Ofcom, the United Kingdom Internet Security Regulator, has published another new draft orientation while continuing to implement the online security law (OSA): the last set of recommendations aims to support companies in the scope to comply with With legal obligations to protect women and girls online threats such as bullying and bullying, misogyny and abuse of intimate images.
The government has said that protecting women and girls is a priority for their implementation of AOS. Certain forms of abuse (predominantly) misogynist, such as sharing intimate images without consent or using AI tools to create a deep pornography that points to people, are explicitly established in law as Application priorities.
Online security regulation, which was approved by the United Kingdom Parliament in the United Kingdom September 2023He has faced criticism that he is not up to the task of reforming the platform giants, despite containing substantial sanctions for breach, up to 10% of the global annual turnover.
Child security activists have also expressed their frustration on how long it takes to implement the law, as well as doubting whether it will have the desired effect.
In an interview with the BBC In January, even the Minister of Technology Peter Kyle, who inherited the legislation of the previous government, described it as “very unequal” and “unsatisfactory.” But the government keeps the approach. Part of the discontent around the year dates back to the ministers of long -term delivery time allowed to implement the regime, which requires that the Parliament approve the OMBREM compliance orientation.
However, the application is expected to begin to start soon in relation to the central requirements to address illegal content and child protection. Other aspects of compliance with years will take longer to be implemented. And ofcom admits that this last package of practice recommendations will not be completely enforceable until 2027 or later.
Approaching the compliance starting line
“The first duties of the online security law are entering into force next month,” he told Techcrunk in an interview, Jessica Smith, who directed the development of the women’s women’s security guide. “Therefore, we will comply with some of the central tasks of the online security law before this guide [itself becoming enforceable]. “
The new draft orientation on keeping women and girls safe online is destined to complement a broader ofcom orientation about illegal content, which also, for example, provides recommendations to protect minors from see content for adults for adults online.
In December, the regulator published its completed guide on how platforms and services should be reduced Risks related to illegal contentAn area where child protection is a clear priority.
Has also previously produced a Children’s Security Codethat recommends online services, age controls and content filtering to ensure that children are not exposed to inappropriate content, such as pornography. And as work to implement the online security regime, it has also been developed Recommendations for age guarantee technologies for adult content websiteswith the aim of pressing pornographic sites to take effective measures that prevent minors from accessing age inappropriate content.
The last orientation set was developed with the help of victims, survivors, defense groups of women and security experts, by ofcom. It covers four main areas where the regulator says that women are disproportionately affected by online damage, namely: Misoginia online; piles and online harassment; domestic abuse online; and intimate image abuse.
Design security
The recommendation of the upper ofcom lines urges services and platforms in the scope to adopt a “design safety” approach. Smith told us that the regulator wants to encourage technology companies to “step back” and “think of their user experience in the round.” Although he acknowledged that some services have established some measures that are useful to reduce online risks in this area, he argued that there is still a holistic lack of thought when it comes to prioritizing the safety of women and girls.
“What we are really asking for is just a kind of step change in how design processes work,” he told us, saying that the objective is to ensure that security considerations are baked in the design of the product.
He highlighted the increase in the services of the image generation, which said they have led to “massive” growth in the abuse of intimate images of deep as an example of where technologists could have taken proactive measures to push the risks that their Tools are armed to attack women and girls – however, he did not.
“We believe there are sensible things that services could do in the design phase that would help address the risk of some of those damages,” he suggested.
Examples of “good” industry practices of the outstanding aspects of orientation include online services that take actions such as:
- Eliminate default geolocation (to reduce privacy/harassment risks);
- Perform ‘abuse’ tests to identify how a service could be armed/misused;
- Take measures to increase account security;
- User indications design that are intended to make posters think twice before publishing abusive content;
- And offer accessible reports tools that allow users to inform problems.
As is the case with the entire OSA guide of ofcom, not all measures will be relevant for each type or size of the service, since the law applies to large and small online services, and crosses several sands from social networks , even online quotes, games, forums and messaging applications, to name a few. Therefore, a large part of the work for companies in scope will be to understand what compliance means in the context of their product.
When asked if Ofcom had identified some service that currently complied with the standards of the orientation, Smith suggested that they had not done so. “There is still a lot of work to do throughout the industry,” he said.
He also tacitly recognized that there may be increasing challenges given some of the retrograde steps taken in the face of the trust and safety of some important actors in the industry. For example, since Twitter took over and renowned the social network as X, Elon Musk has detered his trust and security personnel, in favor of pursuing what he has framed as a maximalist approach to freedom of expression.
In recent months, Meta, owner of Facebook and Instagram, seems to have taken some imitating measures, saying that the verification contracts of thirty parts are completing in favor of implementing a system of “community notes” of X -style of labeling Crowdsourced in content disputes, for example.
Transparency
Smith suggested that the response of ofcom to such high -level changes, where the actions of the operators could risk increasing, instead of damping, online damage, it will focus on using transparency and the powers of collection of information that manages low Year to illustrate the impacts and promote conscientious users.
Then, in summary, the tactic here seems to be ‘name and shame’, at least in the first instance.
“Once we finish the guide, we will produce a [market] Report … who is using the guide, who follows what steps, what kind of results are achieving for their users who are women and girls, and they really shed light on what protections they are in their place on different platforms so that users can Make informed decisions about where they spend their online, ”he told us.
Smith suggested that companies that wish to avoid the risk of being publicly embarrassed by low performance in women’s safety will be able to resort to the OFCOM guide for “practical steps” on how to improve the situation for their users and address the risk of damage to the reputation too.
“The platforms that operate in the United Kingdom will have to comply with the United Kingdom Law,” he added in the context of discussion on main platforms by dismissing trust and security. “That means fulfilling the duties of illegal damage and the protection of children’s duties under the online security law.”
“I think this is where our transparency powers also enter: if the industry is changing direction and the damage is increasing, this is where we can illuminate a light and share relevant information with the users of the United Kingdom, with the media, with parliamentarians. “
Technology to address Deepfake Porn
A type of online damage where Ofcom is explicitly reinforcing its recommendations, even before it starts actively, the application of the handle is an abuse of intimate images, since the last draft of the guide suggests that the coincidence of hash of use use To detect and eliminate such abusive images, while previous ofcom recommendations did not leave. How far.
“We have included additional steps in this guide that go beyond what we have already established in our codes,” said Smith, confirming that Ofcom plans to update its previous codes to incorporate this change “in the near future.”
“Then, this is a way of telling the platforms that it can be advanced to that required requirement following the steps established in this guide,” he added.
Ofcom recommended the use of hash coincidence technology to counteract intimate image abuse due to a substantial increase in this risk, according to Smith, especially in relation to the abuse of depth images generated by AI.
“There was more abuse of intimate images of Deepfake reported in 2023 than in all previous years combined,” he said, adding that Ofcom has also gathered more evidence about the effectiveness of Hash’s coincidence to address this damage.
The draft orientation as a whole will now undergo a consultation, with ofcom inviting the comments until May 23, 2025, after which a final guide will produce at the end of this year.
One complete 18 after that, ofcom will produce its first report that reviews the practice of the industry in this area.
“We are entering 2027 before producing our first report on who is doing what [to protect women and girls online] – But there is nothing to stop the platforms acting now, ”he added.
Responding to the criticisms that years is too long to implement, he said that it is correct for the regulator to consult on compliance measures. However, with the final measure in force next month, he said that ofcom anticipates a change in the conversation that surrounds the problem as well.
“[T]Hat will really begin to change the conversation with platforms, in particular, “he predicted, and added that he will also be able to demonstrate the progress to move the needle when it comes to reducing online damage.