EU

Apple's Grip On iOS Browser Engines Disallowed Under Latest Draft EU Rules (theregister.com) 74

Europe's Digital Markets Act -- near-finalized legislation to tame the internet's gatekeepers -- contains language squarely aimed at ending Apple's iOS browser restrictions. The Register reports: The Register has received a copy of unpublished changes in the proposed act, and among the various adjustments to the draft agreement is the explicit recognition of "web browser engines" as a service that should be protected from anti-competitive gatekeeper-imposed limitations. Apple requires that competing mobile browsers distributed through the iOS App Store use its own WebKit rendering engine, which is the basis of its Safari browser. The result is that Chrome, Edge, and Firefox on iOS are all, more or less, Safari.

That requirement has been a sore spot for years among rivals like Google, Mozilla, and Microsoft. They could not compete on iOS through product differentiation because their mobile browsers had to rely on WebKit rather than their own competing engines. And Apple's browser engine requirement has vexed web developers, who have been limited to using only the web APIs implemented in WebKit for their web apps. Many believe this barrier serves to steer developers toward native iOS app development, which Apple controls.

The extent to which Apple profits from the status quo has prompted regulatory scrutiny in Europe, the UK, the US, and elsewhere. [...] Now those efforts have been translated into the text of the DMA, which, alongside the Digital Services Act (DSA), defines how large technology gatekeepers will be governed in Europe. [...] In short, when the DMA takes effect in 2024, it appears that Apple will be required to allow browser competition on iOS devices.
"The potential for a capable web has been all but extinguished on mobile because Apple has successfully prevented it until now," said Alex Russell, partner program manager on Microsoft Edge who worked previously as Google Chrome's first web standards tech lead. "Businesses and services will be able to avoid building 'apps' entirely when enough users have capable browsers."

"There's a long road between here and there," he added. "Apple has spent enormous amounts to lobby on this, and they aren't stupid. Everyone should expect them to continue to play games along the lines of what they tried in Denmark and South Korea."
Businesses

Google, Meta, and Others Will Have To Explain Their Algorithms Under New EU Legislation (theverge.com) 50

An anonymous reader quotes a report from The Verge: The EU has agreed on another ambitious piece of legislation to police the online world. Early Saturday morning, after hours of negotiations, the bloc agreed on the broad terms of the Digital Services Act, or DSA, which will force tech companies to take greater responsibility for content that appears on their platforms. New obligations include removing illegal content and goods more quickly, explaining to users and researchers how their algorithms work, and taking stricter action on the spread of misinformation. Companies face fines of up to 6 percent of their annual turnover for noncompliance.

"The DSA will upgrade the ground-rules for all online services in the EU," said European Commission President Ursula von der Leyen in a statement. "It gives practical effect to the principle that what is illegal offline, should be illegal online. The greater the size, the greater the responsibilities of online platforms." [...] Although the legislation only applies to EU citizens, the effect of these laws will certainly be felt in other parts of the world, too. Global tech companies may decide it is more cost-effective to implement a single strategy to police content and take the EU's comparatively stringent regulations as their benchmark. Lawmakers in the US keen to rein in Big Tech with their own regulations have already begun looking to the EU's rules for inspiration.

The final text of the DSA has yet to be released, but the European Parliament and European Commission have detailed a number of obligations it will contain [...]. Although the broad terms of the DSA have now been agreed upon by the member states of the EU, the legal language still needs to be finalized and the act officially voted into law. This last step is seen as a formality at this point, though. The rules will apply to all companies 15 months after the act is voted into law, or from January 1st, 2024, whichever is later.
"Large online platforms like Facebook will have to make the working of their recommender algorithms (used for sorting content on the News Feed or suggesting TV shows on Netflix) transparent to users," notes The Verge. "Users should also be offered a recommender system 'not based on profiling.' In the case of Instagram, for example, this would mean a chronological feed (as it introduced recently)."

The tech giants will also be prohibited from using "dark patterns" -- confusing or deceptive UIs designed to steer users into making certain choices. A detailed list of obligations contained in the DSA can be found in the article.
EU

EU Unveils Plan For 'Largest Ever Ban' on Dangerous Chemicals (theguardian.com) 57

Thousands of potentially harmful chemicals could soon be prohibited in Europe under new restrictions, which campaigners have hailed as the strongest yet. From a report: Earlier this year, scientists said chemical pollution had crossed a "planetary boundary" beyond which lies the breakdown of global ecosystems. The synthetic blight is thought to be pushing whale species to the brink of extinction and has been blamed for declining human fertility rates, and 2 million deaths a year. The EU's "restrictions roadmap" published on Monday was conceived as a first step to transforming this picture by using existing laws to outlaw toxic substances linked to cancers, hormonal disruption, reprotoxic disorders, obesity, diabetes and other illnesses.

Industry groups say that up to 12,000 substances could ultimately fall within the scope of the new proposal, which would constitute the world's "largest ever ban of toxic chemicals," according to the European Environmental Bureau (EEB). Tatiana Santos, the bureau's chemicals policy manager, said: "EU chemical controls are usually achingly slow but the EU is planning the boldest detox we have ever seen. Petrochemical industry lobbyists are shocked at what is now on the table. It promises to improve the safety of almost all manufactured products and rapidly lower the chemical intensity of our schools, homes and workplaces."

EU

Europe Seals a Deal on Tighter Rules For Digital Services (techcrunch.com) 15

European Union lawmakers have secured a provisional deal on a landmark update to rules for digital services operating in the region -- grabbing political agreement after a final late night/early morning of compromise talks on the detail of what is a major retooling of the bloc's existing ecommerce rulebook. From a report: The political agreement on the Digital Services Act (DSA) paves the way for formal adoption in the coming weeks and the legislation entering into force -- likely later this year. Although the rules won't start to apply until 15 months after that -- so there's a fairly long lead in time to allow companies to adapt.

The regulation is wide ranging -- setting out to harmonize content moderation and other governance rules to speed up the removal of illegal content and products. It addresses a grab-bag of consumer protection and privacy concerns, as well as introducing algorithmic accountability requirements for large platforms to dial up societal accountability around their services. While 'KYC' requirements are intended to do the same for online marketplaces.

EU

Tech Companies Face Billions in Fines Under EU Content Rules (bloomberg.com) 124

The world's biggest technology companies could face billions of dollars in fines for breaches of new European Union legislation, details of which are expected to be agreed upon by lawmakers as soon as Friday. From a report: The landmark Digital Services Act is the EU's answer to what it sees as a failure by tech giants to combat illegal content on their platforms. Noncompliance could cost companies as much as 6% of their global annual sales when the rules go into effect as early as 2024.

Failures could be extremely costly. Based on their reported 2021 annual sales, Amazon, for instance, could face a theoretical fine of as much as 26 billion euros ($28 billion) for future noncompliance with the DSA, or Google as much 14 billion euros. Facebook whistle-blower Frances Haugen said the DSA could represent a "global gold standard" for regulating social media companies. After more than a year of internal wrangling, key rules expected to be announced include:

1. A ban on using sensitive data such as race or religion for targeting ads
2. A ban on targeting any ads to minors
3. A ban on so-called "dark patterns," specifically tactics to push people into consenting to online tracking.

Businesses

Amazon Europe Unit Paid No Taxes on $55 Billion Sales in 2021 (bloomberg.com) 193

Amazon's main European retail business reported 1.16 billion euros ($1.26 billion) of losses in 2021, which allowed the company to pay no income tax and receive 1 billion euros in tax credits, corporate filings seen by Bloomberg show. From the report: The Luxembourg-based business recorded sales of 51.3 billion euros last year, up 17% from 43.8 billion euros in 2020. The unit, called Amazon EU Sarl, includes revenue generated by its e-commerce activities in the U.K, Germany, France, Italy, Spain, Poland, Sweden and the Netherlands. Amazon has been a target of European regulators over its tax arrangements. The Seattle-based company won an appeal on a 250 million-euro ($280 million) tax bill imposed after regulators said agreements with Luxembourg dating back to 2003 amounted to illegal state aid. Last year, the European Commission appealed in the European Court of Justice.
EU

EU Consumer Protection Committee Votes To Expand Scope of Common Charger Rules (techcrunch.com) 132

European Union lawmakers have taken a step closer to agreeing rules to standardize how a range of mobile gadgetry is charged. From a report: Today MEPs in the European Parliament's internal market and consumer protection (IMCO) committee adopted their position on a Commission proposal announced last fall, ahead of a full vote by the parliament next month to confirm how it will negotiate with Member State governments on the detail of the legislation. The Council adopted its position on the common charger proposal back in January. The IMCO committee voted 43:2 in favor of a negotiation position that will push to standardize charger ports for a range of mobile devices on USB Type-C, including smartphones, tablets, handheld games consoles, e-readers, digital cameras, electronic toys and more -- with MEPs voting to expand the original proposal to cover laptops, among other additional products.
Privacy

Apple's Cook Says Circumventing App Store Would Harm User Privacy (bloomberg.com) 122

Apple Chief Executive Officer Tim Cook said that proposed app store regulations in the U.S. and European Union would put iPhone users' privacy at risk. From a report: "If we are forced to let unvetted apps onto iPhones, the unintended consequences will be profound," Cook said during a keynote address at the Global Privacy Summit on Tuesday in Washington. "Data-hungry companies would be able to avoid our privacy rules and once again track our users against their will." Apple is under global scrutiny over app store policies. The EU is working on legislation that would force the company to allow apps to be installed from outside the Apple App Store, threatening Apple's grip on its platform and potentially limiting its ability to collect a commission from developers.
EU

Europe Is Investing Heavily In Trains (nytimes.com) 124

An anonymous reader quotes a report from the New York Times: Train travel in Europe is on the upswing, thanks to growing interest from travelers, a renaissance in sleeper trains, and new investments in high-speed rail lines across the continent. But to see major growth in passenger traffic -- which is one of the goals of the European Green Deal -- the continent's railways will have to overcome a number of challenges, including booking difficulties and competition with short-haul flights, which remain the cheaper option on many multicountry routes. In France and Austria, the pandemic brought the planes-versus-trains question to the forefront. The French government's Covid bailout package of Air France required the airline to eliminate domestic flights when there was a rail option that took under two and a half hours to complete; the measure was later written into law.

The Austrian government placed a similar condition on its support to Austrian Airlines, demanding that the company end its 50-minute flight between Vienna and Salzburg, a journey that passengers can make by train in about three hours. The European Commission also designated 2021 as the "Year of European Rail," seizing the opportunity to spread the word about train travel, particularly to a younger audience. While passenger traffic was growing steadily through 2019, it was starting from a low base: Before the pandemic, only 8 percent of all passenger travel in the European Union was by train. But in addition to the public relations campaign, European leaders are also working to reduce practical barriers to cross-border train travel by introducing new data-sharing systems, replacing outdated infrastructure, and building new high-speed routes, particularly in Central and Eastern Europe.

"The idea is that for train trips of less than four hours, no businesspeople will choose to fly, and for trips below six hours, normal people -- tourists -- will take the train," said Alberto Mazzola, the executive director of the Community of European Railways and Infrastructure Companies, which is based in Brussels. Mr. Mazzola added that government leaders are throwing their weight behind railway infrastructure, particularly high-speed lines. "We heard this 20 years ago," he added. "The difference today is that we are seeing the investments."

EU

Senior EU Officials Were Targeted With Israeli Spyware (reuters.com) 26

Senior officials at the European Commission were targeted last year with spy software designed by an Israeli surveillance firm, according to two EU officials and documentation reviewed by Reuters. From the report: Among them was Didier Reynders, a senior Belgian statesman who has served as the European Justice Commissioner since 2019, according to one of the documents. At least four other commission staffers were also targeted, according to the document and another person familiar with the matter. The two EU officials confirmed that staffers at the commission had been targeted but did not provide details.

The commission became aware of the targeting following messages issued by Apple to thousands of iPhone owners in November telling them they were "targeted by state-sponsored attackers," the two EU officials said. It was the first time Apple had sent a mass alert to users that they were in government hackers' crosshairs. The warnings triggered immediate concern at the commission, the two officials said. In a Nov. 26 email reviewed by Reuters, a senior tech staffer sent a message to colleagues with background about Israeli hacking tools and a request to be on the lookout for additional warnings from Apple.

EU

Apple Faces Extra EU Antitrust Charge in Music Streaming Probe (reuters.com) 14

Apple faces an additional EU antitrust charge in the coming weeks in an investigation triggered by a complaint from Spotify, Reuters reported Monday, citing a person familiar with the matter said, a sign that EU enforcers are strengthening their case against the U.S. company. From a report: The European Commission last year accused the iPhone maker of distorting competition in the music streaming market via restrictive rules for its App Store that force developers to use its own in-app payment system and prevent them from informing users of other purchasing options. Such requirements have also come under scrutiny in countries including the United States and Britain. Extra charges set out in a so-called supplementary statement of objections are usually issued to companies when the EU competition enforcer has gathered new evidence or has modified some elements to boost its case.
AI

EU Clears First Autonomous X-Ray-Analyzing AI (theverge.com) 21

An artificial intelligence tool that reads chest X-rays without oversight from a radiologist got regulatory clearance in the European Union last week -- a first for a fully autonomous medical imaging AI, the company, called Oxipit, said in a statement. The Verge reports: The tool, called ChestLink, scans chest X-rays and automatically sends patient reports on those that it sees as totally healthy, with no abnormalities. Any images that the tool flags as having a potential problem are sent to a radiologist for review. Most X-rays in primary care don't have any problems, so automating the process for those scans could cut down on radiologists' workloads, the Oxipit said in informational materials.

The tech now has a CE mark certification in the EU, which signals that a device meets safety standards. The certification is similar to Food and Drug Administration (FDA) clearance in the United States, but they have slightly different metrics: a CE mark is less difficult to obtain, is quicker, and doesn't require as much evaluation as an FDA clearance. The FDA looks to see if a device is safe and effective and tends to ask for more information from device makers. Oxipit spokesperson Mantas Miksys told The Verge that the company plans to file with the FDA as well.

Oxipit said in a statement that ChestLink made zero "clinically relevant" errors during pilot programs at multiple locations. When it is introduced into a new setting, the company said there should first be an audit of existing imaging programs. Then, the tool should be used under supervision for a period of time before it starts working autonomously. The company said in a statement that it expects the first healthcare organizations to be using the autonomous tool by 2023.

The Courts

Top EU Court Says Phone Data Cannot Be Held 'Indiscriminately' (reuters.com) 10

An anonymous reader quotes a report from Reuters: The European Union's top court ruled on Tuesday that national authorities cannot retain phone data in a "general and indiscriminate" manner, but could use specific information to tackle some very serious crime. The court ruled on a case brought by the Supreme Court in Ireland where a man sentenced in 2015 to life imprisonment for murder appealed, saying the court of first instance had wrongly admitted traffic and location data of telephone calls as evidence.

The Luxembourg-based Court of Justice of the EU (ECJ) on Tuesday said it was up to a national court there to decide whether the evidence was allowed. But it also said the bloc's members cannot have laws in place that would allow crime prevention through the "general and indiscriminate" retention of such data. Some circumstances, such as particularly serious crime regarded as a threat to national security, could justify data retention but only in a narrower scope or for a limited time.

EU

EU Lawmakers Set To Tighten Up on Crypto Transfers (reuters.com) 16

European Union lawmakers were set on Thursday to back tougher safeguards for transfers of bitcoin and other cryptocurrencies, in the latest sign that regulators are tightening up on the freewheeling sector. From a report: Two committees in the European Parliament have thrashed out cross-party compromises to be voted on. Crypto exchange Coinbase has warned the rules would usher in a surveillance regime that stifles innovation. The $2.1 trillion crypto sector is still subject to patchy regulation across the world. Concerns that bitcoin and its peers could upset financial stability and be used for crime have accelerated work by policymakers to bring the sector to heel. Under the proposal first put forward last year by the EU's executive European Commission, crypto firms such as exchanges would have to obtain, hold, and submit information on those involved in transfers. That would make is easier to identify and report suspicious transactions, freeze digital assets, and discourage high-risk transactions, said Ernest Urtasun, a Spanish Green Party lawmaker helping to steer the measure through the parliament. The Commission had proposed applying the rule to transfers worth 1,000 euros ($1,116) or more, but under the cross-party agreement this 'de minimis' rule has been scrapped -- meaning all transfers would be in scope.
Encryption

Security Experts Say New EU Rules Will Damage WhatsApp Encryption (theverge.com) 169

Corin Faife writes via The Verge: On March 24th, EU governing bodies announced that they had reached a deal on the most sweeping legislation to target Big Tech in Europe, known as the Digital Markets Act (DMA). Seen as an ambitious law with far-reaching implications, the most eye-catching measure in the bill would require that every large tech company -- defined as having a market capitalization of more than 75 billion euros or a user base of more than 45 million people in the EU -- create products that are interoperable with smaller platforms. For messaging apps, that would mean letting end-to-end encrypted services like WhatsApp mingle with less secure protocols like SMS -- which security experts worry will undermine hard-won gains in the field of message encryption.

The main focus of the DMA is a class of large tech companies termed "gatekeepers," defined by the size of their audience or revenue and, by extension, the structural power they are able to wield against smaller competitors. Through the new regulations, the government is hoping to "break open" some of the services provided by such companies to allow smaller businesses to compete. That could mean letting users install third-party apps outside of the App Store, letting outside sellers rank higher in Amazon searches, or requiring messaging apps to send texts across multiple protocols. But this could pose a real problem for services promising end-to-end encryption: the consensus among cryptographers is that it will be difficult, if not impossible, to maintain encryption between apps, with potentially enormous implications for users.

Signal is small enough that it wouldn't be affected by the DMA provisions, but WhatsApp -- which uses the Signal protocol and is owned by Meta -- certainly would be. The result could be that some, if not all, of WhatsApp's end-to-end messaging encryption is weakened or removed, robbing a billion users of the protections of private messaging. Given the need for precise implementation of cryptographic standards, experts say that there's no simple fix that can reconcile security and interoperability for encrypted messaging services. Effectively, there would be no way to fuse together different forms of encryption across apps with different design features, said Steven Bellovin, an acclaimed internet security researcher and professor of computer science at Columbia University.

Power

Could Geothermal Power Plants Become a Source of Lithium? (fastcompany.com) 173

"Geothermal energy has long been the forgotten member of the clean energy family, overshadowed by relatively cheap solar and wind power, despite its proven potential," argues a new article in Fast Company. "But that may soon change — for an unexpected reason.

"Geothermal technologies are on the verge of unlocking vast quantities of lithium from naturally occurring hot brines beneath places like California's Salton Sea, a two-hour drive from San Diego..." As a geologist who works with geothermal brines and an energy policy scholar, we believe this technology can bolster the nation's critical minerals supply chain at a time when concerns about the supply chain's security are rising. Geothermal power plants use heat from the earth to generate a constant supply of steam to run turbines that produce electricity. The plants operate by bringing up a complex saline solution located far underground, where it absorbs heat and is enriched with minerals such as lithium, manganese, zinc, potassium, and boron. Geothermal brines are the concentrated liquid left over after heat and steam are extracted at a geothermal plant. In the Salton Sea plants, these brines contain high concentrations — about 30% — of dissolved solids.

If test projects now underway prove that battery-grade lithium can be extracted from these brines cost effectively, 11 existing geothermal plants along the Salton Sea alone could have the potential to produce enough lithium metal to provide about 10 times the current U.S. demand. Three operators at the Salton Sea geothermal field are in various stages of designing, constructing, and testing pilot plants for direct lithium extraction from the hot brines. At full production capacity, the 11 existing power plants near the Salton Sea, which currently generate about 432 megawatts of electricity, could also produce about 20,000 metric tons of lithium metal per year. At current prices, the annual market value of this metal would be more than $5 billion....

Geothermal power has the ability to complement solar and wind energy as a baseload power source — it is constant, unlike sunshine and wind — and to provide energy and mineral security. It could also offer a professional bridge for oil, gas, and coal employees to transition into the clean energy economy. The industry could benefit from policies like risk mitigation funds to lessen drilling exploration costs, grant programs to demonstrate innovations, long-term power contracts, or tax incentives.

Adding the production of critical metals like lithium, manganese, and zinc from geothermal brines could provide geothermal electrical power operators a new competitive advantage and help get geothermal onto the policy agenda.

EU

Will Europe's Push to Reduce Russian Fossil Fuel Use Hurt Its Climate Goals? (apnews.com) 290

In 2021, the European Union imported about 40% of its gas and 25% of its oil from Russia, reports the Associated Press. But now EU officials "are fixated on rapidly reducing the continent's reliance on Russian oil and natural gas — and that means friction between security and climate goals, at least in the short term.

"To wean itself from Russian energy supplies as quickly as possible, Europe will need to burn more coal and build more pipelines and terminals to import fossil fuels from elsewhere...." [T]he EU plans to reduce Russian gas imports by two-thirds by the end of this year, and to eliminate them altogether before 2030... In the near-term, ending energy ties with Russia puts the focus on securing alternative sources of fossil fuels. But longer term, the geopolitical and price pressures stoked by Russia's war in Ukraine may actually accelerate Europe's transition away from oil, gas and coal. Experts say the war has served as a reminder that renewable energy isn't just good for the climate, but also for national security. That could help speed up the development of wind and solar power, as well as provide a boost to conservation and energy-efficiency initiatives....

The rapid pursuit of energy independence from Russia will likely require "a slight increase" in carbon emissions, said George Zachmann, an energy expert at the Bruegel think tank in Brussels. But "in the long term, the effect will be that we will see more investment in renewables and energy efficiency in Europe," Zachmann said.

Plans that wouldn't have been contemplated just a few months ago are now being actively discussed, such as running coal plants in Germany beyond 2030, which had previously been seen as an end date. Germany's vice chancellor and energy minister, Robert Habeck, said there should be "no taboos." The Czech government has made the same calculation about extending the life of coal power plants. "We will need it until we find alternative sources," Czech energy security commissioner Václav Bartuska, told the news site Seznam Zprávy. "Until that time, even the greenest government will not phase out coal...."

In Britain, which is no longer part of the EU, Prime Minister Boris Johnson says it's "time to take back control of our energy supplies." Britain will phase out the small amount of oil it imports from Russia this year. More significantly, Johnson has signaled plans to approve new oil and gas exploration in the North Sea, to the dismay of environmentalists, who say that is incompatible with Britain's climate targets. Some within the governing Conservative Party and the wider political right want the British government to retreat on its commitment to reach net zero by 2050, a pledge made less than six months ago at a global climate summit in Glasgow, Scotland....

Yet the shock waves from the war cut both ways. Sharply higher gas and electricity prices, and the desire to be less dependent on Russia, are increasing pressure to expand the development of home-grown renewables and to propel conservation. The International Energy Agency recently released a 10-point plan for Europe to reduce its dependence on Russian gas by a third within a year. Simply lowering building thermostats by an average of one degree Celsius during the home-heating season would save 10 billion cubic meters of natural gas a year, or roughly 6% of what Europe imports from Russia.

EU

US, EU Reach Preliminary Deal on Data Privacy (wsj.com) 20

The U.S. and the European Union reached a preliminary deal to allow data about Europeans to be stored on U.S. soil, heading off a growing threat to thousands of companies' trans-Atlantic operations. From a report: The deal, announced Friday by President Biden and European Commission President Ursula von der Leyen, could if concluded resolve one of the thorniest outstanding issues between the two economic giants. It also assuages concerns of companies including Meta and Alphabet's Google that were facing mounting legal challenges to data transfers that underpin some of their operations in Europe. An earlier deal regulating trans-Atlantic data flows was deemed illegal by the EU's top court in 2020. That ruling was the second time since 2015 that the EU's Court of Justice had deemed U.S. safeguards on Europeans' data to be insufficient. The court said the U.S. didn't provide EU citizens effective means to challenge U.S. government surveillance of their data. Mr. Biden and Ms. von der Leyen didn't provide details of how the new agreement would work and withstand legal challenges. At issue in the talks has been whether the U.S. could convince the EU -- and its top court -- with new administrative appeals mechanisms for Europeans, but without a change to U.S. law, which would require approval by Congress, people briefed on the talks have said in recent months. Officials and observers on both sides of the Atlantic expect any new agreement to be challenged in court again, raising uncertainty about how long Friday's deal will last.
EU

EU Takes Aim at Big Tech's Power With Landmark Digital Act (theverge.com) 89

The European Union agreed on Thursday to one of the world's most far-reaching laws to address the power of the biggest tech companies (Warning: source may be paywalled; alternative source), potentially reshaping app stores, online advertising, e-commerce, messaging services and other everyday digital tools. The New York Times reports: The law, called the Digital Markets Act, is the most sweeping piece of digital policy since the bloc put the world's toughest rules to protect people's online data into effect in 2018. The legislation is aimed at stopping the largest tech platforms from using their interlocking services and considerable resources to box in users and squash emerging rivals, creating room for new entrants and fostering more competition. [...] The Digital Markets Act will apply to so-called gatekeeper platforms, which are defined by factors including a market value of more than 75 billion euros, or about $83 billion. The group includes Alphabet, the owner of Google and YouTube; Amazon; Apple; Microsoft; and Meta. Specifics of the law read like a wish list for rivals of the biggest companies. Apple and Google, which make the operating systems that run on nearly every smartphone, would be required to loosen their grip. Apple will have to allow alternatives to its App Store for downloading apps, a change the company has warned could harm security. The law will also let companies such as Spotify and Epic Games use payment methods other than Apple's in the App Store, which charges a 30 percent commission.

Amazon will be barred from using data collected from outside sellers on its services so that it could offer competing products, a practice that is the subject of a separate E.U. antitrust investigation. The law will result in major changes for messaging apps. WhatsApp, which is owned by Meta, could be required to offer a way for users of rival services like Signal or Telegram to send and receive messages to somebody using WhatsApp. Those rival services would have the option to make their products interoperable with WhatsApp. The largest sellers of online advertising, Meta and Google, will see new limits for offering targeted ads without consent. Such ads -- based on data collected from people as they move between YouTube and Google Search, or Instagram and Facebook -- are immensely lucrative for both companies.

[...] With these actions, Europe is cementing its leadership as the most assertive regulator of tech companies such as Apple, Google, Amazon, Meta and Microsoft. European standards are often adopted worldwide, and the latest legislation further raises the bar by potentially bringing the companies under new era of oversight -- just like health care, transportation and banking industries. "Faced with big online platforms behaving like they were 'too big to care,' Europe has put its foot down," said Thierry Breton, one of the top digital officials in the European Commission. "We are putting an end to the so-called Wild West dominating our information space. A new framework that can become a reference for democracies worldwide." On Thursday, representatives from the European Parliament and European Council hammered out the last specifics of the law in Brussels. The agreement followed about 16 months of talks -- a speedy pace for the E.U. bureaucracy -- and sets the stage for a final vote in Parliament and among representatives from the 27 countries in the union. That approval is viewed as a formality.

United States

The Supreme Court Just Made a US-EU Privacy Shield Agreement Even Harder (thehill.com) 60

The U.S. Supreme Court's decision this month in FBI v. Fazaga, a case challenging FBI surveillance, will make it significantly harder for people to pursue surveillance cases, and for U.S. and European Union (EU) negotiators to secure a lasting agreement for transatlantic transfers of private data. The Hill reports: The justices gave the U.S. government more latitude to invoke "state secrets" in spying cases. But ironically, that victory undercuts the Biden administration's efforts to show that the United States has sufficiently strong privacy protections to sustain a new Privacy Shield agreement -- unless Congress steps in now. In July 2020, the EU Court of Justice (CJEU) struck down the EU-U.S. Privacy Shield, a legal framework used by thousands of U.S. companies to facilitate data transfers, because the U.S. failed to provide adequate protection for data belonging to people from the EU. Specifically, the court found that U.S. surveillance authorities, including Section 702 of the Foreign Intelligence Surveillance Act (FISA) and Executive Order 12333, permit unjustifiably broad government surveillance. The court also found that the Privacy Shield failed to provide adequate redress mechanisms for Europeans whose data is transferred to the U.S. -- namely, the ability to be heard by an independent court that can order binding remedies. In striking down Privacy Shield, the CJEU was clear: no EU-U.S. data-transfer agreement will survive the court's scrutiny until the U.S. narrows the scope of its surveillance and ensures that individuals subject to potentially illegal surveillance have a real, meaningful way to pursue accountability.

Slashdot Top Deals