Shein Suspected of Transferring User Data to China, Irish Regulator Launches Investigation
The Irish Data Protection Commission (DPC) has launched an investigation into Chinese fast-fashion e-commerce platform Shein over allegations of transferring European user data to China. The DPC will assess Shein's EMEA headquarters in Dublin for compliance with the EU's GDPR.
📋 Article Processing Timeline
- 📰 Published: May 6, 2026 at 09:21
- 🔍 Collected: May 6, 2026 at 09:31 (10 min after Published)
- 🤖 AI Analyzed: May 6, 2026 at 09:57 (25 min after Collected)
(Central News Agency Dublin 5th comprehensive foreign report) The Irish Data Protection Commission (DPC) today stated that it has launched an investigation into Shein, a Chinese fast-fashion e-commerce platform, for allegedly transferring European user data to China.
Reuters reported that the DPC, which has the power to impose high fines, said it would examine and assess the extent to which Shein's Europe, Middle East and Africa (EMEA) headquarters in Dublin complies with EU privacy regulations, namely the "EU General Data Protection Regulation" (GDPR).
The DPC pointed out that when personal data is transferred to countries outside the EU, the "EU General Data Protection Regulation" requires that the data must receive the same protection as within the EU.
Last year, the DPC, concerned about TikTok's practices in protecting user information, fined it 530 million euros (approximately NT$19.56 billion) and ordered the Chinese short video platform to suspend data transfers to China unless processing methods complied with regulations.
DPC Deputy Commissioner Graham Doyle stated in a statement: "Recent DPC regulatory actions, coupled with other complaints filed with European regulators, have brought the issue of data transfers to China into particular focus."
He said the investigation is a strategic priority for the DPC.
A Shein spokesperson said in an email statement that they have been "actively communicating with the DPC regarding their data protection practices" over the past few months.
The spokesperson said: "We take data protection extremely seriously and are fully committed to complying with the EU General Data Protection Regulation and all applicable data protection laws."
This is the first privacy investigation into Shein since it established its EMEA headquarters in Dublin in 2023. (Compiled by: Hsu Rui-cheng) 1150506
Reuters reported that the DPC, which has the power to impose high fines, said it would examine and assess the extent to which Shein's Europe, Middle East and Africa (EMEA) headquarters in Dublin complies with EU privacy regulations, namely the "EU General Data Protection Regulation" (GDPR).
The DPC pointed out that when personal data is transferred to countries outside the EU, the "EU General Data Protection Regulation" requires that the data must receive the same protection as within the EU.
Last year, the DPC, concerned about TikTok's practices in protecting user information, fined it 530 million euros (approximately NT$19.56 billion) and ordered the Chinese short video platform to suspend data transfers to China unless processing methods complied with regulations.
DPC Deputy Commissioner Graham Doyle stated in a statement: "Recent DPC regulatory actions, coupled with other complaints filed with European regulators, have brought the issue of data transfers to China into particular focus."
He said the investigation is a strategic priority for the DPC.
A Shein spokesperson said in an email statement that they have been "actively communicating with the DPC regarding their data protection practices" over the past few months.
The spokesperson said: "We take data protection extremely seriously and are fully committed to complying with the EU General Data Protection Regulation and all applicable data protection laws."
This is the first privacy investigation into Shein since it established its EMEA headquarters in Dublin in 2023. (Compiled by: Hsu Rui-cheng) 1150506