Overview
- EU member states approved a position that removes any requirement for platforms to scan for child sexual abuse material and instead mandates provider risk assessments.
- National authorities in each country would evaluate those assessments, order mitigation where necessary, and impose penalty payments for non-compliance.
- The deal preserves end-to-end encryption by avoiding enforced scanning of encrypted communications, while leaving voluntary detection decisions to companies.
- The proposal establishes an EU Center on Child Sexual Abuse to support implementation and assist victims.
- Stakeholders remain split, with privacy and tech groups warning of potential backdoor scanning and child-rights advocates concerned about the absence of mandatory detection orders.