[Press release updated on 21 May 2021 to include a link to the text following approval by Coreper]
Today, the negotiators from the Council and the European Parliament reached a provisional agreement on a temporary measure to allow providers of electronic communications services such as web-based email and messaging services to continue to detect, remove and report child sexual abuse online, also covering anti-grooming, until permanent legislation announced by the European Commission is in place.
Protecting children against any form of violence or abuse is paramount for the EU. Today we have agreed on effective and enforceable temporary rules to ensure that the crucial activities of detecting, removing and reporting illegal material that certain electronic service providers carry out, purely on a voluntary basis, can continue, and perpetrators can be caught and prosecuted. It has been a priority for the Council to conclude these temporary rules as quickly as possible.
Pedro Siza Vieira, Portuguese Minister of State for the Economy and Digital Transition, President of the Council
In December 2020, the comprehensive European Electronic Communications Code (EECC) entered into application, bringing with it a new definition of electronic communications services. This definition encompasses 'number-independent interpersonal communications services' (NI-ICS), which includes messaging services.
Some NI-ICS providers have been using specific technologies to detect child sexual abuse material on their services in order to remove and report it to law enforcement authorities for criminal prosecution.
As the ePrivacy directive of 2002, which ensures the confidentiality of communications and personal data in the electronic communications sector, relies on the definition of electronic communications services in the Code, NI-ICS are now subject to the confidentiality rules of the ePrivacy directive rather than those of the General Data Protection Regulation (GDPR). In contrast to the GDPR, the ePrivacy directive does not contain a legal basis for the voluntary processing of content or traffic data for the purpose of detecting child sexual abuse. Therefore, for services falling within the scope of the ePrivacy directive, a specific derogation is needed so that these valuable practices can continue.
Today's agreement provides for a derogation to articles 5(1) and 6(1) of the ePrivacy directive, to allow providers to continue to detect, remove and report child sexual abuse material and apply anti-grooming technologies. The Charter of Fundamental Rights and the GDPR will continue to apply in any case, and a number of extra safeguards will guarantee that privacy online is respected.
The Commission has announced that it will propose overarching legislation to tackle child sexual abuse online by the second quarter of 2021. That legislation will aim to provide a long-term solution to replace this temporary measure.
The interim regulation will apply for three years, or until an earlier date if the permanent legal instrument is adopted by the legislators and repeals these temporary rules before then.
The provisional agreement reached today is subject to approval by the Council. It will now be submitted to the Council’s Permanent Representatives Committee (Coreper) for endorsement.
-Draft regulation on a temporary derogation from certain provisions of directive 2002/58/EC as regards the use of technologies by number-independent interpersonal communications service providers for the processing of personal and other data for the purpose of combatting child sexual abuse online - text subject to revision (link added on 21 May 2021)