TikTok collected MAC addresses for Android phones against Google’s ToS

TikTok also collected unique identifiers and sent them to Byte Dance, its parent company.

Reportedly, TikTok sent the data to Byte Dance, its parent company.


TikTok lands in hot waters yet again. A report from the Wall Street Journal reveals that until last November, the short video platform was tracking MAC addresses on Android phones violating Google’s terms of services (ToS).

Reportedly the app antithetically skirted the privacy loophole to get the data and also bypassed an unusual extra layer of encryption that obliterated the approach. Google in 2015 followed Apple’s suit and prevented third party applications from collecting MAC addresses to prevent companies from building consumer behavior profiles.

MAC addresses are hardware identifiers for internet-connected devices that are most commonly used for advertising purposes. TikTok collected these unique identifiers and sent them to ByteDance (parent company) when a user first installed and opened the application on their devices.

See: TikTok vulnerability allowed hackers to send SMS with malware

Besides this, the app also collected a 32 digit advertising ID that basically allows marketers to track user behavior for ad profiling purposes. Even if privacy-conscious users reset their advertising ID, the MAC addresses won’t change, thus, the app can relink prior data.


Regarding the accusation, as reported by the WSJ, TikTok claimed that the app collected less data as compared to other social media giants including Facebook and Alphabet Incorporation. Nevertheless, the concealed tracking ended as allegations ensued at the same time scrutiny from Trump’s administration has the walls closing in.

The findings couldn’t have come at the worst time pertaining to the fact that the administration already blames ByteDance for collecting data and giving it to the Chinese government that can target individuals or the state for blackmail and espionage.

As of now, TikTok does not collect MAC addresses. But according to AppCensus, 1% of Android apps collect these identifiers negating policies.  Many activists have raised their voices against this but they were snubbed down eventually.

But this isn’t the first time TikTok has been accused of gathering data. Previously, the app was called out as a privacy threat and got banned by the US military.


Did you enjoy reading this article? Do like our page on Facebook and follow us on Twitter.

  1. What business is it of Google to dictate what another business in another country may or may not do? Google is NOT the Internet, does not own it, but sure as heck is using thug-like bullying tactics to take away our rights privacy, control the internet and it’s users, and make us all pay for it one way or another.

    As much as I hate to say it, Google needs government takeover, in every democratic country then at least the population can dictate back what the government can do with the Internet or maybe we all just need a new Internet, run by people, not corporations, advertisers, marketeers, and government.

    Where is Anonymous when we need them?

  2. You use there servers. They control what goes onto there servers. Why don’t some people get that?

Comments are closed.

Related Posts