Australia’s privacy watchdog is looking into TikTok’s data collection and permissions requests after fresh analysis of its source code raised alarm about the viral video app’s information gathering practices.

Two weeks ago, The Australian Financial Review reported analysis by Canberra-based cybersecurity and intelligence firm Internet 2.0 that revealed TikTok checks its users’ device location at least once an hour; continuously requests access to contacts even if the user originally denies; maps a device’s running apps and all installed apps; and more as part of broad permissions asked of users.