British Online Safety Act Is Now Law

The UK government's controversial Online Safety Bill, which aims to make the Internet safer for children, became law at the beginning of November. The new Law aims to force technology firms to take more responsibility for the content on their platforms.

It will be overseen by Ofcom and take a zero-tolerance approach to protecting children from online harm, while empowering adults with more choices over what they see online

The law imposes a statutory obligation on certain Online Service Providers (OSPs) to comply with protective measures and requirements in respect of users.

As such, OSPs will be expected to assess and mitigate the risks of harmful illegal content. This follows rigorous scrutiny discussion within the UK House of Commons and the House of Lords. “Today will go down as an historic moment that ensures the online safety of British society not only now, but for decades to come,” said Michelle Donelan, the technology secretary as it "ensures the online safety of British society not only now, but for decades to come."

While the principal aim of the legislation is to protect children, there have been widespread concerns about the implications for privacy.

What is the Online Safety Bill?

The Law unambiguously places the responsibility to protect children from some legal but harmful material on the firms operating online platforms, with the UK regulator, Ofcom, given enforcement powers including powers to levy significant penalties. It introduces new rules - including a requirement for porn websites sites to protect stop children from explicit content using age verification. Platforms will also need to show they are committed to removing illegal content including:

  • Child sexual abuse
  • Controlling or coercive behaviour
  • Extreme sexual violence
  • Illegal immigration and people smuggling
  • Promoting or facilitating suicide
  • Promoting self-harm
  • Animal cruelty
  • Selling illegal drugs or weapons
  • Terrorism

Various entirely new offences have been created, including cyber-flashing - sending unsolicited sexual imagery online, sharing deepfake pornography. and measures enabling bereaved parents to obtain information about their children from online platforms. Under the act Ofcom has powers to compel messaging services to examine the contents of encrypted messages for child abuse material have proved especially controversial.

Failing to comply with the act’s rules could land companies with fines of up to £18 million or around $22 million, or 10 percent of their global annual turnover, whichever is higher, and their bosses could even face prison.

“The Online Safety Act’s strongest protections are for children. Social media companies will be held to account for the appalling scale of child sexual abuse occurring on their platforms and our children will be safer,” said Home Secretary Suella Braverman. “We are determined to combat the evil of child sexual exploitation wherever it is found, and this Act is a big step forward.”

In response, social media platforms including WhatsApp, Signal and iMessage say they cannot access or view anybody's messages without destroying existing privacy protections for all users and have threatened to leave the UK rather than compromise message security. WhatsApp has threatened to withdraw it service from the UK market. 

Gov.UK:      PWC:      BBC:    Independent:    The Verge:     UKTech:       Image: finelightarts

You Might Also Read: 

Online Safety Bill UK: WhatsApp, Encryption & The Implications For Privacy:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Attack On Chinese Bank Disrupts Financial Trading
API Security Is A Critical Boardroom Issue »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

ON-DEMAND WEBINAR: Gen AI for Security: Adoption strategies with Amazon Bedrock

ON-DEMAND WEBINAR: Gen AI for Security: Adoption strategies with Amazon Bedrock

Watch this webinar and get a comprehensive roadmap for securely adopting generative AI using Amazon Bedrock, a fully managed service that offers a choice of high-performing foundation models (FMs).

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Securi-Tay

Securi-Tay

Securi-Tay is an information Security conference held by the Ethical Hacking Society at Abertay University, Dundee.

Cybellum

Cybellum

Cybellum provides software risk assessment for DevOps and security executives, by detecting vulnerabilities automatically, without source code.

National Cyber Security Centre (NCSC) - Switzerland

National Cyber Security Centre (NCSC) - Switzerland

The National Cyber Security Centre is Swizerland's competence centre for cybersecurity and the first contact point for businesses, public administrations, and the public for cyber issues.

CSIRT GOV - Poland

CSIRT GOV - Poland

Computer Security Incident Response Team CSIRT GOV, run by the Head of the Internal Security Agency, acts as the national CSIRT responsible for coordinating the response to computer incidents.

CSIRT-NQN

CSIRT-NQN

CSIRT-NQN is the Computer Incident Response Team for the Argentine province of Neuquen.

Wipro

Wipro

Wipro Limited is a leading global information technology, consulting and business process services company.

BIND 4.0

BIND 4.0

Bind 4.0 is an acceleration program geared toward tech startups with solutions applied to Advanced Manufacturing, Smart Energy, Health Tech or Food Tech fields.

SynerLeap

SynerLeap

SynerLeap is ABB's innovation growth hub. Our aim is to help startups accelerate and expand across industries, ranging from industrial automation and robotics to grid technologies and smart cities.

IntelligInts

IntelligInts

IntelligInts provide 24×7 threat monitoring, hunting, alerting, and mitigation in our world class Security Operations Center.

SimSpace

SimSpace

SimSpace is the visionary yet practical platform for measuring how your security system responds under actual, sustained attack.

Protek International

Protek International

Protek International delivers world-class Digital Forensics, eDiscovery, Cyber Security, and related Advisory services.

Datenschutz Schmidt

Datenschutz Schmidt

Datenschutz Schmidt is a service provider with many years of experience, we support you in complying with numerous data protection guidelines, requirements and laws.

Nitrokey

Nitrokey

Nitrokey is the world-leading company in open source security hardware. Nitrokey develops IT security hardware for data encryption, key management and user authentication.

ConnectSecure

ConnectSecure

ConnectSecure (formerly CyberCNS) is a global cybersecurity company that delivers tools to identify and address vulnerabilities and manage compliance requirements.

Votiro

Votiro

Votiro is an award-winning cybersecurity company that specializes in file sanitization, ensuring every organization is safe from zero-day and undisclosed attacks.

Data Defenders

Data Defenders

Data Defenders provide information security technology solutions that empower consumers, businesses and governments with safe and secure IT and cybersecurity infrastructures.