When millions of travelers in the Chinese-speaking world open Gaode Map to navigate city streets, they rarely think about where their location data ends up. But in Taiwan, that question has become a matter of national security. Gaode Map, the Alibaba-owned navigation app with more than 700 million users across China, is now caught in the crosshairs of Taipei’s expanding effort to screen Chinese-developed technology for cyber threats, a campaign that gained new legal teeth in late 2025 and continues to shape policy decisions in April 2026.
Taiwan’s new legal arsenal
Two pieces of legislation form the backbone of Taiwan’s approach. The Cyber Security Management Act, administered by the Ministry of Digital Affairs (MODA), flatly prohibits government agencies from downloading, installing, or using “products that are harmful to national cyber security.” The ban is not advisory. It carries compliance obligations across every level of government, with a narrow approval process for exceptions.
The second instrument sharpens the first. The Regulations for the Review of Products Harmful to National Cyber Security, confirmed through the Executive Yuan Gazette and in force since December 1, 2025, give MODA a structured, risk-based process for evaluating foreign information and communications technology. Review criteria include potential harm to national interests, government operations, and social stability. Once MODA designates a product as harmful, it can restrict or ban that product from government networks.
The regulations were also published on Taiwan’s central government portal and MODA’s own accessibility archive, creating a clear paper trail. Gazette records show the rules went through at least one round of revisions before reaching their current form, suggesting deliberate calibration rather than a rushed response.
Why Gaode Map is in the spotlight
Gaode Map, known internationally as Amap, is not a niche product. Developed by AutoNavi, a subsidiary Alibaba fully acquired in 2014, it dominates turn-by-turn navigation on the Chinese mainland and is widely used by Taiwanese business travelers, tourists, and students who spend time across the strait. The app collects granular location data, route histories, and device identifiers, the same categories of information that have triggered security reviews of Chinese tech products in other democracies.
Taiwanese lawmakers and security commentators have publicly raised concerns that data harvested by Gaode could be accessible to Chinese authorities under Beijing’s national security laws, which compel domestic companies to cooperate with intelligence requests. Those concerns echo arguments that drove India to ban dozens of Chinese apps in 2020 and fueled years of U.S. legislative action against TikTok. Taiwan’s move, however, is distinct: rather than issuing a blanket ban on a single app, Taipei built a review framework designed to evaluate any foreign product on a case-by-case basis.
The approach mirrors earlier Taiwanese restrictions on Chinese-made telecommunications equipment. Government agencies have been barred from using Huawei and ZTE networking gear for several years, a policy that predates the December 2025 regulations but shares the same underlying logic: critical infrastructure and government operations should not depend on technology that could be leveraged by an adversarial state.
What has not happened yet
Despite the public discussion, no MODA record available as of April 2026 specifically names Gaode Map as a product formally designated harmful under the review regulations. The published regulatory text describes the evaluation process in detail but does not include a list of apps or services that have completed review. Whether Gaode is under active assessment, has been flagged internally, or simply features in broader public debate about Chinese technology remains unconfirmed by primary government documents.
The technical picture is similarly incomplete. No official Taiwanese investigation report or independent audit detailing Gaode Map’s data transmission practices from Taiwan-based devices has surfaced publicly. Media outlets have cited general privacy complaints and espionage concerns tied to Chinese technology firms, but those reports lack the specificity of a formal finding. Without a published technical assessment from MODA or a credible third party, claims about exactly what data Gaode collects on Taiwanese users, where it is routed, and who can access it remain unverified.
Government ban vs. consumer reality
For the roughly 180,000 civil servants employed by Taiwan’s central government, the practical implications are concrete. The Cyber Security Management Act’s prohibition applies to government-issued devices and government networks. Agency IT departments are expected to enforce MODA’s designations as they are issued, meaning any app that lands on the restricted list would need to be removed from work phones and tablets promptly.
For private citizens, the picture is murkier. The current legal framework does not extend restrictions to consumer app stores, and MODA has not issued a public advisory urging ordinary Taiwanese to stop using Gaode or any other specific Chinese app. The gap between a government-device ban and a broader consumer warning is significant. A regulation that empowers action is not the same as action taken, and Taipei has so far stopped short of the sweeping consumer-facing bans seen in New Delhi.
That restraint may not last. Cross-strait tensions, combined with growing global momentum toward restricting Chinese data-collection platforms, create political pressure to expand the scope of enforcement. MODA’s review framework is built to scale: its criteria are broad enough to cover any networked product, and its designation authority requires no new legislation. The infrastructure is live. The question now is which apps, if any, will be the first to appear on a formal restricted list, and whether Gaode Map’s prominence makes it the most likely candidate.
More from Morning Overview
*This article was researched with the help of AI, with human editors creating the final content.
