Chinese Apps Face Heightened Scrutiny in Taiwan Over Excessive Data Collection

Taiwan’s National Security Bureau (NSB), in coordination with other government agencies, has raised the alarm over five widely used Chinese apps: RedNote, Weibo, TikTok, WeChat, and Baidu Cloud Drive. Officials say these platforms pose significant cybersecurity risks due to their aggressive data collection practices and potential for privacy infringement.

The NSB’s assessment found that these apps collect far more data than what is considered reasonable for their operation. Violations include excessive permission requests, extraction of system information, and access to sensitive biometric data. The security review concluded that the risks extend beyond individual privacy, potentially impacting national security.

Excessive Data Collection and Privacy Violations Detailed

Authorities evaluated the apps using 15 security indicators across five categories, including personal data collection, permission usage, data transmission, system information extraction, and biometric access. RedNote was found to violate all 15 indicators, while Weibo and TikTok breached 13 each. WeChat and Baidu Cloud Drive were also cited for multiple violations.

The review revealed that these apps gather a wide array of personal information, such as facial recognition data, screenshots, clipboard content, contact lists, and location information. All five apps also harvest lists of installed applications and device parameters, raising concerns about the scope and intent of their data practices.

Did you know?
RedNote (Xiaohongshu) was found to violate all 15 security indicators in Taiwan’s recent review, making it the most problematic app among those examined by the NSB.

Data Transfers to China Raise National Security Concerns

A central concern highlighted by the NSB is the transmission of user data to servers located in China. Taiwan’s intelligence agencies warn that, under China’s National Security Law and Cybersecurity Law, companies are required to provide user data to Chinese authorities if requested.

This legal framework means that data collected from Taiwanese users could be accessed by Chinese security agencies, posing risks to both personal privacy and corporate or governmental secrets. The NSB’s warning aligns with similar actions by other countries that have banned or restricted Chinese apps over national security fears.

ALSO READ | Chinese Hackers Breach French Government and Telecoms Using Ivanti CSA Zero-Days

Public Urged to Exercise Caution and Review App Permissions

Taiwanese authorities are urging the public to remain vigilant when downloading and using Chinese-made apps. Experts recommend reviewing app permission settings, limiting unnecessary access, and considering alternatives that do not transmit data to China.

The NSB emphasizes that heightened scrutiny is necessary to safeguard personal data and national interests. The agency continues to monitor the situation and may recommend further measures if risks persist.

International Context and Growing Restrictions

Taiwan’s actions reflect a broader international trend, with countries such as India and Canada enacting bans or restrictions on Chinese apps due to similar security concerns. In Europe, regulators have also begun to pressure app stores to remove certain Chinese-developed applications from their platforms, underscoring the global scope of the issue.

As digital threats evolve, Taiwan’s proactive stance highlights the importance of robust data protection and regulatory vigilance in the face of cross-border technology risks.