NSW Government moves to ban TikTok on government-issued devices
Wednesday, 5 April 2023
The NSW Government has today moved to prevent the installation of the TikTok application and remove existing instances of it on government-issued devices, following advice from the Commonwealth Government.
As part of this, the NSW Premier will discontinue the use of TikTok and delete the account.
On 4 April 2023, the Commonwealth Attorney-General announced amendments to the Commonwealth Protective Security Policy Framework (PSPF) that allow the Secretary of the Attorney-General’s Department to issue mandatory directions to government entities that require them to address security risks to the Commonwealth.
As part of this change to the PSPF, a direction has been issued to prevent Federal Government entities from accessing and installing the TikTok application on government-issued devices.
Cyber Security NSW will work across the NSW public sector to lead a strategic implementation of the ban on government-issued devices in line with advice from the Commonwealth.
This ban will prevent NSW Government clusters and agencies from accessing and installing the TikTok application on government-issued devices.
In particular cases where there is a need for TikTok for ‘legitimate business reasons’ – such as for public health and safety messaging – agencies must first complete a risk assessment in consultation with the respective Chief Information Security Officer and the Chief Cyber Security Officer. Cyber Security NSW will provide more detailed advice on related security risk mitigations to NSW Government clusters and agencies.
NSW Premier Chris Minns said:
“I have asked for Cyber Security NSW to issue advice to NSW Government employees, to implement this change as soon as possible.”
“I will no longer be using TikTok.”
“There will be cases where apps such as TikTok are needed for communication to the community – for example public health and safety messaging. The NSW Government will be implementing a number of mitigations to ensure that the security risk of this use is managed appropriately.”