·  ·  · 

Foreign-Owned Apps Are Harvesting Your Data — What Changed Today (Nov. 10, 2025) and How to Protect Yourself

November 10, 2025
by
Foreign-Owned Apps Are Harvesting Your Data — What Changed Today (Nov. 10, 2025) and How to Protect Yourself
  • Apple removed two of China’s top gay dating apps (Blued and Finka) from the country’s App Store after an order from Beijing’s internet regulator, underscoring how data flows — and access to platforms — can be abruptly reshaped by foreign governments. [1]
  • U.S. regulators continue tightening the screws on hardware and software linked to China, with the FCC recently voting to expand restrictions on “covered list” tech and to potentially bar some previously approved devices. [2]
  • European authorities intensified enforcement in 2025, including a €530 million EU fine against TikTok over transfers and access to European users’ data from China. [3]
  • Germany pushed Apple and Google to remove the Chinese AI app DeepSeek over unlawful data transfers — part of a broader trend of governments scrutinizing foreign apps that move personal data across borders. [4]
  • At street level, fraud infrastructure is thriving: an ABC7 investigation today highlights “SIM farms” generating millions of texts, a reminder of how cheaply personal data can be weaponized once it leaks. [5]

What’s new today — and why it matters

Apple confirmed it removed Blued and Finka from the China App Store following a directive from the Cyberspace Administration of China. The apps may still run on phones where they’re already installed, but they’re no longer available for download in China. For consumers outside China, the episode is a real‑time illustration of two realities:

  1. platform rules and national laws can instantly shut off access to apps, and
  2. jurisdictions differ widely on data governance and speech controls, which directly affects where your data goes and who can access it. [6]

Meanwhile in the U.S., the FCC voted 3–0 to tighten restrictions on equipment associated with Chinese firms already on its “Covered List,” and even opened the door to curbing some previously authorized gear. While this is telecom hardware policy, not app policy, it’s driven by the same concern: foreign access to sensitive data and networks. [7]

In Europe, the year’s headline action remains the €530 million fine against TikTok, imposed by Ireland’s Data Protection Commission for failing to ensure EU‑level protections when data was remotely accessed from China — and for inadequate transparency around transfers. TikTok plans to appeal, but the case captures regulators’ central worry: foreign government access to users’ personal data. [8]

Germany’s data‑protection chief also asked Apple and Google to expel the Chinese AI app DeepSeek from their German app stores, citing unlawful transfers of user data to China and inadequate safeguards — part of a broader push across multiple countries to wall off sensitive personal information from foreign jurisdictions. [9]

And today in Los Angeles, investigators detailed the rise of “SIM farms” — racks of SIM boxes capable of pumping out millions of scam texts. It’s the downstream, real‑world harm of data abuse: once personal details are aggregated and traded, targeted fraud at massive scale becomes cheap and profitable. [10]

The bigger picture: foreign‑owned apps, data flows, and 2025 enforcement

  • Foreign‑owned apps are data‑hungry. A 2025 analysis of popular foreign‑owned apps found Chinese apps among the most aggressive collectors, averaging 18 data types per user and sharing six; apps cited include TikTok, Temu, Alibaba, Shein, CapCut, and AliExpress. [11]
  • Scrutiny isn’t limited to social media. Across 2025, regulators probed advertising and analytics firms over how they collect and structure identifiers and behavioral data for targeting — a reminder that data harvesting spans many categories of apps (not just video or shopping). [12]
  • Outside the West, large markets are acting too.Indonesia suspended TikTok’s registration over data‑sharing failures tied to livestreaming, illustrating how non‑Western regulators are increasingly willing to pull levers that affect platform operations — and the data they demand. [13]

Why “foreign‑owned” is a data‑risk signal (and not the only one)

Ownership matters because company obligations under local law travel with your data. If your information is processed in, or remotely accessed from, a jurisdiction with expansive government access rights, your risk profile changes — even if the app’s interface looks the same worldwide. 2025 actions by EU and German regulators explicitly framed the risk that Chinese law enables authorities to access data held by Chinese companies — whether through direct storage or remote access. [14]

That said, “foreign‑owned” isn’t the only red flag. The ad‑tech supply chain, data brokers, and SDKs embedded in “free” apps can expose you regardless of ownership if permissions are excessive and transfers are opaque. That’s why enforcement and news this year stretched from social apps to analytics firms and device ecosystems. [15]

What you should do today (Nov. 10, 2025)

Drawing on today’s developments and expert guidance, here’s a fast, effective privacy checklist you can complete now:

  1. Audit and delete
    Remove any “free” apps you don’t actively use — especially shopping, camera, photo‑editing, flashlight/weather, or “deal” apps from unfamiliar developers. Fewer apps, fewer trackers. Research highlights how many such apps harvest categories like location, contacts, photos, and identifiers. [16]
  2. Lock down permissions
    On iPhone: Settings → Privacy & Security → Tracking (toggle off “Allow Apps to Request to Track”); review Location Services, Contacts, Photos, Bluetooth, Microphone and set to “While Using”/“Ask Next Time.” On Android: Settings → Privacy → Permission manager and reset location/camera/microphone to “Only while app in use.” Regular permission reviews are a core defense recommended by security columnists focused on app data risks. [17]
  3. Reset your ad ID
    iPhone users can block cross‑app tracking; Android users can reset or delete the advertising ID so ad networks can’t stitch your profile as easily. [18]
  4. Use only official app stores and check privacy labels
    Stick to Apple’s App Store or Google Play. Review privacy labels/permissions before installing; be wary of apps demanding access that doesn’t match their function (e.g., a calculator requesting location). [19]
  5. Consider a data‑removal service
    Even after pruning apps, your details may already be circulating. Reputable data‑broker removal services can reduce your exposure to targeted scams (which are amplified by SIM‑farm spam). This approach is increasingly recommended in consumer‑security guidance. [20]
  6. Mind your messages
    Treat unexpected texts with links as hostile by default — especially “delivery,” “bank,” or “charity” prompts. Today’s SIM‑farm report is a reminder: never enter card or banking details from an unsolicited text. [21]

The regulatory drumbeat you should watch

  • United States (telecom & platforms): FCC’s late‑October vote to broaden restrictions on covered Chinese gear; additional actions could ripple into app/device ecosystems where data flows through network‑connected hardware. [22]
  • European Union (DSA & GDPR): The TikTok fine and ongoing DSA enforcement signal a tougher stance on transparency and cross‑border access; other large platforms face similar expectations on data access and researcher transparency. [23]
  • National regulators beyond the West: From Indonesia’s suspension of TikTok registration to Germany’s pressure on DeepSeek, cross‑border data pathways are becoming a top‑tier policy issue worldwide. [24]

Frequently asked questions

Which foreign‑owned apps are most data‑hungry?
Independent research in 2025 flagged TikTok, Temu, Alibaba, Shein, CapCut, and AliExpress among apps collecting and/or sharing numerous data categories (averages: 18 collected, 6 shared; with some outliers collecting or sharing more). Exact behaviors vary by version and region; check the privacy label and permissions every time. [25]

Does today’s Apple removal in China mean those apps were stealing data?
No — Apple said it acted on a government order; the removal is about compliance with local law, not necessarily a public finding of privacy violations. The bigger privacy point is that jurisdictional control affects both access and data governance, which is why cross‑border access remains under intense global scrutiny. [26]

Is this just a TikTok issue?
No. Enforcement spans e‑commerce, AI chat apps, ad‑tech and more. Any app moving personal data across borders without robust safeguards, transparency, and lawful bases can land in regulators’ sights. [27]

Editor’s note & sources

This article draws on today’s reporting and recent enforcement actions to explain the evolving risk of foreign‑owned apps harvesting personal data and the concrete steps you can take now. Notable sources include: WIRED on Apple’s removals (Nov. 10, 2025); ABC7 on SIM farms (Nov. 10, 2025); Reuters on FCC restrictions (Oct. 28, 2025) and DeepSeek in Germany (June 27, 2025); AP on the TikTok fine (May 2025); and a Help Net Security summary of Incogni’s 2025 study on data‑hungry apps. [28]

Further reading related to the requested topic
Kurt “CyberGuy” Knutsson’s consumer guide explains how to audit apps, reset ad tracking, and use data‑removal services — practical measures that align with the checklist above. (Published Nov. 5, 2025.) [29]

Security vs. Privacy
Watch this video on YouTube.

References

1. www.wired.com, 2. www.reuters.com, 3. apnews.com, 4. www.reuters.com, 5. abc7.com, 6. www.wired.com, 7. www.reuters.com, 8. apnews.com, 9. www.reuters.com, 10. abc7.com, 11. www.helpnetsecurity.com, 12. www.reuters.com, 13. www.reuters.com, 14. apnews.com, 15. www.reuters.com, 16. www.helpnetsecurity.com, 17. www.foxnews.com, 18. www.foxnews.com, 19. www.foxnews.com, 20. www.foxnews.com, 21. abc7.com, 22. www.reuters.com, 23. apnews.com, 24. www.reuters.com, 25. www.helpnetsecurity.com, 26. www.wired.com, 27. www.reuters.com, 28. www.wired.com, 29. www.foxnews.com

Mateusz Brzeziński

Technology News

  • Microsoft's .NET 10 Debuts with AI Features, Runtime Optimizations, and C#/F# Language Enhancements
    November 11, 2025, 8:22 PM EST. .NET 10 introduces a wave of improvements across AI, cryptography, runtime, and language tooling. The runtime delivers significant improvements in JIT inlining, method devirtualization, and stack allocations, plus AVX 10.2 support and enhanced NativeAOT for smaller, faster apps. In cryptography, there are broad API expansions, enhanced post-quantum cryptography via Windows CNG, and features like AES KeyWrap with Padding. The languages get attention: C# 14 adds field-backed properties, nameof for unbound generics, and extension blocks; F# 10 emphasizes safety with nullable reference types, optimized ranges, and autogenerated Is* properties for discriminated unions. These updates aim to boost developer productivity, safety, and performance across the .NET ecosystem.
  • Mophie launches new Juice Pack battery cases for iPhone Air and iPhone 17 Pro
    November 11, 2025, 8:20 PM EST. Mophie unveils three Juice Pack battery cases for the iPhone Air and iPhone 17 Pro. The Juice Pack for iPhone Air features 2,400 mAh, boosting battery life by about 60% and offering up to 6 feet (1.8 m) of drop protection with raised edges to guard the display. The Juice Pack for iPhone 17 Pro adds a 3,000 mAh battery, while the Pro Max version includes 3,600 mAh, delivering roughly +50% battery life for both models and drop protection up to 1.8 m. All three cases support passthrough charging via USB-C, with the iPhone charging first, then the case. Availability is now at Mophie, ZAGG, Amazon, and US retailers, priced at US$99.95 (~S$130). Local availability will be updated.
  • Michael Burry Doubles Down on AI Bubble Claims as Short Trade Backfires
    November 11, 2025, 8:18 PM EST. Famed investor Michael Burry doubles down on his AI bubble thesis as his short against Palantir and Nvidia rises amid a broader rally. In a post on X, he accuses Meta Platforms and Oracle of understating depreciation by extending asset lifespans for chips and AI infrastructure, calling it a widespread practice. He argues these moves will overstate earnings by about 26.9% for Meta and 20.8% for Oracle by 2028, with more details promised by November 28. Prominent analysts push back, noting depreciation shifts costs rather than proving fraud, and cautions that short-term overstatements may imply longer-term understatement. The debate underscores how high-conviction bets can play out in the AI era.
  • NVIDIA Stock To $260? Analyzing NVDA's Growth, Valuation, and Risk
    November 11, 2025, 8:16 PM EST. NVDA stock rose about 5.8% to roughly $199 as major indices rallied on news of progress toward ending the government shutdown. The outlook presented is bullish, with a target price near $260 based on NVIDIA's very strong growth and robust profitability (operating margin ~58%, net margin ~52%). The stock's financial stability stands out, with low debt and a sizeable cash cushion. While the valuation is described as very high, supporters argue the company's scale, free cash flow, and AI/datacenter momentum can justify premium levels. The analysis also covers risk factors, including historical drawdowns in 2022, and notes NVIDIA's resilience may depend on continued demand for HPC/AI solutions. Investors should weigh valuation against macro headwinds and NVIDIA's ongoing earnings trajectory.
  • Elon Musk Says Tesla Optimus Could Stop Crime, Sparking Ethics Debate
    November 11, 2025, 8:14 PM EST. Tesla CEO Elon Musk said at a shareholder meeting that the Optimus humanoid robot could follow people and stop you from committing crime, illustrating a bold vision for how AI and robotics might reshape society. The idea raises ethics and privacy concerns about surveillance and how such machines would intervene in human behavior. Musk described tasks like a more humane form of crime containment and argued preventing crime could reduce prisons. Realizing this would require advanced predictive abilities and clear methods of intervention remain unspecified. A 2022 prototype stands about 5'8" and is designed for varied duties. In public remarks, Musk noted Optimus roams Tesla offices 24/7; analysts say the project is still in early testing, with timelines for internal use by 2025 and broader production by 2026 not guaranteed.