Is DeepSeek A New Threat To Your Data? Consider These Things Before Using!
China’s DeepSeek has shocked people around the world with its amazing AI model, which was developed very cost-effectively. Immediately after its launch, the model was seen giving tough competition to GPT, Google and other models.
Apart from competition, the model also faces a tussle for privacy reasons. Western countries showed a hardcore stance against the model, citing its loose privacy.
The reason for the concern is obviously the communist government, which has its strict laws that Europe and the USA consider hardcore.
This time, data protection with DeepSeek is at the centre of debate. Many experts are worried and pointing out that China’s companies, while developing an effective AI model, have not addressed the data privacy issue seriously.
Its privacy policy vaguely or ambiguously addresses data protection measures and even omits some, such as GDPR provisions, without providing clarification.
If you also use DeepSeek, convincing yourself that your data won’t be compromised is better.
Here are some privacy areas that the expert pointed out DeepSeek lacks.
Data Storage in China
DeepSeek’s privacy policy clearly states that the giant will store users in the People’s Republic of China.
This seems like a privacy threat to many people, as China already has controversial laws, namely the Cybersecurity Law (CSL) and the Data Security Law (DSL), in place. These laws allow the government to access users’ data anytime.
As the data location is China, outside users will lack control over their data and, without their knowledge, end up with it in the hands of the government.
No Clear Data Retention Period
The policy says we will erase, delete, or remove data or whatever the case is, or that ever case is, when we don’t require it any longer, but it does not disclose exact data retention periods. Instead, it states, “We retain information for as long as necessary to provide our Services.”
Furthermore, it categorises data retention based on amount, type, and sensitivity, citing that the retention period may differ.
Sired data will include account, input, and payment information, and in case of any term or policy violation, data will be prioritised for longer processing.
Data Deletion Policy is One-Sided
When you delete your account, the giant says it will still retain your data for legal and regulatory reasons.
That means even if you opt out, you would have no clue how long your past interaction with DeepSeek will continue to be stored.
However, if you see ChatGPT’s policy for the same instance, it says that if you delete your account, we will delete your data within 30 days, except we may retain a limited set of data for longer where required or permitted by law.
Read also: SGE: a new way to search for information by Google
Possible Violation of GDPR
GDPR applies to any company that handles EU citizens’ data. It clearly states that users can retrieve, delete, or completely erase their data upon request, regardless of where the company is located.
Now, DeepSeek is an outsider company, so technically, GDPR applies to it as well. However, complying with the provision is another thing Deep SEEK did not address.
The concerns among people are
- GDPR says users must be able to download and transfer their data. DeepSeek seems to address it
- Users should have the right to request that their personal data be fully erased. DeepSeek does not explicitly confirm that all user data is wiped from its servers.
- GDPR requires companies to state a specific legal reason (e.g., consent, contract necessity, legitimate interest) for processing data. DeepSeek uses vague wording about third-party transfers, which may not meet GDPR transparency requirements.
No Clear Information on Data Security Measures
While DeepSeek’s privacy policy provides general assurance about data security, its wording is somewhat vague. It lacks specific details on security measures like encryption methods, a firewall, or the security protocols that are in place. If any attacks put data in danger, how will they cope with them?
Instead, the policy seems to wash its hands, citing that the company isn’t responsible if someone bypasses security measures. This makes user data vulnerable, and users are even worried.
Read also: OpenAI Launches SearchGPT as ChatGPT’s Real-Time Search Feature
End Note:
While it’s true DeepSeek’s AI model has made a strong impact, its privacy policies have raised concerns. The points we highlighted are the key areas experts find concerning and resonating with people.
While the model is powerful, its data handling practices remain debated worldwide. Ultimately, deciding whether they trust it with their data is up to you.
Thanks for reading! For more such articles, you can visit our blog.