also, I was surprised that in my conservative country no MEP voted with acceptance. but maybe it’s because the proposal included adding clauses like this?
(v) not applied to interpersonal communications to which end-to-end encryption is, has been or will be applied;
That sounds kinda reasonable then. If the company has access to the chat logs in plain text, they should probably be scanning it for CSAM. Though the use of AI to identify it is concerning, given the low accuracy. And I guess there’s also the risk of communications with someone’s doctor being flagged.
also, I was surprised that in my conservative country no MEP voted with acceptance. but maybe it’s because the proposal included adding clauses like this?
https://www.europarl.europa.eu/doceo/document/TA-10-2026-0070_EN.html
That sounds kinda reasonable then. If the company has access to the chat logs in plain text, they should probably be scanning it for CSAM. Though the use of AI to identify it is concerning, given the low accuracy. And I guess there’s also the risk of communications with someone’s doctor being flagged.
On reflection it’s still a dumb law.