Germany asked Google and Apple to remove DeepSeek AI from their app stores, citing GDPR violations over unlawful data collection and transfers to China.
The Berlin Commissioner for Data Protection requested Google and Apple to remove the DeepSeek AI app from their app stores due to GDPR violations.
On May 6, 2025, Berlin’s Data Protection Commissioner asked the company to remove its apps from German stores, stop illegal data transfers to China, or meet legal transfer requirements. After non-compliance, the Commissioner used Art. 16 of the Digital Services Act to report the apps to Apple and Google on June 27, 2025. Both companies must review the report and act. This was coordinated with state data protection officers and the Federal Network Agency.
DeepSeek AI operates in Germany without an EU office, offering its services in German via app stores. It collects extensive personal data, including chats, files, and device info, and transfers it to servers in China.
“The service is offered to users in Germany, including via apps in the Google Play Store and the Apple App Store with German-language descriptions, and can be used in German. The service is therefore subject to the provisions of the European General Data Protection Regulation (GDPR).” reads the press release published by Berlin Commissioner for Data Protection. “According to the service, it processes extensive personal data of users, including all text entries, chat histories, and uploaded files, as well as information about the location, devices, and networks used. The service transmits the collected personal data of users to Chinese processors and stores it on servers in China.”
Lacking EU safeguards or an adequacy decision for China, the service that violates the European General Data Protection Regulation (GDPR).
“DeepSeek’s transfer of user data to China is unlawful. DeepSeek has not been able to convincingly demonstrate to my authority that German users’ data in China is protected to a level equivalent to that of the European Union. Chinese authorities have far-reaching rights of access to personal data within the sphere of influence of Chinese companies.” said Meike Kamp, Berlin Commissioner for Data Protection and Freedom of Information. “Furthermore, DeepSeek users in China do not have the enforceable rights and effective legal remedies guaranteed in the European Union. I have therefore informed Google and Apple, as operators of the largest app platforms, of the violations and expect a timely consideration of a blocking.”
DeepSeek, a Chinese AI platform, gained fame in January 2025 with its advanced chatbot but faced serious cybersecurity issues. After refusing to remove its app voluntarily, Berlin authorities invoked the Digital Services Act to urge Apple and Google to consider its removal.
In January, Italy’s data protection watchdog blocked the Chinese artificial intelligence (AI) firm‘s chatbot service within the country, citing a lack of information on its use of users’ personal data.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, AI)
