Project Clover will see TikTok introduce a number of new measures to enhance its existing data protection in the European region, having already placed a large focus on strengthening its data security approach in the US.
TikTok aims to further enhance its data access controls by introducing security gateways that determine employee access to UK and European TikTok user data and data transfers outside of Europe. Over 150 million people across Europe come to TikTok every month, and now, any data access will not only comply with the relevant data protection laws but also have to first go through these security gateways and additional checks.
In order to provide independent oversight and checks, TikTok has announced it will appoint a third-party European data security partner that will oversee and audit its data controls and protections, monitor data flows, provide independent verification, and report any incidents.
TikTok will also work with third parties on incorporating the latest privacy-enhancing advanced technologies into its approach. This includes, but is not limited to; pseudonymisation of personal data, data aggregation, and a system known as differential privacy.
The birth of Project Clover
In 2021, TikTok set out a clear data governance strategy for Europe based on the principles of storing data locally; minimising data transfers outside of the region, and further reducing employee access to TikTok user data.
