Australia has joined different nations in saying a ban on the usage of TikTok on authorities gadgets, with some states and territories following swimsuit. The rationale was based mostly on safety fears and, particularly, the chance the platform will probably be used for international interference operations by China.

TikTok is a video-sharing platform operated by ByteDance, an organization headquartered in Beijing, however integrated within the Cayman Islands. Information is allegedly saved within the US and Singapore.

Like related websites, TikTok’s privateness coverage signifies an expansive method to the gathering and use of non-public data. It could possibly gather data from customers and third events (reminiscent of advertisers), and it will probably draw inferences about its customers’ pursuits.

All of this data can then be shared with TikTok’s companions and repair suppliers to, amongst different issues, personalise content material and promoting.

The coverage additionally says data will probably be shared when there’s a authorized requirement to take action. China’s nationwide intelligence regulation obliges residents and organisations to assist, help and cooperate with nationwide intelligence efforts, which might embrace ByteDance sharing individuals’s TikTok knowledge.

Whereas TikTok denies it could hand over knowledge in such circumstances, there are studies that knowledge from American customers has been accessed by China-based staff. TikTok has additionally censored content material that’s politically delicate in China.

TikTok executives have confessed that its employees used the app to spy upon US journalists.

The specter of knowledge harvesting, and the co-opting of consumer data by TikTok just isn’t theoretical, writes Martin McKenzie-Murray. https://t.co/Xkxeg7AECG

— The Saturday Paper (@SatPaper) April 10, 2023

The issue with specializing in just one app

Whereas the Australian authorities’s response might be defined by this logic, questions stay.

Given the ban solely impacts authorities gadgets, couldn’t the identical individuals be vulnerable to international interference by their use of TikTok on private gadgets?

What about different apps, reminiscent of Fb, that gather vital quantities of consumer knowledge – are these safer than TikTok? Even when different digital platforms don’t have connections with China, couldn’t they share or promote knowledge to different entities, reminiscent of advertisers, knowledge brokers or enterprise companions? And mightn’t these third events have connections with China? Or different nations with related legal guidelines?

A last level: international interference can happen on a variety of digital platforms. Russia has run data campaigns designed to affect US elections utilizing platforms reminiscent of YouTube, Tumblr, Google, Instagram, PayPal, Fb and Twitter.

In different phrases, the issue of digital safety and international interference is greater than only one app or the usage of authorities gadgets.

Certainly, the Division of House Affairs notes that international interference actions aren’t solely directed in the direction of authorities, but additionally academia, industries, the media and different communities (which is definitely everybody).

Banning TikTok on authorities gadgets does get rid of one threat, however the broader pool of dangers stays each in authorities and past.

A brand new, more practical cybersecurity technique

The federal government is presently creating a brand new cyber safety technique to switch the one put in place by the earlier authorities simply three years in the past.

A dialogue paper on the brand new technique was launched earlier this yr, with submissions due this week.

In his deal with to #TheSydneyDialogue, the Hon @TimWattsMP, Assistant Minister for Overseas Affairs famous how Covid-19 had modified the way in which we take into consideration threat. The globe’s interconnectedness was dropped at the fore, revealing our publicity to systemic dangers. It’s the identical with tech. pic.twitter.com/tH69yjgjs7

— ASPI (@ASPI_org) April 5, 2023

This course of will hopefully lead to a extra holistic technique on how one can handle the cybersecurity and international interference considerations that led to the TikTok ban.

Reasonably than the whack-a-mole tactical response of banning one app at a time, the technique might present readability on how the federal government will handle points round weak safety on cell apps (notably utilized by individuals in delicate sectors), in addition to the potential for this to be an entry level for international interference.

This might embrace things like:

• educating individuals on digital safety and international interference
• streamlined reporting channels for knowledge breaches, international interference makes an attempt, cybercrime, bugs and vulnerabilities
• creating or recommending the usage of applicable requirements on cybersecurity, which might embrace references to worldwide requirements in areas reminiscent of data safety and knowledge governance
• strengthening cooperation between authorities and platforms and civil society
• focused prohibitions, which can embrace bans on apps that would share knowledge with nations which may then use it for international interference.

This sort of strategic method, notably on the schooling facet, would give Australians higher instruments to arm themselves towards international interference on-line, which as House Affairs emphasises, is the “finest defence” out there.

A stronger privateness act might assist, too

One other related coverage improvement is the federal government’s evaluation of the Privateness Act, which is the first Australian regulation on knowledge safety.

Altering the foundations about how knowledge is collected and utilized by platforms might present much less fodder for these working international interference operations. This might embrace banning unfair makes use of, reminiscent of focused messaging based mostly on a psychological profile. If the platforms don’t facilitate these makes use of, it turns into harder for international governments to make use of these instruments for manipulation.

Enhancing funding for the first knowledge regulator, the Workplace of the Australian Info Commissioner, might additionally strengthen enforcement throughout the board.

What is required is a method, not ways

These two reform initiatives exist inside a maze of others, together with inquiries or proposals regarding on-line privateness, digital platform companies, the affect of worldwide digital platforms, digital surveillance, and digital financial system regulation.

Past Australia, on the United Nations stage, some questions on whether or not worldwide regulation might be utilized to our on-line world have been resolved, whereas others stay open. Australia’s place on these points may be clarified.

In the end, what is required is a method, somewhat than ways, and higher coordination of related insurance policies throughout authorities. The TikTok instance additionally highlights a truism that we shouldn’t assume when it comes to privateness or safety, however somewhat privateness and safety.

Whereas there’s an occasional want to decide on between these two values (for instance, when authorities companies surveil these suspected of against the law, terrorism or espionage), within the overwhelming majority of conditions safety is enhanced when the privateness of non-public data is protected.

For instance, the extra private data a international agent can entry about residents working in delicate areas, the higher it will probably goal espionage and affect operations. If social media corporations are restricted in how they gather, use and share Australians’ knowledge, we will take vital steps in the direction of defending everybody from international interference and different harms.

We’d like all of the insurance policies and related companies (cyber, privateness, schooling, platform regulation, worldwide relations, nationwide safety and extra) working collectively if we’re to satisfy the present challenges. It might make sense to ban TikTok on authorities gadgets, however we have to deal with this drawback a couple of app at a time.