This report argues that TikTok does not comply with the GDPR in a number of ways.
Do not browse the web in in-app browsers (e.g. in apps like Facebook, Instagram, TikTok). Experience is bad. Those apps also INJECT TRACKING INSTRUCTIONS. They control every interaction, all that is typed, clicked... Browse with normal web browsers.
Unlike platform ads (contracts between brands-platforms), native ads often have off-platform supply chains. While platforming the latter might be a transparency gain (esp under DSA registration), here TikTok is just playing with performance indicators. The medium is the message
TikTok fined €345 million and ordered to become legally compliant within 3 months. “The fine relates to non-private settings, lack of transparency and use of dark patterns.” 🙌
"TikTok violated the DSA - again. We found: 48 NEW murky accounts impersonating Clin Georgescu 49 political ads, violating TikTok's own policy They were easy to find. So why wasnt TikTok proactive?"
Despite repeatedly declining access to notifications and contacts, TikTok persistently asks for these permissions. This persistence is an example of the "nagging" dark pattern, designed to tire users until they give up and allow access. Let’s break down the tactics TikTok uses to achieve this.