Britain's New Regime For Online Platforms

The British Government has announced there will be a new regulatory regime for digital platforms to be monitored by a dedicated Digital Markets Unit from April 2021. Tech giants will be subject to a new regime to give consumers more choice and control over their data, help small businesses thrive, and ensure news outlets are not forced out by their bigger rivals. 

Online platforms bring huge benefits for businesses and society. Their services are making work easier and quicker and help people stay in touch with one another. Millions of people share creative content or advertise their small business’ goods online.

But there is growing consensus in the UK and abroad that the concentration of power amongst a small number of tech companies is curtailing growth in the tech sector, reducing innovation, and potentially having negative impacts on the people and businesses that rely on them.

The new code will set clear expectations for platforms that have considerable market power - known as strategic market status - over what represents acceptable behaviour when interacting with competitors and users. Under the new code, platforms including those funded by digital advertising could be required to be more transparent about the services they provide and how they are using consumers’ data, give consumers a choice over whether to receive personalised advertising, and prevented from placing restrictions on their customers that make it hard for them to use rival platforms.

The UK Government considers that a code of conduct for platforms funded by online advertising designated as having "strategic market status" would protect competition in digital markets. 

While the contents of the code have yet to be drawn up, it is anticipated to address anti-competitive behaviour and enhance consumer choice and control. It will also provide clarity on what behaviours will be considered acceptable for companies with designated strategic market status. The Digital Markets Taskforce, which was established by the UK Government earlier this year, will provide advice on the potential design and implementation of the code and the approach to designating companies that have substantial and enduring market power with strategic market status. It is expected that the Digital Markets Taskforce will issue its report before the end of the year.

Digital Markets Unit

The UK Government agrees with the CMA that a dedicated DMU is needed to introduce, maintain and enforce the code of conduct. While the form and function of the DMU will be subject to consultation, the DMU will be established within the CMA from April 2021, to build on the work of the Digital Markets Taskforce and to begin to operationalise the key elements of the regime. 

Arrangements to enable close cooperation with other regulators are also being considered and the UK Government plans to work with the Digital Regulation Cooperation Forum (i.e., a forum between the CMA, the Information Commissioner’s Office and the Office of Communications) to ensure adequate coordination, capability and clarity across the digital landscape.
The DMU will be entrusted with powers to enforce the code of conduct as existing attempts at non-enforceable measures in other countries (i.e., Australia) have shown the difficulties in such a soft approach. 

According to the CMA’s recommendations, this could include powers to suspend, block and reverse decisions of companies with strategic market status, to order conduct to achieve compliance with the code and/or to impose financial penalties for noncompliance.

Pro-Competitive Interventions

The CMA recommended that the DMU have the necessary powers to introduce a range of pro-competitive interventions, such as mandating access to data, enforcing greater interoperability, changing choices and defaults for consumers and imposing separation remedies. 

While the UK Government agrees in principle with such a position, it cautions that these types of interventions carry inherent difficulties and more work is required to understand the likely benefits, risks and possible unintended consequences of the range of proposed pro-competitive interventions.

Conclusion

The CMA has welcomed the UK Government’s response and will soon be providing advice to government on how this new regime should work. The UK Government intends to make “rapid and tangible progress, and will be legislating as soon as parliamentary time allows.”

The UK is not alone in its attempts to regulate digital platforms. On December 9, the European Commission will publish its Digital Markets Act and Digital Services Act, which will introduce an ex ante framework for gatekeeper platforms and new market investigation powers to address structural issues in the digital industry (similar to the CMA’s market investigation regime). 

In Germany, an amendment to the national competition legislation is undergoing parliamentary process. If approved, the reform will grant the German Competition Authority new powers to define a company as an “undertaking with paramount significance for competition across markets” and to impose obligations or prohibit certain behaviours, even in the absence of a competition law infringement. 

Clearly, for the foreseeable future, online platforms should watch this space very closely.

GovUK:        GovUK:          JDSupra:              GovUK:       Image: Nick Youngson / Alphastock Images

You Might Also Read:

Coming Soon: Regulation Of Social Media:

 

« Hackers Target Coronavirus Vaccine Supply Chain
A Christmas Warning For Online Shoppers »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

DCL Search & Select

DCL Search & Select

DCL Search & Selection connect candidates to the best companies in the IT Security, Telco, UC, Outsourcing, ERP, Audit & Control markets.

Odix

Odix

Odix security software neutralizes file embedded targeted cyber attacks before they enter your organization’s network.

ElcomSoft

ElcomSoft

ElcomSoft is a global leader in computer and mobile forensics, IT security and forensic data recovery.

Securely

Securely

Securely Ltd. is an IT consulting and services firm specializing in PKI solutions and products.

Magix Security

Magix Security

Magix Security assesses the cyber threat, gives you visibility of how vulnerable your business is to attack, and provides cybercrime detection and prevention services.

Caulis

Caulis

Caulis FraudAlert is a cyber security solution. It can detect fraud and identity theft based on users’ online behaviour.

IAR Systems

IAR Systems

IAR Systems are a frontrunner in a changing industry, and a future-proof software supplier enabling the IoT.

Binary Security AS

Binary Security AS

Binary Security is a Norwegian information security consultancy company. We are specialists at application security, penetration testing and secure code reviews.

CYSIAM

CYSIAM

CYSIAM provides world-leading expertise in offensive security and critical incident response. We train our clients to be able to protect themselves and respond to attacks and breaches when they occur.

eCloudvalley Digital Technology

eCloudvalley Digital Technology

eCloudvalley Digital Technology is a born-in-the-cloud partner focused entirely on AWS services across APAC region.

ConvergePoint

ConvergePoint

ConvergePoint is the leading compliance software provider on the Microsoft Office 365 SharePoint platform.

ScamAdvisor

ScamAdvisor

ScamAdviser helps over 3 million consumers every month to discover if a website is legitimate or a possible scam.

Seven AI

Seven AI

Seven AI develops cyber security software designed to identify online threats.

Cyex

Cyex

Cyex helps people to become cyber wise. We enable our clients to find, track and improve cyber awareness in one place.

Iron EagleX

Iron EagleX

Iron EagleX deliver engineering solutions in cloud computing, big data, cyber, and machine learning technologies to US Government customers.

ThingsRecon

ThingsRecon

ThingsRecon empowers organisations to continuously map and manage their attack surface, uncover hidden vulnerabilities, and assess supplier cyber hygiene.