German Data Protection Authority Calls for DeepSeek’s Removal from App Stores Over Data Privacy Breaches

A key data protection authority in Germany has requested that Apple and Google remove Chinese AI app DeepSeek from their app stores within the country, raising serious questions about compliance with European Union data privacy standards. The move follows concerns that DeepSeek, headquartered in China, is transferring user data outside the EU without adequate safeguards—potentially breaching the EU’s strict data protection regulations.

Background: Privacy Standards and International App Providers

Meike Kamp, Berlin’s Commissioner for Data Protection and Freedom of Information, formally notified both Apple and Google about the issue. She stated that DeepSeek had not demonstrated a convincing level of data protection in accordance with EU law, particularly regarding the transfer of personal information to China.

Kamp explained that Chinese authorities have far-reaching access to data from companies operating under China’s jurisdiction. Her office approached DeepSeek to either comply with the relevant EU privacy laws—or pull the app from German app stores. Because DeepSeek did neither, a formal complaint was lodged with the major app platforms.

EU-Wide Privacy Scrutiny

Germany’s stance is not happening in isolation. Earlier this year, Italy banned DeepSeek on similar grounds, highlighting an increasing trend of European countries scrutinizing non-EU AI providers. According to DeepSeek’s publicly available privacy policy, the data it gathers is stored in China, further amplifying EU regulators' concerns about privacy risks and legal compliance.

Consumer privacy groups in the EU have been vocal that these cross-border data flows create vulnerabilities for European users. Apple and Google declined to comment on the ongoing review process.

DeepFounder AI Analysis

Why it matters

The German commissioner’s intervention marks an inflection point in how Europe treats AI-driven consumer apps from outside its regulatory orbit. This reinforces the EU’s determination to enforce digital sovereignty and signals increased diligence regarding the data practices of global technology companies. Startups operating across borders must see this as a sign that compliance with regional laws is not optional—and that failure to do so could mean exclusion from entire markets. Related: How European leaders are reevaluating technology dependencies.

Risks & opportunities

The risk for startups and tech companies is clear: not investing in robust, transparent data protection could result in loss of access to lucrative markets and damaging reputational fallout. Yet, this regulatory pressure also creates a compelling opportunity for privacy-first solutions and localized AI services that respect data residency laws—for example, European-based AI that guarantees no data ever leaves EU territory. We’ve seen this lead to the rise of new challenger platforms, especially in fintech and health tech.

Startup idea or application

This environment is ripe for a SaaS startup that offers compliance-as-a-service specifically for AI/ML apps targeting different jurisdictions. Imagine a toolkit for founders allowing real-time validation that all user data flows, storage, and vendor policies match local privacy laws. This service could act as both preventative shield and proof for app stores, enterprise customers, and regulators. For inspiration, see how other platforms are responding to shifting regulations: Apple’s adaptation to new EU requirements.

Data Privacy AI Regulation App Store Compliance Europe DeepSeek

Visit Deep Founder to learn how to start your own startup, validate your idea, and build it from scratch.

📚 Read more articles in our Deep Founder blog.