Canada has banned the use of the TikTok app on all government-issued mobile devices due to concerns over the Chinese-owned video sharing app's security and data privacy. The move follows similar action taken by the European Union and over half of US states and Congress. Canada's federal privacy watchdog and its provincial counterparts in British Columbia, Alberta, and Quebec have also launched an investigation into whether TikTok complies with Canadian privacy legislation.
TikTok, which is owned by Chinese company ByteDance, has become increasingly popular with young people, but fears have been raised that Beijing could use it to collect data on Western users or push pro-China narratives and misinformation. The app will be removed from Canadian government-issued phones on Tuesday.
TikTok's data collection methods have been criticized for providing considerable access to the contents of the phone. While no evidence of government information being compromised has been found, the Chief Information Officer of Canada has determined that TikTok presents an unacceptable level of risk to privacy and security. TikTok has called the move "curious" and has said it is always available to discuss the privacy and security of Canadians.
Ismael Valenzuela, Vice President of Threat Research & Intelligence at BlackBerry shared his insights on the recent TikTok ban decision by Canada and what security concerns remain for CISOs at enterprises with corporate devices.
"I’m not surprised. Canada isn’t the first government to make this decision, and it likely won’t be the last. I believe this is the first time the EU has banned a mobile app, indicating that there are valid reasons to enforce this policy. On top of the bans from the U.S. government in 31 states and the White House’s decision to ban it on government-issued devices, I only expect more to follow. For example, just a few days ago, one of the most popular Australian politicians on TikTok said he refuses to use the Chinese-owned video app on his government or personal phones due to concerns about the security of his data, and UK politicians have started to receive pressure to do the same.