Articles TikTok quietly leaked Jobseeker data to China

TikTok quietly leaked Jobseeker data to China


The video clip service TikTok sent personal data of job seekers to Chinese servers, but not everyone was informed about it in the privacy policy. When journalists discovered a redirect on the website, the platform operators secretly removed it.

Recently, TikTok has been diligently trying to distance itself from its owner – the multinational holding ByteDance, officially registered in the Cayman Islands, but headquartered in Beijing. So, commenting for the press on the statement of Donald Trump, in which he accused TikTok of leaking user data to China, company representatives called this attack “baseless innuendo.”

According to TikTok’s privacy policy, its job site collects a wealth of information about job candidates, including sensitive data such as medical records, gender, race, marital status, and geolocation data. At the same time, information about all applicants living outside the PRC is allegedly stored on servers in Singapore.

Business Insider’s investigative journalism found this was not entirely true. There are several ways to create an account at when registering, specify your email or phone number, via LinkedIn or using your Facebook login. In the latter case, the user is presented with a TikTok Career dialog box, which, as it turned out, redirected to

Beijing-based Kundou appears to be controlled by ByteDance, providing tech support for back-end recruiting software within the holding. However, when disclosing its structure, ByteDance never mentions Kundou, like its other operations in the PRC.

It is noteworthy that the text of TikTok Career’s privacy policy is not exactly the same in different countries. Europeans, Japanese and Singaporeans are directly informed that their data passes through Chinese servers, and from citizens of the United States and Malaysia, for example, this information is hidden.

Having discovered the redirect, the journalists, not without reason, suggested that the data of all users of was deposited on Chinese servers – not only those who created an account through Facebook. When they requested a comment on TikTok, the service operators simply removed the redirect from the page, and then stated that they would no longer store such information in China.

Must read

28 dangerous extensions detected for Google Chrome and Microsoft Edge

Avast experts have discovered malware hidden in at least 28 third-party...

Why Is It Important To Have Intrusion Detection And Prevention ?

This article describes why detection and prevention of burglaries...

The risk is real: attacks on OT infrastructure

Previously, many believed that attacks on an isolated OT...

Gitpaste-12: Linux bot armed with a dozen exploits

Researchers at Juniper Networks have discovered a Linux scripting...

Saferwall : Open Source Malware Analysis

Saferwall is an open source malware analysis platform. It...

Network Vulnerability Assessment ? Why Should Every Company Do it at least once a Year !

Network vulnerability assessment analyzes a variety of network issues,...

Artificial Intelligence and Cyber Security

As artificial intelligence intrudes into the world of cybersecurity,...

You might also likeRELATED
Recommended to you