday.
The ICO issued TikTok’s U.K. subsidiary and parent company with a “notice of intent,” a provisional warning informing them it believes the platform might have processed the data of children under the age of 13 without appropriate parental consent and failed to provide users with concise, transparent information that could be easily understood.