Slashdot reader schwit1 shares this report from an automotive blog called The Truth About Cars: A group of German automakers, chemical concerns, and battery producers have announced the joint development of a "battery passport" designed to help government regulators trace the history of the cells. The consortium is funded by the German government and is supposed to work in tandem with new battery regulations that are being prepared by the European Union.

According to the German economic ministry, officially the Federal Ministry for Economic Affairs and Climate Action, the overarching plan is for the EU to mandate traceable hardware be installed in all batteries used in the continent by 2026. Those intended for use in electric vehicles are up first, with the passport scheme also serving to chronicle everything from the vehicle's repair history to where the power cell's raw materials were sourced.
Reuters reports that batteries "could carry a QR code linking to an online database where EV owners, businesses or regulators could access information on the battery's composition." This digital tool should also make it easier to recycle raw materials inside batteries, the government statement said, which would cut dependence on foreign suppliers which control the vast majority of resources, like lithium and nickel, essential for battery production.

Regulators across the European Union need more powers to crack down on misleading online financial promotions, the bloc's securities watchdog said on Friday. From a report: The EU's executive European Commission is due this year to set out a retail investor strategy to catch up with rapid changes in technology which now allow people to buy shares or bitcoin with a few swipes on their smartphone. The bloc wants more retail investor participation to help build a deeper capital market that relies less on bank loans to fund the economy. "I believe these are fundamental shifts in how the market works and who engages in the market," Verena Ross, chair of the European Securities and Markets Authority (ESMA) told Reuters. "I think the downside of some of that is that it entices a lot of speculation, and a kind of gamification of the way retail investors engage in financial markets."

The European Union has joined the social network Mastodon, which has seen a staggering 30,000 new users after Elon Musk's bid for Twitter was accepted. PC Magazine reports: On Thursday, the European Commission said it had set up its own server, dubbed EU Voice, to join Mastodon's decentralized social network, also known as a "Fediverse." The effort is currently only a pilot, but it represents the EU's goal of supporting private and open-source software capable of rivaling mainstream social media platforms such as Twitter, Facebook, and YouTube. On the same day, the European Commission also launched an account for PeerTube, another decentralized platform that revolves around video sharing. "With the pilot launch of EU Voice and EU Video, we aim to offer alternative social media platforms that prioritize individuals and their rights to privacy and data protection," said European Data Protection Supervisor Wojciech Wiewiorowski.

"In concrete terms this means, for example, that EU Voice and EU Video do not rely on transfers of personal data to countries outside the European Union and the European Economic Area; there are no advertisements on the platforms; and there is no profiling of individuals that may use the platforms," he added. "These measures, amongst others, give individuals the choice on and control over how their personal data is used."

An anonymous reader quotes a report from Ars Technica: Following in the footsteps of iOS 14, Google is rolling out an app privacy section to the Play Store on Tuesday. When you look up an app on the Play Store, alongside sections like "About this app" and "ratings and reviews," there will be a new section called "Data privacy & security," where developers can explain what data they collect. Note that while the section will be appearing for users starting today, it might not be filled out by developers. Google's deadline for developers to provide privacy information is July 20. Even then, all of this privacy information is provided by the developer and is essentially working on the honor system.

Here's how Google describes the process to developers: "You alone are responsible for making complete and accurate declarations in your app's store listing on Google Play. Google Play reviews apps across all policy requirements; however, we cannot make determinations on behalf of the developers of how they handle user data. Only you possess all the information required to complete the Data safety form. When Google becomes aware of a discrepancy between your app behavior and your declaration, we may take appropriate action, including enforcement action."

Once the section is up and running, developers will be expected to list what data they're collecting, why they're collecting it, and who they're sharing it with. The support page features a big list of data types for elements like "location," "personal info," "financial info," "web history," "contacts," and various file types. Developers are expected to list their data security practices, including explaining if data is encrypted in transit and if users can ask for data to be deleted. There's also a spot for "Google Play's Families Policy" compliance, which is mostly just a bunch of US COPPA and EU GDPR requirements. Google says developers can also indicate if their app has "been independently validated against a global security standard."

Europe's Digital Markets Act -- near-finalized legislation to tame the internet's gatekeepers -- contains language squarely aimed at ending Apple's iOS browser restrictions. The Register reports: The Register has received a copy of unpublished changes in the proposed act, and among the various adjustments to the draft agreement is the explicit recognition of "web browser engines" as a service that should be protected from anti-competitive gatekeeper-imposed limitations. Apple requires that competing mobile browsers distributed through the iOS App Store use its own WebKit rendering engine, which is the basis of its Safari browser. The result is that Chrome, Edge, and Firefox on iOS are all, more or less, Safari.

That requirement has been a sore spot for years among rivals like Google, Mozilla, and Microsoft. They could not compete on iOS through product differentiation because their mobile browsers had to rely on WebKit rather than their own competing engines. And Apple's browser engine requirement has vexed web developers, who have been limited to using only the web APIs implemented in WebKit for their web apps. Many believe this barrier serves to steer developers toward native iOS app development, which Apple controls.

The extent to which Apple profits from the status quo has prompted regulatory scrutiny in Europe, the UK, the US, and elsewhere. [...] Now those efforts have been translated into the text of the DMA, which, alongside the Digital Services Act (DSA), defines how large technology gatekeepers will be governed in Europe. [...] In short, when the DMA takes effect in 2024, it appears that Apple will be required to allow browser competition on iOS devices. "The potential for a capable web has been all but extinguished on mobile because Apple has successfully prevented it until now," said Alex Russell, partner program manager on Microsoft Edge who worked previously as Google Chrome's first web standards tech lead. "Businesses and services will be able to avoid building 'apps' entirely when enough users have capable browsers."

"There's a long road between here and there," he added. "Apple has spent enormous amounts to lobby on this, and they aren't stupid. Everyone should expect them to continue to play games along the lines of what they tried in Denmark and South Korea."

An anonymous reader quotes a report from The Verge: The EU has agreed on another ambitious piece of legislation to police the online world. Early Saturday morning, after hours of negotiations, the bloc agreed on the broad terms of the Digital Services Act, or DSA, which will force tech companies to take greater responsibility for content that appears on their platforms. New obligations include removing illegal content and goods more quickly, explaining to users and researchers how their algorithms work, and taking stricter action on the spread of misinformation. Companies face fines of up to 6 percent of their annual turnover for noncompliance.

"The DSA will upgrade the ground-rules for all online services in the EU," said European Commission President Ursula von der Leyen in a statement. "It gives practical effect to the principle that what is illegal offline, should be illegal online. The greater the size, the greater the responsibilities of online platforms." [...] Although the legislation only applies to EU citizens, the effect of these laws will certainly be felt in other parts of the world, too. Global tech companies may decide it is more cost-effective to implement a single strategy to police content and take the EU's comparatively stringent regulations as their benchmark. Lawmakers in the US keen to rein in Big Tech with their own regulations have already begun looking to the EU's rules for inspiration.

The final text of the DSA has yet to be released, but the European Parliament and European Commission have detailed a number of obligations it will contain [...]. Although the broad terms of the DSA have now been agreed upon by the member states of the EU, the legal language still needs to be finalized and the act officially voted into law. This last step is seen as a formality at this point, though. The rules will apply to all companies 15 months after the act is voted into law, or from January 1st, 2024, whichever is later. "Large online platforms like Facebook will have to make the working of their recommender algorithms (used for sorting content on the News Feed or suggesting TV shows on Netflix) transparent to users," notes The Verge. "Users should also be offered a recommender system 'not based on profiling.' In the case of Instagram, for example, this would mean a chronological feed (as it introduced recently)."

The tech giants will also be prohibited from using "dark patterns" -- confusing or deceptive UIs designed to steer users into making certain choices. A detailed list of obligations contained in the DSA can be found in the article.

Thousands of potentially harmful chemicals could soon be prohibited in Europe under new restrictions, which campaigners have hailed as the strongest yet. From a report: Earlier this year, scientists said chemical pollution had crossed a "planetary boundary" beyond which lies the breakdown of global ecosystems. The synthetic blight is thought to be pushing whale species to the brink of extinction and has been blamed for declining human fertility rates, and 2 million deaths a year. The EU's "restrictions roadmap" published on Monday was conceived as a first step to transforming this picture by using existing laws to outlaw toxic substances linked to cancers, hormonal disruption, reprotoxic disorders, obesity, diabetes and other illnesses.

Industry groups say that up to 12,000 substances could ultimately fall within the scope of the new proposal, which would constitute the world's "largest ever ban of toxic chemicals," according to the European Environmental Bureau (EEB). Tatiana Santos, the bureau's chemicals policy manager, said: "EU chemical controls are usually achingly slow but the EU is planning the boldest detox we have ever seen. Petrochemical industry lobbyists are shocked at what is now on the table. It promises to improve the safety of almost all manufactured products and rapidly lower the chemical intensity of our schools, homes and workplaces."

European Union lawmakers have secured a provisional deal on a landmark update to rules for digital services operating in the region -- grabbing political agreement after a final late night/early morning of compromise talks on the detail of what is a major retooling of the bloc's existing ecommerce rulebook. From a report: The political agreement on the Digital Services Act (DSA) paves the way for formal adoption in the coming weeks and the legislation entering into force -- likely later this year. Although the rules won't start to apply until 15 months after that -- so there's a fairly long lead in time to allow companies to adapt.

The regulation is wide ranging -- setting out to harmonize content moderation and other governance rules to speed up the removal of illegal content and products. It addresses a grab-bag of consumer protection and privacy concerns, as well as introducing algorithmic accountability requirements for large platforms to dial up societal accountability around their services. While 'KYC' requirements are intended to do the same for online marketplaces.

The world's biggest technology companies could face billions of dollars in fines for breaches of new European Union legislation, details of which are expected to be agreed upon by lawmakers as soon as Friday. From a report: The landmark Digital Services Act is the EU's answer to what it sees as a failure by tech giants to combat illegal content on their platforms. Noncompliance could cost companies as much as 6% of their global annual sales when the rules go into effect as early as 2024.

Failures could be extremely costly. Based on their reported 2021 annual sales, Amazon, for instance, could face a theoretical fine of as much as 26 billion euros ($28 billion) for future noncompliance with the DSA, or Google as much 14 billion euros. Facebook whistle-blower Frances Haugen said the DSA could represent a "global gold standard" for regulating social media companies. After more than a year of internal wrangling, key rules expected to be announced include:

1. A ban on using sensitive data such as race or religion for targeting ads
2. A ban on targeting any ads to minors
3. A ban on so-called "dark patterns," specifically tactics to push people into consenting to online tracking.

Amazon's main European retail business reported 1.16 billion euros ($1.26 billion) of losses in 2021, which allowed the company to pay no income tax and receive 1 billion euros in tax credits, corporate filings seen by Bloomberg show. From the report: The Luxembourg-based business recorded sales of 51.3 billion euros last year, up 17% from 43.8 billion euros in 2020. The unit, called Amazon EU Sarl, includes revenue generated by its e-commerce activities in the U.K, Germany, France, Italy, Spain, Poland, Sweden and the Netherlands. Amazon has been a target of European regulators over its tax arrangements. The Seattle-based company won an appeal on a 250 million-euro ($280 million) tax bill imposed after regulators said agreements with Luxembourg dating back to 2003 amounted to illegal state aid. Last year, the European Commission appealed in the European Court of Justice.

European Union lawmakers have taken a step closer to agreeing rules to standardize how a range of mobile gadgetry is charged. From a report: Today MEPs in the European Parliament's internal market and consumer protection (IMCO) committee adopted their position on a Commission proposal announced last fall, ahead of a full vote by the parliament next month to confirm how it will negotiate with Member State governments on the detail of the legislation. The Council adopted its position on the common charger proposal back in January. The IMCO committee voted 43:2 in favor of a negotiation position that will push to standardize charger ports for a range of mobile devices on USB Type-C, including smartphones, tablets, handheld games consoles, e-readers, digital cameras, electronic toys and more -- with MEPs voting to expand the original proposal to cover laptops, among other additional products.

Apple Chief Executive Officer Tim Cook said that proposed app store regulations in the U.S. and European Union would put iPhone users' privacy at risk. From a report: "If we are forced to let unvetted apps onto iPhones, the unintended consequences will be profound," Cook said during a keynote address at the Global Privacy Summit on Tuesday in Washington. "Data-hungry companies would be able to avoid our privacy rules and once again track our users against their will." Apple is under global scrutiny over app store policies. The EU is working on legislation that would force the company to allow apps to be installed from outside the Apple App Store, threatening Apple's grip on its platform and potentially limiting its ability to collect a commission from developers.

An anonymous reader quotes a report from the New York Times: Train travel in Europe is on the upswing, thanks to growing interest from travelers, a renaissance in sleeper trains, and new investments in high-speed rail lines across the continent. But to see major growth in passenger traffic -- which is one of the goals of the European Green Deal -- the continent's railways will have to overcome a number of challenges, including booking difficulties and competition with short-haul flights, which remain the cheaper option on many multicountry routes. In France and Austria, the pandemic brought the planes-versus-trains question to the forefront. The French government's Covid bailout package of Air France required the airline to eliminate domestic flights when there was a rail option that took under two and a half hours to complete; the measure was later written into law.

The Austrian government placed a similar condition on its support to Austrian Airlines, demanding that the company end its 50-minute flight between Vienna and Salzburg, a journey that passengers can make by train in about three hours. The European Commission also designated 2021 as the "Year of European Rail," seizing the opportunity to spread the word about train travel, particularly to a younger audience. While passenger traffic was growing steadily through 2019, it was starting from a low base: Before the pandemic, only 8 percent of all passenger travel in the European Union was by train. But in addition to the public relations campaign, European leaders are also working to reduce practical barriers to cross-border train travel by introducing new data-sharing systems, replacing outdated infrastructure, and building new high-speed routes, particularly in Central and Eastern Europe.

"The idea is that for train trips of less than four hours, no businesspeople will choose to fly, and for trips below six hours, normal people -- tourists -- will take the train," said Alberto Mazzola, the executive director of the Community of European Railways and Infrastructure Companies, which is based in Brussels. Mr. Mazzola added that government leaders are throwing their weight behind railway infrastructure, particularly high-speed lines. "We heard this 20 years ago," he added. "The difference today is that we are seeing the investments."

Senior officials at the European Commission were targeted last year with spy software designed by an Israeli surveillance firm, according to two EU officials and documentation reviewed by Reuters. From the report: Among them was Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019, according to one of the documents. At least four other commission staffers were also targeted, according to the document and another person familiar with the matter. The two EU officials confirmed that staffers at the commission had been targeted but did not provide details.

The commission became aware of the targeting following messages issued by Apple to thousands of iPhone owners in November telling them they were "targeted by state-sponsored attackers," the two EU officials said. It was the first time Apple had sent a mass alert to users that they were in government hackers' crosshairs. The warnings triggered immediate concern at the commission, the two officials said. In a Nov. 26 email reviewed by Reuters, a senior tech staffer sent a message to colleagues with background about Israeli hacking tools and a request to be on the lookout for additional warnings from Apple.

Apple faces an additional EU antitrust charge in the coming weeks in an investigation triggered by a complaint from Spotify, Reuters reported Monday, citing a person familiar with the matter said, a sign that EU enforcers are strengthening their case against the U.S. company. From a report: The European Commission last year accused the iPhone maker of distorting competition in the music streaming market via restrictive rules for its App Store that force developers to use its own in-app payment system and prevent them from informing users of other purchasing options. Such requirements have also come under scrutiny in countries including the United States and Britain. Extra charges set out in a so-called supplementary statement of objections are usually issued to companies when the EU competition enforcer has gathered new evidence or has modified some elements to boost its case.

An artificial intelligence tool that reads chest X-rays without oversight from a radiologist got regulatory clearance in the European Union last week -- a first for a fully autonomous medical imaging AI, the company, called Oxipit, said in a statement. The Verge reports: The tool, called ChestLink, scans chest X-rays and automatically sends patient reports on those that it sees as totally healthy, with no abnormalities. Any images that the tool flags as having a potential problem are sent to a radiologist for review. Most X-rays in primary care don't have any problems, so automating the process for those scans could cut down on radiologists' workloads, the Oxipit said in informational materials.

The tech now has a CE mark certification in the EU, which signals that a device meets safety standards. The certification is similar to Food and Drug Administration (FDA) clearance in the United States, but they have slightly different metrics: a CE mark is less difficult to obtain, is quicker, and doesn't require as much evaluation as an FDA clearance. The FDA looks to see if a device is safe and effective and tends to ask for more information from device makers. Oxipit spokesperson Mantas Miksys told The Verge that the company plans to file with the FDA as well.

Oxipit said in a statement that ChestLink made zero "clinically relevant" errors during pilot programs at multiple locations. When it is introduced into a new setting, the company said there should first be an audit of existing imaging programs. Then, the tool should be used under supervision for a period of time before it starts working autonomously. The company said in a statement that it expects the first healthcare organizations to be using the autonomous tool by 2023.

An anonymous reader quotes a report from Reuters: The European Union's top court ruled on Tuesday that national authorities cannot retain phone data in a "general and indiscriminate" manner, but could use specific information to tackle some very serious crime. The court ruled on a case brought by the Supreme Court in Ireland where a man sentenced in 2015 to life imprisonment for murder appealed, saying the court of first instance had wrongly admitted traffic and location data of telephone calls as evidence.

The Luxembourg-based Court of Justice of the EU (ECJ) on Tuesday said it was up to a national court there to decide whether the evidence was allowed. But it also said the bloc's members cannot have laws in place that would allow crime prevention through the "general and indiscriminate" retention of such data. Some circumstances, such as particularly serious crime regarded as a threat to national security, could justify data retention but only in a narrower scope or for a limited time.

European Union lawmakers were set on Thursday to back tougher safeguards for transfers of bitcoin and other cryptocurrencies, in the latest sign that regulators are tightening up on the freewheeling sector. From a report: Two committees in the European Parliament have thrashed out cross-party compromises to be voted on. Crypto exchange Coinbase has warned the rules would usher in a surveillance regime that stifles innovation. The $2.1 trillion crypto sector is still subject to patchy regulation across the world. Concerns that bitcoin and its peers could upset financial stability and be used for crime have accelerated work by policymakers to bring the sector to heel. Under the proposal first put forward last year by the EU's executive European Commission, crypto firms such as exchanges would have to obtain, hold, and submit information on those involved in transfers. That would make is easier to identify and report suspicious transactions, freeze digital assets, and discourage high-risk transactions, said Ernest Urtasun, a Spanish Green Party lawmaker helping to steer the measure through the parliament. The Commission had proposed applying the rule to transfers worth 1,000 euros ($1,116) or more, but under the cross-party agreement this 'de minimis' rule has been scrapped -- meaning all transfers would be in scope.

Corin Faife writes via The Verge: On March 24th, EU governing bodies announced that they had reached a deal on the most sweeping legislation to target Big Tech in Europe, known as the Digital Markets Act (DMA). Seen as an ambitious law with far-reaching implications, the most eye-catching measure in the bill would require that every large tech company -- defined as having a market capitalization of more than 75 billion euros or a user base of more than 45 million people in the EU -- create products that are interoperable with smaller platforms. For messaging apps, that would mean letting end-to-end encrypted services like WhatsApp mingle with less secure protocols like SMS -- which security experts worry will undermine hard-won gains in the field of message encryption.

The main focus of the DMA is a class of large tech companies termed "gatekeepers," defined by the size of their audience or revenue and, by extension, the structural power they are able to wield against smaller competitors. Through the new regulations, the government is hoping to "break open" some of the services provided by such companies to allow smaller businesses to compete. That could mean letting users install third-party apps outside of the App Store, letting outside sellers rank higher in Amazon searches, or requiring messaging apps to send texts across multiple protocols. But this could pose a real problem for services promising end-to-end encryption: the consensus among cryptographers is that it will be difficult, if not impossible, to maintain encryption between apps, with potentially enormous implications for users.

Signal is small enough that it wouldn't be affected by the DMA provisions, but WhatsApp -- which uses the Signal protocol and is owned by Meta -- certainly would be. The result could be that some, if not all, of WhatsApp's end-to-end messaging encryption is weakened or removed, robbing a billion users of the protections of private messaging. Given the need for precise implementation of cryptographic standards, experts say that there's no simple fix that can reconcile security and interoperability for encrypted messaging services. Effectively, there would be no way to fuse together different forms of encryption across apps with different design features, said Steven Bellovin, an acclaimed internet security researcher and professor of computer science at Columbia University.

"Geothermal energy has long been the forgotten member of the clean energy family, overshadowed by relatively cheap solar and wind power, despite its proven potential," argues a new article in Fast Company. "But that may soon change — for an unexpected reason.

"Geothermal technologies are on the verge of unlocking vast quantities of lithium from naturally occurring hot brines beneath places like California's Salton Sea, a two-hour drive from San Diego..." As a geologist who works with geothermal brines and an energy policy scholar, we believe this technology can bolster the nation's critical minerals supply chain at a time when concerns about the supply chain's security are rising. Geothermal power plants use heat from the earth to generate a constant supply of steam to run turbines that produce electricity. The plants operate by bringing up a complex saline solution located far underground, where it absorbs heat and is enriched with minerals such as lithium, manganese, zinc, potassium, and boron. Geothermal brines are the concentrated liquid left over after heat and steam are extracted at a geothermal plant. In the Salton Sea plants, these brines contain high concentrations — about 30% — of dissolved solids.

If test projects now underway prove that battery-grade lithium can be extracted from these brines cost effectively, 11 existing geothermal plants along the Salton Sea alone could have the potential to produce enough lithium metal to provide about 10 times the current U.S. demand. Three operators at the Salton Sea geothermal field are in various stages of designing, constructing, and testing pilot plants for direct lithium extraction from the hot brines. At full production capacity, the 11 existing power plants near the Salton Sea, which currently generate about 432 megawatts of electricity, could also produce about 20,000 metric tons of lithium metal per year. At current prices, the annual market value of this metal would be more than $5 billion....

Geothermal power has the ability to complement solar and wind energy as a baseload power source — it is constant, unlike sunshine and wind — and to provide energy and mineral security. It could also offer a professional bridge for oil, gas, and coal employees to transition into the clean energy economy. The industry could benefit from policies like risk mitigation funds to lessen drilling exploration costs, grant programs to demonstrate innovations, long-term power contracts, or tax incentives.

Adding the production of critical metals like lithium, manganese, and zinc from geothermal brines could provide geothermal electrical power operators a new competitive advantage and help get geothermal onto the policy agenda.