TL;DR: DeepSeek, a Chinese AI chatbot that briefly topped app store charts in early 2025, has been banned or restricted by Italy, Australia, Taiwan, South Korea, India, the Czech Republic, and at least 17 US states. Security researchers found hidden code linking the app to China Mobile, a state-owned telecom banned from operating in the US due to military ties. Cisco tested DeepSeek's safety guardrails: it failed 100% of jailbreak attempts. A Congressional report calls it a "covert instrument" of CCP espionage. Federal legislation to ban it from all government devices is pending. And none of the bans cover private citizens: anyone can still download it.
The App That Spooked the World
In January 2025, a Chinese AI startup called DeepSeek released a large language model that matched the capabilities of ChatGPT at a fraction of the computing cost. The app rocketed to the top of both Apple's App Store and Google Play, briefly overtaking ChatGPT in downloads.[1]
It looked like a win for open AI development. A cheaper, competitive model from an unexpected player. Silicon Valley panicked about its business models. Wall Street wiped billions off Nvidia's market cap.
Then security researchers started reading the code.
China's Laws Make It Worse
Even without the China Mobile connection, DeepSeek's privacy policy is a red flag factory. All user data (prompts, responses, device fingerprints, browsing activity, third-party login data) gets stored on servers in the People's Republic of China.[4]
Here's what that means in practice: China's 2017 National Intelligence Law requires all organizations and individuals to "support, assist, and cooperate with national intelligence efforts." No exceptions. No court orders needed. No requirement to notify users when data gets handed over.[4]
Stewart Baker, former top official at both the Department of Homeland Security and the NSA, put it bluntly: DeepSeek "raises all of the TikTok concerns plus you're talking about information that is highly likely to be of more national security and personal significance than anything people do on TikTok."[2]
Think about what people type into AI chatbots. Business strategies. Legal questions. Code with proprietary logic. Medical concerns. Financial data. That's not dance videos. That's the kind of intelligence agencies dream about collecting.
100% Jailbreak Rate
It's not just the data pipeline. The model itself is a security disaster.
Cisco's advanced AI research team, working with the University of Pennsylvania, ran DeepSeek R1 through 50 prompts from the HarmBench dataset, covering cybercrime, misinformation, illegal activities, and general harm. The result: a 100% attack success rate. Every single jailbreak attempt worked. Not one harmful prompt was blocked.[5]
For comparison: OpenAI's o1-preview blocked 74% of the same attacks. Claude 3.5 Sonnet blocked 74%. DeepSeek blocked zero.[5]
Qualys TotalAI ran an even broader test: 885 attacks across 18 jailbreak types. DeepSeek failed 58% of them.[6]
The irony: DeepSeek does have guardrails. They just happen to be political ones. Ask it about Tiananmen Square or Taiwan's independence and it'll refuse to answer. Ask it to help you write malware? No problem.[5]
Cisco's researchers blamed DeepSeek's cost-cutting training methods. The same reinforcement learning and distillation techniques that made the model cheap to build appear to have gutted its safety mechanisms.[5]
Congress Calls It a Spy Tool
In April 2025, the US House Select Committee on the Chinese Communist Party published a 17-page report on DeepSeek. The language was not subtle.[7]
The report accused DeepSeek of being "a covert instrument of the CCP's global espionage and technology appropriation agenda." Key allegations:
- DeepSeek "funnels Americans' data to the People's Republic of China through backend infrastructure connected to a US government-designated Chinese military company"
- The app "siphons data back to the PRC" and "covertly censors and manipulates information pursuant to Chinese law"
- DeepSeek used "tens of thousands" of restricted Nvidia AI chips, allegedly routed through Southeast Asian shell companies to evade export controls
- The company's founder studied under a researcher whose work includes military applications like drone swarms
The committee warned that "the emergence of DeepSeek is a warning to US policy makers that the PRC remains capable of rapidly innovating in today's most advanced technologies despite US efforts to stop them."[7]
The Global Ban Tracker
Here's who's blocked DeepSeek as of January 2026:
Full Country Bans
Italy: First to act. Blocked from app stores in January 2025 after DeepSeek failed to explain its data practices to GDPR regulators. Covers all citizens, not just government.[8]
Government Device Bans
Australia (all government devices, February 2025), Taiwan (government agencies, state enterprises, public schools), India (Ministry of Finance employees), Czech Republic (all public administration), South Korea (app downloads suspended after data rule violations).[8][9]
US Federal Agencies
Pentagon (blocked after unauthorized staff access), NASA (all systems and devices), US Navy (prohibited in any form, including personal use), Department of Commerce (all government equipment).[10]
US States (17+)
Texas (first, January 31, 2025), New York, Virginia, Tennessee, Iowa, North Dakota, South Dakota, North Carolina, Nebraska, Arkansas, Oklahoma, Alabama, Kansas, Georgia, Pennsylvania, Oregon, Nevada. Some states also banned RedNote, Lemon8, and Manus AI.[11]
Germany has asked Apple and Google to remove DeepSeek from their stores. Belgium, Ireland, France, and South Korea have opened formal investigations into the company's data handling.[8]
The Federal Bill
On February 6, 2025, Representatives Josh Gottheimer (D-NJ) and Darin LaHood (R-IL), both on the House Intelligence Committee, introduced the "No DeepSeek on Government Devices Act" (H.R.1121). A companion bill landed in the Senate as S.765.[12]
Gottheimer called it "a five alarm national security fire." LaHood said the legislation would "ban the app from federal workers' phones while closing backdoor operations the company seeks to exploit."[12]
Twenty-one state attorneys general signed a letter urging Congress to pass it. Trump called it "a good development."[12]
As of January 2026, neither bill has passed into law. The patchwork of state bans and agency-level blocks remains the primary defense.[11]
Worse Than TikTok
The DeepSeek situation follows the TikTok playbook (Chinese-owned app collects data, stores it on Chinese servers, faces government bans) but the stakes are higher.
TikTok's national security concerns centered on behavioral analytics: what videos you watch, how long you watch them, who you follow. That's surveillance-grade data, but it's consumer behavior data.
DeepSeek processes whatever you type into it. Business plans. Source code. Legal strategies. Medical questions. Financial models. Classified-adjacent thinking from government employees who didn't know better.
The Pentagon found out about DeepSeek the hard way: staffers accessed it before anyone thought to block it.[10]
Some cybersecurity experts also point out a deeper problem. Singling out DeepSeek might be whack-a-mole. One analysis found millions of apps that communicate with servers in China. Banning one chatbot doesn't fix the infrastructure.[1]
The Open-Source Escape Hatch
Here's the part most coverage misses: DeepSeek's R1 model is open-source. The weights are public. Anyone can download and run it on their own hardware.
Perplexity AI already did exactly that, integrating DeepSeek R1 into its product with servers based in the US and EU, sending zero data to China.[8]
This is the distinction that matters. The model isn't inherently dangerous. It's the app and infrastructure that create the surveillance pipeline. Running DeepSeek's model on your own servers, or through a US-based provider, removes the China data risk entirely.
The bans target the right thing (the app and its backend) but they don't prevent the model from being used safely elsewhere. That's actually how open-source AI is supposed to work.
What You Should Do
Delete the App
If you've used DeepSeek directly, uninstall it. Your previous prompts and data are already on Chinese servers. You can't undo that, but you can stop the flow.
Use Alternatives
ChatGPT, Claude, Gemini, and Perplexity all process data on US or EU servers. If you want DeepSeek's R1 model specifically, use it through a US-hosted provider like Perplexity or run it locally.
Check Your Workplace
If your employer hasn't banned DeepSeek yet, raise it with IT. Government contractors especially should treat any Chinese AI tool as a data exfiltration risk.
Think Before You Prompt
This applies to every AI chatbot, not just DeepSeek. Don't type anything into a cloud AI service that you wouldn't want a third party to read. No passwords. No proprietary code. No legal strategies. No medical data you want kept private.
The Bottom Line
DeepSeek isn't just another data privacy story. It's a case study in how fast an AI tool can go from "cool new chatbot" to "national security threat." Hidden code linking to a military-connected telecom. A Congressional report calling it a spy tool. A 100% jailbreak rate on safety tests. Data stored on Chinese servers with no legal protection from government access.
Governments moved fast: 17 US states, six countries, and multiple federal agencies have banned or restricted it in under a year. But federal legislation still hasn't passed. And for the hundreds of millions of people who downloaded DeepSeek when it was topping the charts? Their data is already in China.
The bans are the right call. But they came after the download surge, not before it. That's always the pattern: the surveillance pipeline gets built first. The regulation comes second. And the data never comes back.
References
- PYMNTS - DeepSeek Faces Global Scrutiny as Governments Ban AI Model (2026)
- Feroot Security - Research Reveals DeepSeek AI's Hidden Data Pipeline to China (February 2025)
- PBS NewsHour - Researchers Link DeepSeek's Chatbot to China Mobile (February 2025)
- CIS - DeepSeek: A New Player in the Global AI Race (2025)
- Cisco - Evaluating Security Risk in DeepSeek and Other Frontier Reasoning Models (2025)
- Qualys TotalAI - DeepSeek Failed Over Half of Jailbreak Tests (January 2025)
- US House Select Committee on the CCP - DeepSeek Report (April 2025)
- AItechTonic - DeepSeek AI Banned Countries 2026: Complete List
- Al Jazeera - Which Countries Have Banned DeepSeek and Why? (February 2025)
- Tom's Guide - DeepSeek AI Banned by NASA, US Navy, and More (2025)
- GovTech - Where's DeepSeek Banned? The States Blocking Chinese-Made AI (2025)
- Rep. Gottheimer - Bipartisan Legislation to Protect Americans from DeepSeek (February 2025)