Austrian privacy law firm NOYB has launched its first GDPR complaints against Chinese businesses. The agency filed complaints against TikTok, Xiaomi, Shein, AliExpress, Temu and WeChat, alleging that these companies illegally shared the information of European users with groups in China. The group is seeking a freeze on data transfers to China and a fine of up to four percent of the company’s global revenue. NOYB stands for “none of your business” and is led by activist Max Schrems, known for his anti-Facebook campaigns.
The General Data Protection Regulation is the law that covers information privacy in the EU. Under that regulation, the transfer of data outside the EU is only allowed if the destination country does not undermine data protection. Calling China an “authorized surveillance state,” NOYB says data transfers should not be allowed in the country.
“According to their privacy policy, AliExpress, SHEIN, TikTok and Xiaomi transfer data to China,” NOYB said when announcing the action. “Temu and WeChat are talking about transfers to third countries. According to the business structure of Temu and WeChat, this may include China.”
NOYB has previously filed complaints against major US technology firms, including and , for potential GDPR violations.