South Korean regulator accuses DeepSeek of sharing user data with ByteDance

Some missing context is that the data is shared via the DeepSeek app&#x27;s use of ByteDance analytics&#x2F;configuration frameworks. So not a backroom deal where DeekSeek handed over the chat history for its user base, but rather ongoing analytics data being sent from the DeepSeek mobile app.<p>Here&#x27;s the SecurityScoreCard article that brought attention to this: <a href="https:&#x2F;&#x2F;securityscorecard.com&#x2F;blog&#x2F;a-deep-peek-at-deepseek&#x2F;#bytedance-code-implications:~:text=ByteDance%20Code%20Implications" rel="nofollow">https:&#x2F;&#x2F;securityscorecard.com&#x2F;blog&#x2F;a-deep-peek-at-deepseek&#x2F;#...</a><p>Besides the usual analytics data (device metadata, user behavior, app performance, errors, etc), it&#x27;s possible raw chat data is being shared as well, but it&#x27;s not a smoking gun.

Plot twist: all these people sharing on twitter yet another creative way of mentioning Xi and Tiananmen in a conversation without triggering the protection (count to 11 in roman numbers, leetspeak etc) were in fact collecting the training data for the nextgen LLM-based protection. Well played!

Related:<p><i>South Korea bans new DeepSeek AI downloads</i><p><a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=43076325">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=43076325</a>

Major Chinese tech companies often collaborate with government entities, potentially compromising user privacy. Given China&#x27;s regulatory environment, where authorities can access data held by domestic firms, users worldwide should exercise caution when engaging with platforms from such backgrounds.

Here is my story. I needed to buy central console for my car (purchased it a while ago in used cars lot). Went to Amazon and made my selection. Next thing is I see is the warning: this particular console will not fit you car which is MAKE: XXXY, MODEL: YYYY, YEAR: ZZZZ. How&#x27;s that for data sharing.

m8 they shared their database with the entire world: <a href="https:&#x2F;&#x2F;www.wiz.io&#x2F;blog&#x2F;wiz-research-uncovers-exposed-deepseek-database-leak" rel="nofollow">https:&#x2F;&#x2F;www.wiz.io&#x2F;blog&#x2F;wiz-research-uncovers-exposed-deepse...</a>

I think the problem can be solved easily by forcing the company behind DeepSeek to simply redirect all the data they&#x27;ve gathered on their user, directly unto a CIA database. Surely this will be considered a good compromise.

Shouldn&#x27;t this be the other way around? TikTok has the most user data for any LLM to train with. I bet they will make a killing with it, unless of course the CCP decrees that they share it for free.

There&#x27;s nothing technical about it. Funny when many people mentioned propaganda by Deepseek. You&#x27;re seeing the counter-strike.

&gt; These references suggest deep integration with ByteDance&#x27;s analytics and performance monitoring infrastructure<p>I mean when I visit a random website or open a random app, I kind of expect that it will use something like Google Analytics or Firebase Crashlytics so that my &quot;user data&quot; is shared with Google.<p>If the article wants me to feel outraged about this practice, I don&#x27;t. I understand that analytics and performance monitoring are often outsourced to a third party, often without a choice of turning off the analytics and performance monitoring features in the first place.<p>I use the DeepSeek app happily without giving it any data I consider private. I have a separate local DeepSeek distilled model for that.

Reminder on various DeepSeek problems:<p>1. DeepSeek is full of propaganda&#x2F;censorship (<a href="https:&#x2F;&#x2F;arstechnica.com&#x2F;ai&#x2F;2025&#x2F;01&#x2F;the-questions-the-chinese-government-doesnt-want-deepseek-ai-to-answer&#x2F;" rel="nofollow">https:&#x2F;&#x2F;arstechnica.com&#x2F;ai&#x2F;2025&#x2F;01&#x2F;the-questions-the-chinese...</a>)<p>2. They already had a serious security and privacy issue when they left their database wide open and leaked everyone’s chat history (<a href="https:&#x2F;&#x2F;www.wiz.io&#x2F;blog&#x2F;wiz-research-uncovers-exposed-deepseek-database-leak" rel="nofollow">https:&#x2F;&#x2F;www.wiz.io&#x2F;blog&#x2F;wiz-research-uncovers-exposed-deepse...</a> )<p>3. Multiple teams of security researchers found code that links DeepSeek to the Chinese government through China Mobile, who is banned from operating in the US (<a href="https:&#x2F;&#x2F;www.pbs.org&#x2F;newshour&#x2F;world&#x2F;researchers-link-deepseeks-chatbot-to-chinese-mobile-telecom-banned-from-operating-in-u-s" rel="nofollow">https:&#x2F;&#x2F;www.pbs.org&#x2F;newshour&#x2F;world&#x2F;researchers-link-deepseek...</a>)<p>4. Other countries like South Korea are banning DeepSeek already over privacy concerns (<a href="https:&#x2F;&#x2F;mashable.com&#x2F;article&#x2F;south-korea-blocks-deepseek" rel="nofollow">https:&#x2F;&#x2F;mashable.com&#x2F;article&#x2F;south-korea-blocks-deepseek</a>)<p>Trump needs to enforce PAFACA and ban TikTok, but also ban DeepSeek, which has the same exact issues since it is also effectively operated by a foreign adversary and poses various security threats.

I guess we know how many bots are commenting on this article based on how many of them are talking about the US, when the article is about South Korea?

wait, is this a bad thing for US Tech companies? Guess if that&#x27;s a yes this is good for Europe?

If they sold it, isn&#x27;t that like what... literally almost every single company does nowadays unless you pay up?

This is my surprised face -_-<p>If you&#x27;re shocked or even the slightest bit surprised, then I can&#x27;t imagine how blissful your life is to be so unaware about how much corporations are sharing data with each other.<p>Like, I wholeheartedly expect that if I mention Beyblade toys on Facebook, then the next time I visit Amazon, they&#x27;ll be suggesting Beyblades even if I&#x27;ve never even searched Amazon for toys, let alone Beyblade.

you mean how every single US tech company shares data with Google and Meta? How you browse a website, and, in an instant, ads show in Meta products? &quot;user behaviour and device metadata [are] likely sent to ByteDance servers&quot;, lol, all your user behavior and device metadata are sent to Google and Meta servers. South Korea too afraid to say the same thing about USA. And surprised Pikachu face about all the downvotes in this thread on users pointing out the same thing about US tech companies, lol, propaganda and ethnonationalism is a powerful force

Lol I&#x27;m so glad I&#x27;m running it offline with Ollama.

<i>shocked pikachu face</i>

There was data sharing between Twitter, Google and Facebook as well.<p>USA has to make a decision between safety and national security.

Bruhh, your iphone and android will literally “share” what you are saying even in private with anyone they can find for advertising… so this should not be surprising

... in the same way a lot of website in this world &#x27;shared user data&#x27; with Google.<p>Through Google Analytics.<p>Yeah, believe it or not. ByteDance has a cloud offering. And it includes a frontend APM product. And DeepSeek used that. How surprising! A Chinese company used a Chinese cloud.<p>Oh, and chat.deepseek.com resolve to a Huawei Cloud IP address in China. It resolves to Cloudflare outside of mainland China, but who knows, maybe they just decided to wrap with another CDN and their servers are still on Huawei Cloud. So they sent data to Huawei, too. I repeat, H-U-A-W-E-I. That cursed telecom equipment company in the States.

I&#x27;ll take &quot;headlines that mean nothing when the world has given up the moral high ground&quot; for $200, Alex

Like there is no data sharing between OpenAI and other big tech in US....