TikTok Faces Uncertain Future as Legal Challenges Mount Over Data Privacy Concerns

As the platform navigates potential ownership changes, existing privacy policies continue to draw scrutiny from users and lawmakers.

TikTok continues to face mounting pressure over its data collection practices as the platform operates under ongoing legal and regulatory uncertainty regarding its future in the United States.

The popular social media app, currently owned by Chinese company ByteDance, has been at the center of a prolonged battle with U.S. lawmakers over national security concerns related to data privacy and potential Chinese government access to American user information.

Recent attention has focused on TikTok’s existing privacy policies, which already allow for extensive data collection including location information and user interactions with various platform features. According to TikTok’s current privacy policy, the company collects “information about your approximate location, including location information based on your SIM card and/or IP address.”

The platform also reserves the right to collect precise location data “with your permission,” which can include GPS coordinates if users enable location services on their devices. This capability has raised concerns among privacy advocates who worry about the potential for detailed tracking of user movements.

TikTok’s privacy policy also addresses its collection of data from user interactions with automated tools and features on the platform. When users engage with AI-powered features such as effects, filters, or content creation tools, the platform may collect information about these interactions as part of its broader data gathering practices.

The ongoing scrutiny comes as TikTok has faced various legislative challenges, including efforts by some lawmakers to force a sale of the platform’s U.S. operations to American companies or face a potential ban. These efforts have been driven by concerns about ByteDance’s ties to China and fears that the Chinese government could potentially access American user data or influence content algorithms.

Oracle has previously been mentioned as a potential partner in various proposed restructuring deals for TikTok’s U.S. operations, given the company’s existing role in hosting some of TikTok’s American user data through Oracle Cloud Infrastructure. However, no definitive ownership transfer has been completed as of early 2025.

The Committee on Foreign Investment in the United States (CFIUS) has been actively involved in reviewing TikTok’s operations and has expressed ongoing concerns about data security and potential foreign influence over the platform’s algorithms and content moderation practices.

Privacy experts have noted that TikTok’s data collection practices, while extensive, are not necessarily unique among major social media platforms. However, the app’s Chinese ownership has intensified scrutiny of these practices in ways that domestic platforms typically don’t face.

“The concerns about TikTok’s data collection need to be viewed in the context of broader questions about how all social media platforms handle user information,” said Marc Rotenberg, executive director of the Center for AI and Digital Policy, in a previous interview with Reuters. “The difference is the geopolitical context.”

TikTok has consistently maintained that it stores American user data on servers in the United States and Singapore, and has implemented what it calls “Project Texas” – an initiative designed to address security concerns by routing U.S. user data through Oracle’s cloud infrastructure and subjecting content recommendation algorithms to third-party security reviews.

The company has also established a Transparency and Accountability Center in Los Angeles, where outside experts can review its content moderation practices and data security measures. TikTok executives have repeatedly testified before Congress that the platform does not share U.S. user data with the Chinese government and would refuse any such requests.

However, skepticism remains among some lawmakers and security experts. During previous congressional hearings, members of both parties have questioned whether TikTok’s current data protection measures are sufficient to address national security concerns.

The ongoing uncertainty has created challenges for the platform’s more than 150 million American users, including content creators and small businesses that rely on TikTok for marketing and revenue generation. The Small Business Administration has noted that millions of American businesses use TikTok as part of their digital marketing strategies.

Legal experts continue to monitor developments around potential regulatory changes that could affect how TikTok and other foreign-owned platforms operate in the United States. Any significant changes to ownership structure or data handling practices would likely require extensive regulatory review and approval.

As the debate continues, TikTok users and privacy advocates are calling for greater transparency about how user data is collected, stored, and potentially shared. The platform has pledged to continue working with U.S. officials to address security concerns while maintaining its operations in the American market.

The resolution of TikTok’s regulatory challenges could set important precedents for how the U.S. government approaches data privacy and national security concerns related to other foreign-owned technology platforms and services operating in the American market.