Proton
Subscribe by RSS
Is deepseek safe

DeepSeek? More like DeepSneak

Edward Komenda

Share this page

Using a chatbot means walking through a privacy and censorship minefield.

AI chat apps like ChatGPT collect user data, filter responses, and make content moderation decisions that are not always transparent. But DeepSeek — a new AI chatbot developed in China that’s garnering unprecedented attention as a major threat to (new window)W(new window)estern tech companies(new window) — does all that and more.

In fact, this chatbot comes with an even bigger risk: DeepSeek is legally required to comply with the Chinese government’s demands for data access and content control, with no legal recourse to resist.

While governments worldwide — including the US and EU — can subpoena data from tech companies, Western companies have legal avenues to challenge these requests in court. OpenAI, Google, and Meta, for example, can push back against most excessive government demands, appeal in independent courts, or refuse requests that violate privacy laws like GDPR. DeepSeek, however, operates under China’s National Intelligence Law(new window), which compels companies to cooperate with government intelligence efforts without transparency or the ability to legally refuse. This means that if the Chinese government wants access to user data or to manipulate AI-generated responses, DeepSeek has no choice but to comply.

This article dives into just what DeepSeek collects and why it matters when it comes to your privacy, censorship, and government control.

What is DeepSeek?

DeepSeek is an AI startup owned by High-Flyer, a China-based hedge fund(new window). It has been promoted as an open-source alternative to ChatGPT, capable of generating human-like responses, assisting with coding, and solving complex problems — all done on the cheap(new window).

The model gained international attention(new window) for allegedly matching the performance of leading Western AI models at a fraction of the cost. By January 2025, DeepSeek had surpassed ChatGPT in downloads from Apple’s App Store(new window), triggering a global selloff in tech shares and raising concerns about the billions of dollars tech companies in the U.S. are funneling into the expansion of energy-sucking data centers, spending they claim is vital to the next AI breakthrough.

But as people downloaded DeepSeek and shared their experiences playing with the chatbot, it became clear that using DeepSeek comes with a familiar tradeoff for this class of technology: your privacy and the security of your most sensitive information.

Deep security flaws

New research has revealed that DeepSeek’s security practices may be just as concerning as its data policies, which we will touch on later.

On January 29, 2025, cybersecurity firm Wiz reported(new window) that DeepSeek had accidentally left over a million lines of sensitive data exposed on the open internet. The leak included digital software keys, which could potentially allow unauthorized access to DeepSeek’s systems, and chat logs from real users, showing the actual prompts given to the chatbot.

Wiz researchers said they found the database almost immediately with minimal scanning. Within 30 minutes of Wiz contacting DeepSeek, the database was locked down, but it is unclear whether bad actors accessed or downloaded the data before it was secured. Given how easy it was to find, that scenario is quite possible.

Ami Luttwak, Wiz’s chief technology officer, told Wired(new window) the leak was a “dramatic mistake,” warning that DeepSeek’s systems are not mature enough “to be used with any sensitive data at all.”

This leak, however, made clear at least one thing: DeepSeek does not just collect and store vast amounts of user data — it also appears to lack the security measures needed to protect it.

What data does DeepSeek collect?

According to its privacy policy(new window), DeepSeek collects a wide range of personal data, including:

  • Profile information: Username, email, phone number, password, and date of birth.
  • User input: Everything you type or upload, including chat history, prompts, and audio input.
  • Device and network data: IP address, device model, operating system, system language, and keystroke patterns.
  • Usage data: Features you use, actions you take, and system performance logs.
  • Cookies and trackers: Web beacons and other tracking technologies to monitor user behavior.
  • Third-party data: Information from linked accounts and advertising partners that track your activity across websites, apps, and stores.

DeepSeek’s handling and storage of this data on servers in China, where it is subject to government access, has raised alarms among European regulators.

DeepSeek is under investigation in Europe

Both Ireland’s Data Protection Commission (DPC)(new window) and Italy’s Data Protection Authority (DPA)(new window) have launched investigations(new window) into how the company collects, stores, and processes user data.

Italy’s DPA has blocked access to DeepSeek in the country after the company failed to provide sufficient information about its handling of personal data. Regulators want to know what data DeepSeek collects, where it is stored, and whether it complies with EU privacy laws like GDPR.

Ireland’s DPC has also requested details on how DeepSeek processes data from Irish users. Meanwhile, DeepSeek’s app has been removed from Apple and Google app stores in Italy, though it is unclear whether the removal was voluntary or enforced.

If DeepSeek fails to comply with European privacy laws, it could face fines, bans, or further restrictions in the EU.

DeepSeek is open source, but is it safe?

DeepSeek is open source, meaning you can modify code(new window) on your own app to create an independent — and more secure — version. This has led some to hope that a more privacy-friendly version of DeepSeek could be developed. However, using DeepSeek in its current form — as it exists today, hosted in China — comes with serious risks for anyone concerned about their most sensitive, private information.

Any model trained or operated on DeepSeek’s servers is still subject to Chinese data laws, meaning that the Chinese government can demand access at any time.

Even if DeepSeek’s technology is promising, its data practices and legal obligations make it a serious privacy and security risk.

DeepSeek is subject to China’s surveillance laws

DeepSeek operates under China’s 2017 National Intelligence Law(new window) — a statute that compels all Chinese companies to assist the government with national security matters. This means any Chinese company, from TikTok to RedNote to DeepSeek, can be forced to share user data with Chinese authorities(new window) even if that data is from users in the United States or elsewhere.

This law requires all Chinese companies to:

  • Give the government access to user data upon request
  • Assist in national intelligence operations
  • Remain secretive about state-mandated data sharing

DeepSeek has no choice but to comply with government demands, whether that means turning over private user data or adjusting its AI outputs to match state-approved narratives(new window).

DeepSeek is already censoring information

All mainstream AI chat apps have content moderation policies, rules, and boundaries used mainly to prevent harm — not control political narratives. But it appears DeepSeek is actively rewriting history and pushing government-approved messaging.

A Proton employee, for example, typed this prompt into DeepSeek, looking for information about the 1989 Tiananmen Square protests, a student-led movement that transformed China’s government: “Major world events on April 15, 1989.” DeepSeek began to generate a response, but quickly erased it, offering this answer instead: “Sorry, that’s beyond my current scope. Let’s talk about something else.”

According to further testing by The Diplomat(new window), DeepSeek:

  • Refused to acknowledge major historical events: When asked about the Cultural Revolution, it acted as if the event never happened.
  • Censored politically inconvenient facts: When asked about the persecuted intellectual Chu Anping, it ignored his disappearance and instead praised the CCP for its support of intellectuals.
  • Promoted state propaganda: When questioned about China’s economy, DeepSeek redirected the conversation toward confidence in government leadership.
  • Edited answers on international disputes: When asked who owns the Spratly Islands, DeepSeek first acknowledged the territorial dispute — but then erased its response and replaced it with: “Let’s talk about something else.”
  • Avoided direct answers on global conflicts: When asked if Russia’s invasion of Ukraine was justified, DeepSeek refused to give a yes or no answer, instead repeating China’s official neutrality stance.

This is what state-enforced censorship and narrative control looks like.

Chatbots are powerful tools, but the tradeoff is your privacy

The rise of large language models as chatbot assistants already raises serious privacy and censorship concerns, with companies like OpenAI and Google bending rules and collecting massive amounts of data with little transparency. But there’s no technical reason why AI has to be this invasive — a private and secure AI is possible, yet no one is building it.

DeepSeek takes these concerns even further. Not only does it collect extensive personal information, but it cannot legally resist government demands for data access and content manipulation. Instead of designing AI that respects user privacy, these companies prioritize data collection, tracking, and opaque moderation policies.

At Proton, we believe in privacy, transparency, and an internet free from censorship. Whether it’s AI, social media, or cloud services, you deserve to know who controls your data and how it’s being used.

If you care about online privacy and digital freedom, be careful what AI tools you trust — because not all of them have your best interests in mind.

Protect your privacy with Proton
Create a free account

Related articles

The cover image for a Proton Pass blog explaining how a family password manager can save parents time - the image shows three password fields on top of each other with a security shield shape containing two adult figures and one child figure
Tired of resetting passwords for your family? Find out how a family password manager can help you save time on password admin.
what does bcc mean in email
What is BCC in email language? Here's what BCC means, how it works, and when and why you might want to use it.
President Trump is now at the head of the US warrantless surveillance machine
President Trump now controls of the US government's warrantless surveillance machine. We look at how it works and how to defend yourself.
See our predictions for the internet in 2025, from AI cyberattacks to DIY surveillance.
he cover image for a blog explaining how to see and manage your saved passwords easily in Proton Pass
Saving passwords in a password manager can help you stay safe online, but how can you see all your saved passwords in one place? Find out with Proton Pass.
Email password 101: Fully secure your inbox with 2 simple tools
Learn how to secure your email password and inbox with strong passwords, 2FA, passkeys, and tips to prevent data breaches and unauthorized access.