Expert Warns over Dangers of Amap

The Amap (Gaode) platform, operated out of mainland China, has evolved from a simple map service into a sophisticated geospatial intelligence tool. Beyond turn‑by‑turn directions, the app delivers three‑dimensional street views, real‑time traffic‑signal countdowns, and continuous location pings that map the movement of millions of users across Taiwan’s urban corridors. This granular stream of coordinates, speed metrics, and infrastructure interactions creates a digital twin of the island’s transportation network, a dataset that can be repurposed for surveillance, pattern analysis, and strategic planning.

Under China’s 2017 National Intelligence Law, any Chinese‑registered company must cooperate with state intelligence work, granting Beijing unrestricted access to data stored on its servers. As Alice Yang of the Institute for National Defense and Security Research notes, even if Amap’s codebase is isolated from government databases, the raw location logs can be harvested, anonymized, and later re‑identified with a handful of spatiotemporal points. The incident involving a French Navy officer’s Strava upload, which inadvertently revealed the Charles de Gaulle carrier’s route, illustrates how seemingly innocuous fitness data can become a strategic liability.

Taiwan’s Ministry of Digital Affairs has responded by prohibiting the use of Amap within all government agencies and commissioning a formal cybersecurity assessment. This move signals a shift from treating foreign apps solely as privacy concerns to recognizing them as potential national‑security assets. Regional rivals are watching closely; if data harvested by Amap informs Beijing’s military or diplomatic calculations, the balance of information advantage could tilt against Taiwan. Policymakers may soon need to craft legislation that forces foreign‑origin software to undergo security vetting before any public deployment.