There can exist strong consumer protections against misuse of their personal data by various entities.
And there can simultaneously also exist governmental overreach against citizens private data.
The world is complex, few things are truly binary.
Also how the Law was forced is extremely bad.
But hey it's once more proof that they EU is not a democratically spirited institution.
It's clear that member countries use the EU as a blame-laundering mechanism to pass domestically unpopular laws, but the forcing of this vote under the urgency procedure that requires absolute majority to reject, on the last EP session before summer break is so blatant that it might awaken people that might've overlooked the structural failures of the EU and finally radicalise them
If it's not a dictatorship, a regime, a shithole, a kleptocracy, or whatever name they use for a government they don't like, I don't know what it is.
Who is working on that? I suspect the main challenge is not technical, but human - persuading users to switch messenger apps is almost impossible.
Such a weak reasoning and method which they used to push this is ridiculous agenda lead me to strongly suspect there must be something else behind it.
True P2P implies knowing the IP addresses of the people you're talking to.
What changes with the return of Chat Control 1.0—and what stays the same:
*What is coming back:* US tech companies are once again allowed to scan private messages without a warrant or prior suspicion. This affects direct messages on platforms like Instagram, Discord, Snapchat, Skype, and Xbox, as well as emails via Google’s Gmail and Apple’s iCloud.
*What remains unchanged:* Public social media posts and files hosted in cloud storage could already be scanned without this law. Furthermore, private messages can always be reported by users, or monitored by authorities using targeted, court-ordered wiretapping.
*What is still NOT being scanned:* End-to-end encrypted chats, such as those on WhatsApp, have always been exempt from these scans. Additionally, European providers of messaging and email services have never implemented chat control measures.
So, E2E is unaffected?
Chat Control 2.0 was the big one in those regards.
(Also, LOL @ Skype mention.)
> What changes with the return of Chat Control 1.0—and what stays the same:
> What is coming back: US tech companies are once again allowed to scan private messages without a warrant or prior suspicion. This affects direct messages on platforms like Instagram, Discord, Snapchat, Skype, and Xbox, as well as emails via Google’s Gmail and Apple’s iCloud.
> What remains unchanged: Public social media posts and files hosted in cloud storage could already be scanned without this law. Furthermore, private messages can always be reported by users, or monitored by authorities using targeted, court-ordered wiretapping.
> What is still NOT being scanned: End-to-end encrypted chats, such as those on WhatsApp, have always been exempt from these scans. Additionally, European providers of messaging and email services have never implemented chat control measures.
It's dispiriting to see a supposedly pro-privacy politician launder backdoors as "strict security standards".
Just now I scrolled through our most popular news sites. 0 mentions. Wasn't on TV either.
The vast majority of the population didn't even have a clue that the vote was happening.
I checked the top 5 most popular local news sites. There was one article about chat control in April and then 2 more from 2025. That's it.
Imagine an issue as big as this and it's not even reported. Yeah I don't feel confident about the future at all.
Here's a quote from the article itself, which works for both pro and con arguments:
"What is still NOT being scanned: End-to-end encrypted chats, such as those on WhatsApp, have always been exempt from these scans. Additionally, European providers of messaging and email services have never implemented chat control measures."
As I'm not trained in law, I have no strong opinions on if this proposal is a net positive or negative, almost any big name LLM will do a better job than I can manage by looking at the legal text, stroking my goatee and saying "I recon…". But what I can say that I've just seen a headline about a class action lawsuit in the USA due to grok making CSAM and the company failing to assist the police in their investigations, and another about Meta facing a lawsuit in India for delivering advertising for CSAM on Instagram.My steelman in favour of the legislation:
The regulation closes a legal gap that would otherwise force platforms to stop using existing CSAM detection systems; it's a temporary framework that doesn't require universal mandatory scanning or ban E2EE, just keeps the legal basis for companies which choose to use detection/scanners while lawmakers continue negotiating a more comprehensive longterm solution.
My steelman against the legislation:
Scanning private communications, even allowing companies to "voluntary" do this, sets the precedent that the confidentiality of private correspondence is conditional rather than fundamental. Also, automated scanning inevitably has false positives. Also, has chilling effect on free speech, undermines trust in encrypted messaging.
Also, situationally, that it's "voluntary" means offenders can migrate to platforms which don't "voluntarily" do this.
"a measure it had rejected twice in March. Although a majority of voting Members of the European Parliament (MEPs) actually opposed the regulation (314 against, 276 in favor, 17 abstentions), the motion to reject it failed to secure the required absolute majority of 361 votes. As a result, mass scanning is now permitted again until 2028."
"Oh no we can't get a majority to pass the law!"
"Have you tried getting a majority to not pass the law?"
"Worth a shot!"
"It worked, should we also do this multiple times?"
"Of course not! Pass the law, quickly!"
How do we design such apps? Let's rule out age attestation (to allow only some age ranges) or scan of content because they are orthogonal to apps. What are the design patterns that prevent adults to meet kids? No messaging?
-- EU policy makers are really honest people, hats off to them. There's no way politicians in my country allow their chats to be scanned, because they're very corrupt.
First of all, private companies shouldn't be given that responsibility to begin with. Meta in particular, has a long history of unethical and immoral usage of personal data. I won't use the term "illegal", as the question of legality becomes moot when punishment can be factored in as a cost of doing business. Given the long list of things Meta has been caught doing, I'm genuinely curious as to why you think the lack of any consequence towards Zuckerberg on all the things so far, would somehow not be the case here.
Secondly, for this to carry any plausibility for being motivated by "protect the children" arguments, it requires a minimal effort be enacted on more effective measures, and a measured balance with the cost this comes at. There are very good arguments for why this law would actively harm children. Throw in some Bayesian understanding, and you better have a state of the art system that somehow pretty much never has false positives, nor false negatives, where this was also the only way to detect and avoid said abuse. I don't know the numbers here, but I highly doubt this is a good idea, even with infinite generosity as to good intentions. We've all been children, we've all done stupid things. Now throw in the brilliant and surely-not-to-scar-a-child-for-life situations where parents and strangers looking at something they thought was private, and have a "grown up discussion" about. I shiver at the thought.
Thirdly, and aside from directly harming children in situations where they selves use technology and naively, and unwisely share pictures, consider how many take pictures of their own kids without clothes, because they are normal human beings, who do not consider there to be anything sexual about said depiction. You want to throw law enforcement in the mix here? Child protective services?
Fourthly, consider the possible negative for this abuse. If normal behavior (e.g. children being children, and e.g. normal parents otherwise sharing normal pictures if you are a normal person) can be selectively chosen as being a heinous crime, this should scare anyone, especially consider the political shifting trends towards fascism.
Haha, no. As long as there is bread and circus, nothing wil happen.
In a couple years time, Chat Control 2.0 will come about, and the same tyrants will use the EU admission [2] that there is no evidence that suspicionless scanning of private communications has led to an increase in criminal convictions or in rescued children to argue that we need to go further, and break E2EE.
[1]: https://www.iwf.org.uk/resources/end-to-end-encryption-and-k... [2]: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELE...
miroljub•1h ago
Welcome to the Brave New 1984 We World. Big Brother loves us.
We are living through the time best described by Zamyatin, Orwell, and Huxley.
Otek•1h ago
ywvcbk•1h ago
yladiz•22m ago
inigyou•19m ago
netbioserror•1h ago
ekjhgkejhgk•55m ago
miroljub•52m ago
Europe would be a much better place if the EU stayed what it was, a trade union of sovereign nations without any political power over the people.
vrganj•49m ago
sham1•36m ago
And once you get there, you're no longer a trade union. Or a trading block, which is probably the better word since a trade union already means something else.
inigyou•18m ago
netsharc•1h ago
hsuduebc2•32m ago
If this is not some shady maneuver to scan user messages for security reason, because of, for example, possible incoming war then it's beyond absurd.
I would doubt that politicians pushing this are not understanding that pedophiles simply do not need to use these apps they are scanning. But I saw questioning of tech CEOs by older US officials and the lack of even basic knowledgeable about current technologies was ridiculously astounding.
inigyou•19m ago