Comment by gmueckl

1 day ago

As I understand it, chat platforms provider will not be held in violation of the data privacy laws if they add automatic detection and reporting of unlawful content to their platforms. E.G. a CSAM detector in a client app for an end-to-end-encrypted messaging service would be lawful.

Chat Control 1.0 is essentially the existing derogation that allowed cloud providers and messaging apps to do what they do in the rest of the world - voluntarily scan shared media against NCMEC hashes and novel CSAM image classifiers.

We're not talking about E2EE here, we're talking people sharing CSAM on Kik, or Snapchat, or sending it via gmail, or uploading it to DropBox etc. etc.

  • It also allows inclusion of client side scanners in E2Ee messengers. It seems that nobody did it (yet), but as far as I can tell, it is within the scope ofthe exception.