TikTok · TikTok Community Guidelines

Cross-Border Data Transfer Infrastructure

High severity
Share 𝕏 Share in Share

What it is

mcs-va.tiktok.com ... mcs-sg.tiktok.com ... mcs-ie.tiktokw.eu ... maliva-mcs.byteoversea.com ... sgali-mcs.byteoversea.com [multiple data collection endpoints across US, Singapore, EU, and ByteDance infrastructure]

Why it matters

Cross-border data transfers to countries outside the EU/EEA — including transfers to ByteDance infrastructure — require specific legal safeguards under GDPR, and TikTok's ownership structure has made these transfers a focus of regulatory and national security scrutiny.

Consumer impact

TikTok's platform policy governs what content users can post, how accounts can be suspended, and what data is collected — including extensive device-level signals such as motion sensor data, clipboard access, geolocation API calls, and browser fingerprinting data embedded in the platform's technical infrastructure. Minors are subject to additional content restrictions and account controls, but the adequacy of parental consent mechanisms and cross-border data transfer protections remains a material concern given TikTok's ownership structure. You can limit some data collection by reviewing your privacy settings in the TikTok app under Settings > Privacy and enabling Family Pairing if you are a parent of a minor user.

What you can do

⚠️ These actions may provide transparency or partial mitigation but may not fully address the underlying issue. Effectiveness varies by jurisdiction and individual circumstances.
  • Export Your Data
    Open TikTok, go to Settings & Privacy, tap Privacy, then select 'Download Your Data' to request a copy of your data. TikTok will prepare your file within a few days.

Applicable agencies

  • FTC
    FTC has jurisdiction over cross-border data transfer practices that may constitute unfair or deceptive practices under FTC Act Section 5, particularly where disclosed safeguards do not match actual data routing.
    File a complaint →
  • State AG
    State Attorneys General, particularly in California, have authority under CCPA to investigate cross-border transfers of California residents' personal information that lack adequate safeguards.
    File a complaint →

Provision details

Document information
Document
TikTok Community Guidelines
Entity
TikTok
Document last updated
March 24, 2026
Tracking information
First tracked
April 3, 2026
Last verified
April 4, 2026
Record ID
CA-P-002021
Document ID
CA-D-00034
Evidence Provenance
Source URL
https://www.tiktok.com/community-guidelines/en/
Wayback Machine
View archived versions →
SHA-256
b284b4e910ea0436fae2982f81c60e65a11a5de7c9ed3db97b9131d136636bfb
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: TikTok | Document: TikTok Community Guidelines | Record: CA-P-002021
Captured: 2026-04-03 08:45:47 UTC | SHA-256: b284b4e910ea0436…
URL: https://conductatlas.com/platform/tiktok/tiktok-community-guidelines/cross-border-data-transfer-infrastructure/
Accessed: April 4, 2026
Classification
Severity
High
Categories
Unknown

Other provisions in this document