EU Parliament greenlights Chat Control 1.0 – Breyer: “Our children lose out”
Freedom, democracy and transparency
Today, the European Parliament allowed the suspicionless mass scanning of private communications (“Chat Control 1.0”) to pass, a measure it had rejected twice in March. Although a majority of voting Members of the European Parliament (MEPs) actually opposed the regulation (314 against, 276 in favor, 17 abstentions), the motion to reject it failed to secure the required absolute majority of 361 votes. As a result, mass scanning is now permitted again until 2028.
314 against, 276 in favor, 17 abstentions
A symbolic exemption was adopted for encrypted communications—though in practice, service providers do not scan these anyway. Furthermore, while a majority of voting MEPs wanted to restrict the scanning of private communications strictly to suspects identified by the judiciary (322 to 255 votes), this amendment likewise fell short of the required absolute majority.
Dr. Patrick Breyer, civil rights activist and former Member of the European Parliament (MEP), warns of the consequences:
“The fact that Chat Control is moving forward against the will of the majority of voting MEPs is a farce and damages democracy. Our children are the real losers in this undemocratic process. The passage of a genuine, permanent child protection regulation is now in serious jeopardy. The Council will never agree to a desperately needed paradigm shift as long as they can simply stick to the old approach of suspicionless scanning at the whim of the tech industry.”
Despite the legislative defeat, Breyer remains defiant regarding the upcoming negotiations:
“Today’s vote on the interim regulation was a setback, but the political battle over the permanent ‘Chat Control 2.0’ is just getting started. The resistance we saw in Parliament today was so strong that finding a majority for permanent, suspicionless mass scanning in future negotiations is a complete pipe dream.”
Breyer fundamentally rejects the mass surveillance approach:
“Trying to protect children with suspicionless mass surveillance is like frantically mopping the floor while the faucet is still running. Blanket chat control is just as unacceptable as indiscriminately opening everyone’s physical mail. For five years, this failed system has served as a smokescreen to delay real action, all while overwhelming the police with false alarms. We need more child protection, not less—but we need effective protection, not the illusion of security.”
What happens next?The interim regulation passed today will remain in effect until 2028, or until an agreement on a permanent regulation is reached. Negotiations for the permanent law will resume in September. The core dispute between the EU Parliament, member state governments, and the EU Commission remains the scanning of private chats: should it be indiscriminate, or targeted at criminal suspects?
What changes with the return of Chat Control 1.0—and what stays the same:
What is coming back: US tech companies are once again allowed to scan private messages without a warrant or prior suspicion. This affects direct messages on platforms like Instagram, Discord, Snapchat, Skype, and Xbox, as well as emails via Google’s Gmail and Apple’s iCloud.
What remains unchanged: Public social media posts and files hosted in cloud storage could already be scanned without this law. Furthermore, private messages can always be reported by users, or monitored by authorities using targeted, court-ordered wiretapping.
What is still NOT being scanned: End-to-end encrypted chats, such as those on WhatsApp, have always been exempt from these scans. Additionally, European providers of messaging and email services have never implemented chat control measures.
Why Chat Control is the wrong approach:
Since 2022, the volume of suspected abuse reports from the US has already dropped by 50 percent due to the growing use of message encryption.
According to EU Commission figures, mass scanning of private chats accounted for only 36 percent of all abuse reports in 2024 (the majority came from public posts and cloud storage).
The German Federal Criminal Police Office (BKA) reports that 48 percent of all incoming alerts are not criminally relevant in the first place.
Crime statistics reveal that 40 percent of the resulting investigations actually target minors themselves.
Under the chat control system, an estimated 99 percent of reports generated by Meta consist of previously known material, which generally does little to stop ongoing, active abuse.
The EU Commission admits there is no evidence that suspicionless scanning of private communications has led to an increase in criminal convictions or in rescued children.
Talk of averting a “protection gap” is therefore highly misleading. The most effective law enforcement tools—court-ordered wiretaps, user reports, and the scanning of public platforms and cloud storage—were never at risk and remain fully intact. The only practice that was temporarily banned since April was the indiscriminate, warrantless searching of private, unencrypted messages of innocent people on a handful of US platforms.
Background: The deadlock over a permanent solutionIn parallel, negotiations are ongoing for a permanent regulation to protect children from sexualized online violence (the “CSAM Regulation” or “Chat Control 2.0”). In these talks, the EU Parliament is pushing for a paradigm shift in how we approach online child safety, demanding:
Mandatory, targeted detection orders against actual criminal suspects, rather than blanket mass scanning left to the tech industry’s discretion.
An EU Child Protection Centre tasked with the systematic removal of known abuse material from the public internet.
Strict security standards for messaging apps (“Security by Design”) to prevent cyber grooming.
This permanent legislation has stalled because EU member states insist on maintaining the outdated approach of voluntary, suspicionless scanning of private communications. Critics warn that repeatedly extending the interim rules removes the political pressure needed to reach a viable, permanent agreement. Ultimately, clinging to the status quo threatens to derail real progress on child protection.
Patrick Breyer sums up the problem:“As long as EU governments can use procedural loopholes to continually extend their comfortable status quo of voluntary, indiscriminate mass scanning, they have zero incentive to engage with the Parliament’s targeted, legally sound, and far more effective child protection strategy.
“The Voices of Survivors: “We need privacy to bring abusers to justice”
Survivors of sexual violence explicitly emphasize that untargeted Chat Control did not help victims:
Alexander Hanff, survivor of child sexual abuse and privacy advocate, clarifies:“As a survivor I relied on confidential communications to tell my story and find justice for 28 schoolboys—myself included—resulting in the conviction of multiple offenders. We survivors need privacy, because without it we lose our voice. Chat Control was not created to protect children. It was about Big Tech companies like Meta or Google wanting access to our data for profiteering, and states attempting to expand mass surveillance. The EU Commission has wasted five years and millions of euros on algorithms that cannot protect children and were never meant to. This money should have been diverted to real policing, causal research, and support for survivors, millions of whom have never received any support at all.”
Marcel Schneider* (name changed), a survivor who has been suing Meta in court over its voluntary Chat Control, adds:“Anyone mourning the end of Chat Control has not understood what actually helps survivors of sexual violence. Mass surveillance by corporations like Meta does not prevent abuse. Genuine protection means: deleting material at the source, proactive police work on the Darknet, and apps that are safe by design for children from the very start.”
suing Meta in court over its voluntary Chat Control
Dorothée Hahne, founding member and vice-chair of the survivors’ initiative MOGiS e.V. (A Voice for Survivors), emphasizes the danger mass surveillance poses to victims themselves:“As survivors, we see our ‘safe spaces’, our protected areas and communication channels, endangered or destroyed by this. For survivors, this need is existential.“