British Parliament passes major digital security law

After long debates and four years of back and forth, the two houses of the British Parliament definitively adopted, on Tuesday September 19, theOnline Safety Bill, a law which provides for a series of security measures for the protection of Internet users. The text should be promulgated in the coming days. The British Secretary of State for Technology, Michelle Donelan, considered that this new text was a major step forward, which would ‘UK’s safest place in the world to be online’.

Similar in certain aspects to the French bill “securing and regulating the digital space”, currently examined in committee at the National Assembly, the English text provides for several measures to protect minors, particularly targeting social networks.

The platforms must, among other things, “promptly delete or prevent publication” of content inciting suicide or self-harm, implement additional age control measures for users, publish regular reports on actions taken, facilitate reporting of problematic content or situations. Those failing to comply with these obligations face fines of up to 10% of their global turnover.

Read also: Article reserved for our subscribers Jean-Noël Barrot: “We have an imperative which is to put an end to impunity and the law of the strongest online”

Technical limitations

THE criticism of the text argue that some of these provisions are difficult to apply in practice. Age verification technologies, in particular, have so far struggled to find a balance between privacy protection and effectiveness, which led the previous British government to abandon a bill in 2019 aimed at to impose them on all pornographic sites.

The version of the text adopted by Parliament also retains a particularly controversial provision, which requires messaging services and large platforms to proactively “scan” content exchanged by their users to detect child pornography content. Strongly contested by all major digital companies, this provision would in practice result in prohibiting the encryption of communications on messaging services such as WhatsApp or iMessage. However, encryption is considered by these companies and by computer security experts as essential to protect users from hacking and surveillance.

Several messaging operators, including WhatsApp, had declared that they would be forced to leave the United Kingdom and stop offering their services there if this provision was put in place. At the beginning of September, the government tried to be reassuring by saying that this measure would not be applied until the technology to do it securely was ready. It could therefore never be implemented, because no technical solution seems possible today.

Read also: Article reserved for our subscribers Blocking porn sites: where is the experimentation with “double anonymity” age verification tools?

Le Monde with Reuters

source site-29