Representatives of European Union member states reached an agreement on Wednesday in the Council of the EU to move forward with the controversial “Chat Control” child sexual abuse regulation, which paves the way for new rules targeting abusive child sexual abuse material (CSAM) on messaging apps and other online services.
“Every year, millions of files are shared that depict the sexual abuse of children… This is completely unacceptable. Therefore, I’m glad that the member states have finally agreed on a way forward that includes a number of obligations for providers of communication services,” said Danish Minister for Justice, Peter Hummelgaard.
The deal, which follows years of division and deadlock among member states and privacy groups, allows the legislative file to move into final talks with the European Parliament on when and how platforms can be required to scan user content for suspected child sexual abuse and grooming.
The existing CSAM framework is set to expire on April 3, 2026, and is on track to be replaced by the new legislation, pending detailed negotiations with European Parliament lawmakers.
EU Chat Control laws: What’s in and what’s out
The EU’s efforts to make scanning of private messages compulsory suffered a setback earlier this month, when mandated client-side scanning was removed from the latest proposal draft. Wording was also added to ensure that providers were not unduly burdened with detection obligations:
“Nothing in this Regulation should be understood as imposing any detection obligations on providers.”
In its latest draft, the EU Council keeps the core CSAM framework intact, but service providers would also have to cooperate with a newly established EU Centre on Child Sexual Abuse to support the implementation of the regulation.
While the latest EU Council text removes the explicit obligation of mandatory scanning of all private messages, the legal basis for “voluntary” CSAM detection is extended indefinitely.
Related: After Samourai, DOJ’s money-transmitter theory now looms over crypto mixers
A compromise that satisfies neither side
To end the Chat Control stalemate, a team of Danish negotiators in the Council had worked to remove the most contentious element: the blanket mandatory scanning requirement. Under previous provisions, end-to-end encrypted services like Signal and WhatsApp would have been required to systematically search users’ messages for illegal material.
Still, it’s a compromise that leaves both sides feeling shortchanged. Law enforcement officials warn that abusive content will still lurk in the corners of fully encrypted services, while digital rights groups argue that the deal still clears the way for broader monitoring of private communications and for mass surveillance, according to a Thursday Politico report.
Lead negotiator and chair of the Committee on Civil Liberties, Justice and Home Affairs in the European Parliament, Javier Zarzalejos, urged both the Council and the Parliament to enter negotiations immediately. He stressed the importance of establishing a legislative framework to prevent and combat child sexual abuse online, while respecting encryption.
Source: Javier Zarzalejosj“I am committed to work with all political groups, the Commission, and member states in the Council in the coming months in order to agree on a legally sound and balanced legislative text that contributes to effectively prevent and combating child sexual abuse online,” he said.
The Council celebrated the latest efforts to protect children from sexual abuse online; however, former Dutch Member of Parliament Rob Roos lambasted the Council for acting similarly to the “East German era, stripping 450 million EU citizens of their right to privacy.” He warned that Brussels was acting “behind closed doors,” and that “Europe risks sliding into digital authoritarianism.”
Telegram founder and CEO Pavel Durov pointed out that EU officials were exempt from having their messages monitored. He commented in a post on X, “The EU weaponizes people’s strong emotions about child protection to push mass surveillance and censorship. Their surveillance law proposals conveniently exempted EU officials from having their own messages scanned.”
Related: Advocacy groups urge Trump to intervene in the Roman Storm retrial
Privacy on trial in broader global crackdown
The latest movement on Chat Control lands in the middle of a broader global crackdown on privacy tools. European regulators and law‑enforcement agencies have pushed high‑profile cases against crypto privacy projects like Tornado Cash, while US authorities have targeted developers linked to Samurai Wallet over alleged money‑laundering and sanctions violations, putting privacy‑preserving software into the crosshairs.
In response, Ethereum co‑founder Vitalik Buterin doubled down on the right to privacy as a core value. He donated 128 ETH each (about $760,000) to decentralized messaging projects Session and SimpleX Chat, arguing their importance in “preserving our digital privacy.”
Session president Alexander Linton told Cointelegraph that regulatory and technical developments are “threatening the future of private messaging,” while co-founder Chris McCabe said the challenge was now about raising global awareness.
Magazine: 2026 is the year of pragmatic privacy in crypto — Canton, Zcash and more
Source: https://cointelegraph.com/news/eu-chat-control-regulation-advances-encryption-privacy-debate?utm_source=rss_feed&utm_medium=feed&utm_campaign=rss_partner_inbound
