Meta Platforms faces heavy fine in Turkey over data-sharing

Turkey’s competition board has levied a substantial fine of 1.2 billion lire ($37.20 million) against Meta Platforms following investigations into data-sharing practices across its social media platforms, including Facebook, Instagram, WhatsApp, and Threads. The board launched an inquiry last December, particularly focusing on potential competition law violations related to integrating Threads and Instagram.

As part of its findings, the competition board imposed an interim measure in March to restrict data sharing between Threads and Instagram. In response, Meta announced the temporary shutdown of Threads in Turkey to comply with the interim order, reflecting the company’s efforts to adhere to regulatory directives.

The fine encompasses two separate investigations, with 898 million lira attributed to the compliance process and investigations related to Facebook, Instagram, and WhatsApp, and an additional 336 million lira for the inquiry into Threads. The board’s decision emphasises the importance of user consent and notification regarding data usage, ensuring transparency and control over personal data across Meta’s platforms.

Previously, the competition board had imposed fines on Meta, including daily penalties for insufficient documentation and notifications about data-sharing. While these penalties concluded on 3 May 2024, the recent fine extends the ongoing regulatory scrutiny over Meta’s business practices, echoing similar actions taken by regulatory authorities globally to ensure compliance with competition and data protection laws.

TikTok adopts technology to label AI-generated content

TikTok has announced that it will implement a new technology called ‘Content Credentials’ to label images and videos created by AI on its platform. Developed by Adobe, this digital watermark technology aims to address concerns regarding the authenticity and potential misuse of AI-generated content, particularly in relation to the upcoming US elections.

The Content Credentials technology will attach digital watermarks to indicate how images and videos were created and edited, allowing users to distinguish content produced by humans from AI-generated content. TikTok’s adoption of this technology follows in the footsteps of other companies like OpenAI and is part of a broader effort by tech giants to combat the potential use of AI-generated content for misinformation purposes. YouTube and Meta Platforms, which owns Instagram and Facebook, have also expressed their intention to adopt Content Credentials, even though they already use AI-generated content labelling tools.

For the watermark system to be effective, both the creators of the generative AI tools and the platforms must agree to use the industry standard. For example, if an image is generated using OpenAI’s Dall-E tool, a watermark will automatically be attached to the resulting image. If this marked image is then uploaded to TikTok, it will be labelled as AI-generated content.

Why does it matter?

While TikTok already labels AI-generated content created within its app, this new initiative expands the labelling to content generated outside the TikTok ecosystem. By doing so, TikTok aims to enhance control over disseminating AI-generated material and maintain transparency for its user community.

Furthermore, the decision to regulate the content on its platform comes amid the ongoing legal battle between TikTok’s parent company, ByteDance, and the US government. ByteDance has been ordered to divest TikTok due to national security concerns, but it has filed a lawsuit arguing that this requirement violates the First Amendment. This legal dispute adds another layer of complexity to TikTok’s operations and its future in the United States.

EU seeks details on X’s content moderation practices

The European Commission has taken a significant step in its investigation of company X under the Digital Services Act (DSA). On 8 May 2024, the Commission sent a request for information (RFI) to X, seeking detailed insights into its content moderation practices, particularly in light of a recent Transparency report highlighting a nearly 20% reduction in X’s content moderation team since October 2023. The reduction has diminished linguistic coverage within the EU, from 11 languages to 7.

Furthermore, the European Commission is keen on understanding X’s risk assessments and mitigation strategies concerning generative AI tools, especially their potential impact on electoral processes, dissemination of illegal content, and protection of fundamental rights. The investigation follows formal proceedings initiated against X in December 2023, examining potential breaches of the DSA related to risk management, content moderation, dark patterns, advertising transparency, and data access for researchers.

The request for information is part of an ongoing investigation, building upon prior evidence gathering and analysis, including X’s Transparency report released in March 2024 and its responses to previous information requests. X has been given deadlines to provide the requested information, with 17 May 2024 set for content moderation resources and generative AI-related data and 27 May 2024 for remaining inquiries. Failure to comply could result in fines or penalties imposed by the Commission, as stipulated under Article 74(2) of the DSA.

Ukraine raises alarm over Russia’s TikTok tactics

Ukraine has issued a warning about Russia’s escalating use of TikTok to challenge President Volodymyr Zelenskiy’s legitimacy and erode national morale amid Russia’s military actions. Russian influencers and bots are reportedly behind viral TikTok videos targeting 20 May, the date when Zelenskiy’s first term would have ended if not for election disruptions due to martial law. Andriy Kovalenko, a senior official focused on countering Russian misinformation, highlighted Russia’s systematic approach to TikTok, exploiting the platform to sway public opinion.

As Russia continues its military campaign against Ukraine, it has expanded its information warfare to platforms like TikTok alongside traditional battlegrounds. The use of TikTok to disseminate misinformation represents a strategic shift in Russia’s multifaceted approach to influencing public perception and leveraging its advantage in cyberspace. TikTok, owned by ByteDance, has responded by enhancing safety measures and removing harmful misinformation in Ukraine amid broader scrutiny over data security and misinformation concerns from the US and the EU.

In response to these challenges, Ukraine advocates for greater cooperation from social media companies like TikTok by urging them to establish full-scale offices in Kyiv to combat disinformation effectively. Kovalenko, who actively uses TikTok to counter false narratives, emphasised the need to adapt Ukraine’s approach to this influential platform. The call for action by Kovalenko comes as TikTok reports uncovering covert influence operations related to Ukraine conflict and removing millions of problematic videos during the last quarter.

Why does it matter?

Ukraine’s efforts to confront Russia’s information campaign on TikTok reflect broader concerns over the app’s influence and security. While governments like the US and the EU take measures to safeguard against potential threats posed by platforms like TikTok, the ongoing geopolitical dynamics and the use of social media as a battleground highlight the complex challenges digital technologies pose in the modern information landscape.

Tech firms urged to implement child safety measures in UK

Social media platforms such as Facebook, Instagram, and TikTok face proposed measures in the UK to modify their algorithms and better safeguard children from harmful content. These measures, outlined by regulator Ofcom, are part of the broader Online Safety Act and include implementing robust age checks to shield children from harmful material related to sensitive topics like suicide, self-harm, and pornography.

Ofcom’s Chief Executive, Melanie Dawes, has underscored the situation’s urgency, emphasising the necessity of holding tech firms accountable for protecting children online. She asserts that platforms must reconfigure aggressive algorithms that push harmful content to children and incorporate age verification mechanisms.

The utilisation of complex algorithms by social media companies to curate content has raised serious concerns. These algorithms often amplify harmful material, potentially influencing children negatively. The proposed measures seek to address this issue by urging platforms to reevaluate their algorithmic systems to prioritize child safety by providing children with a safer online experience tailored to their age.

UK’s Technology Secretary, Michelle Donelan, called for social media platforms to engage with regulators and proactively implement these measures, cautioning against waiting for enforcement and potential fines. After a consultation, Ofcom plans to finalise its Children’s Safety Codes of Practice within a year, with anticipated enforcement actions, including penalties for non-compliance, once parliament approves.

TikTok sues US government over law mandating ban or divestment

TikTok has filed a lawsuit against the US government, challenging a new law that requires the app to sever ties with its Chinese parent company, ByteDance, or face a ban in the US. The company argues that the law is unconstitutional and deems it impossible to sell the app from ByteDance, stating that it would instead result in a shutdown by 19 January 2025.

Namely, the law, signed by President Joe Biden last month, grants ByteDance nine months to divest TikTok or cease its operations in the US, citing national security concerns. However, TikTok’s complaint argues that the government has not presented sufficient evidence of the Chinese government misusing the app. Concerns expressed by individual members of Congress and a congressional committee report are speculative about the potential misuse of TikTok in the future without citing specific instances of misconduct. However, TikTok asserts that it has operated prominently in the US since its launch in 2017.

The app contends that a ban in the US would be unfeasible due to the complex task of transferring millions of lines of software code from ByteDance to a new owner. Additionally, restrictions imposed by the Chinese government would prevent the sale of TikTok along with its algorithm. TikTok argues that such a ban would effectively isolate American users and undermine its business, mentioning also its previous efforts to address US government concerns.

During the Trump administration, discussions were held regarding partnerships with American companies such as Walmart, Microsoft, and Oracle to separate TikTok’s US operations. However, these potential deals have yet to materialise. TikTok also attempted to appease the government by storing US user data in Oracle’s servers, although a recent report suggests that this action was primarily cosmetic.

TikTok seeks a court judgement to declare the Biden administration’s legislation unconstitutional in response to the new law. The company also requests an order to prevent the attorney general from enforcing the law.

ByteDance submits overdue risk assessment for TikTok Lite amid regulatory pressure

ByteDance, the company behind TikTok, has submitted a long-awaited risk assessment for its TikTok Lite service, recently launched in France and Spain, following regulatory threats of fines and potential bans from the European Commission. Regulators are concerned about the addictive nature of TikTok Lite, particularly its rewards system for users, and claim ByteDance didn’t complete a full risk assessment on time.

ByteDance now has until 24 April to defend itself against regulatory action, including possibly suspending the rewards program. Failure to comply with regulations could result in fines of up to 1% of its total annual income or periodic penalties of up to 5% of its average daily income under the Digital Services Act (DSA).

The DSA imposes strict rules on online platforms with over 45 million users in the EU, including other major tech companies like Google, Facebook, Instagram, and LinkedIn.

Why does it matter?

Meanwhile, in the US, legislation is swiftly advancing through Congress, requiring ByteDance, the Chinese company that owns TikTok, to divest its ownership within a year or face a US ban. The Senate has passed this measure as part of a foreign aid package, sending it to President Joe Biden for his expected approval. ByteDance will have nine months initially, with a possible three-month extension, to complete the sale, though legal challenges could cause delays.

EU political parties sign election integrity code of conduct

The EU political parties are set to sign a new code of conduct on Tuesday, 9 April 2024, to safeguard the upcoming EU elections from foreign interference and disinformation. The initiative, brokered by the European Commission, is part of a broader effort to protect the integrity of the electoral process.

The code of conduct, overseen by Vice-President Věra Jourová, focuses on preventing the amplification of narratives led by non-EU entities that seek to undermine European values. Parties across the political spectrum, including left, socialists, centre-right, liberals, conservatives, greens, and far-right groups, are committing to proactive measures against spreading misinformation. They pledge to ensure transparency by labelling AI-generated content and not disseminating unfounded accusations or deceptive materials targeting other parties. Although this adds an extra layer of protection to the electoral campaign, the responsibility for implementation and monitoring falls on the European parties rather than national parties conducting the campaign on the ground.

Despite these commitments, the code of conduct lacks independent oversight and enforcement mechanisms instead of relying on the parties to promote compliance among their members and conduct post-election reviews. Commission Vice-President Jourová emphasised the symbolic importance of this collective commitment by European political parties to uphold the integrity of elections, urging them to adhere to ethical and fair campaigning practices in the coming months.

Why does it matter?

The agreement follows recent scandals involving European Parliament members, like Qatargate and Russiagate, and underlines the importance of defending democracy against foreign interference. While the code of conduct does not extend to national parties, it represents a significant step forward in addressing digital risks and maintaining transparency in electoral communications.

Czech government sanctions website for alleged pro-Russian influence ahead of EU election

The Czech government has taken action by sanctioning individuals, including Viktor Medvedchuk and the website voiceofeurope.com, over their alleged involvement in a pro-Russian influence operation in Europe spreading disinformation. According to the Czech Foreign Ministry, the campaign aimed to undermine Ukraine’s territorial integrity, sovereignty, and liberty.

Czech Prime Minister Petr Fiala has underscored that the activities of the sanctioned individuals were aimed at bolstering Russian influence in the EU countries and the European Parliament, based on findings from the Czech secret service agency BIS.

Medvedchuk, a former Ukrainian politician now residing in Russia, stands accused of covertly financing Voice of Europe to sway the European Parliamentary election. Financial accounts associated with the implicated individuals and entities will be frozen as part of the sanctions.

Why does it matter?

The development comes shortly after the European Parliament, and experts warned of expected attempts to undermine the upcoming EU elections in June and deter voter turnout through disinformation campaigns. Despite efforts to combat disinformation through tools like the Digital Services Act, challenges still need to be addressed in effectively countering misleading narratives, especially in the limited timeframe leading up to the elections.

Content Policy

ICT4Peace has been an independent think tank since 2003 in Geneva. It fosters political discussion and common action to support international and human security in cyberspace. All its activities are focused on the use of information and communications technology (ICT) to fulfil its key goals: save lives, protect human dignity, and promote peace and security in cyberspace. ICT4Peace acts as an early mover in identifying important challenges, bringing visibility and high-level attention to critical new issues. It carries out policy research examining how to use technologies to support state and human security, and develops capacity building through the ICT4Peace Academy to support the full participation of all stakeholders in ICT discussions, negotiations, and solutions. The description of the concrete areas of its work can be found in this document.

Inter alia the areas presently covered are deepening the understanding of the ICT-related activities and services provided by private (cyber) security companies and their impacts on human rights, international law, and security international law, norms of responsible state behaviour in cyberspace, including neutrality during cyberwarfare; mis- and disinformation and hate speech; gender and ICT and artificial intelligence (AI), peace and ethics.

Digital policy issues

Network security, cyberconflict, and warfare

An open, secure, stable, accessible, and peaceful ICT environment is essential for all and requires effective cooperation among states, civil society, and the private sector to reduce risks to international peace and security, and secure economic and social development. There are, however, very disturbing trends in the global ICT environment, including a dramatic increase in incidents involving the malicious use of ICTs by state and non-state actors, such as criminals and terrorists. These trends create enormous risks to peace and security in cyberspace for states, but equally to human security and dignity.

In 2011, ICT4Peace called for a code of conduct and for norms of responsible state behaviour and confidence- building measures for an open, secure, and peaceful cyberspace, and encouraged all stakeholders to work together to identify new cyber threats and develop solutions and agreements at national and  global levels. In particular, it advocated against the increasing militarisation of cyberspace. ICT4Peace has supported international negotiations at the UN Governmental Group of Experts (UN GGE) and the Open-Ended Working Groups (OEWG I and II) in New York, as well as at the Organization for Security and Cooperation in Europe (OSCE), the Association of Southeast Asian Nations (ASEAN), the Organization of American States (OAS), and the African Union (AU) with policy recommendations and multiple publications and workshops. In 2014, ICT4Peace launched its capacity-building programmes and in 2020 created The ICT4Peace Academy, in particular for policymakers and diplomats from developing and emerging economies to enable them to develop and implement their national cybersecurity strategies, building computer emergency response teams (CERTS) and meaningfully engage in the UN GGE and in the OEWG I 20192021 and OEWG II 2021– 2025, but also in bilateral and regional negotiations.

In 2019, at OEWG I in New York, ICT4Peace issued a call to governments to publicly commit not to attack civilian critical infrastructure and proposed a states cyber peer review mechanism for tate-conducted foreign cyber operations. See also all ICT4Peace inputs to and comments on OEWG I and the ICT4Peace Submission to OEWG II 20212025.

ICT4Peace has highlighted emerging concerns and suggested governance solutions in the fields of artificial intelligence (AI), lethal autonomous weapons systems (LAWS), and peace time threats.

Capacity development

The ICT4Peace Academy offers custom-tailored courses to meet organisations’ needs in learning more about today’s ICT challenges, including cyber diplomacy, cyber peacebuilding, and cyber (human) security. Drawing from an extensive network of expert practitioners, including diplomats, technologists, and civil society experts, each customised course offers the latest in up-to-date information tailored to an organisation’s particular context and presented in a live and interactive format. ICT4Peace offers advisory services to governments, multilateral initiatives, and the international community to support a peaceful cyberspace and provides a global hub and policy space bringing together actors from the technology community, governments, and civil society.

Regretfully, institution and capacity building in the area of ICTs for peaceful purposes and peace and security in cyberspace are not sufficiently recognised as a development issue and/or treated as a development priority by the development community, development partners, or by the millennium development goals (MDGs) or sustainable development goals (SDGs).

It is hoped that by bringing the discussion around the need for increased cybersecurity institution and capacity building (as expressed inter alia by the UN GGE and OSCE) also into the policy orbit of the OECD Development Assistance Committee (DAC), cybersecurity capacity building will be recognised as a development priority by policymakers and more official development assistance (ODA) will flow into this sector in a consistent and coherent fashion. In cooperation with the Estonian and Swiss governments, ICT4Peace has held discussions with the DAC about making cybersecurity capacity-building ODA-eligible.

ICT4Peace also published a thought piece on Digitization: Curse or Blessing for the Bottom Billion, in which the case for more cybersecurity capacity building in the context of development cooperation is made.

Content policy

In the area of online content policy, ICT4Peace is engaged in activities related to the use of the internet for misinformation, disinformation, defamation, and hate speech. In today’s information society, the dissemination of false information can have devastating consequences, ranging from violent terrorist attacks to interference in elections, to unnecessary illness, such as in the current pandemic. ICT4Peace’s research and publications on misinformation, and hate speech looks at the role of social media and other online platforms/apps in spreading mis/disinformation online.

Regarding the prevention of the use of ICTs for terrorist purposes, ICT4Peace co-launched the Tech against Terrorism Platform with the United Nations Counter-Terrorism Executive Directorate (UNCTED). ICT4Peace organised workshops and produced a number of publications in the aftermath of the Christchurch attack and the Sri Lanka bombing with the main aim of raising awareness and supporting the Christchurch Call Summit Process. Since the emergence of COVID-19, ICT4Peace has launched a review of the risks and opportunities of ICTs and social media during a pandemic.

Human rights principles

ICT4Peace has been active in the area of ICTs and human rights, publishing papers, delivering workshops, and supporting other actors to address the human rights implications of digital technologies. It coined the term ‘digital human security’.

Many innovations are designed with the embedded gender, and other biases of their creators, and even the most helpful technologies remain inaccessible to those who would benefit the most from them, including women,  girls,  and socioeconomically marginalised populations. ICT4Peace is working with gender-focused non-governmental organisations (NGOs) to address gender biases in ICTs.

AI promises to change the very nature of our society, transforming our conflict zones and ushering in a new socio-economic era. While the potential benefits are tremendous, so are the potential risks. This requires careful analysis to inform policy decisions on international and international levels. Since 2017, ICT4Peace has carried out research, published policy papers, and contributed to international discussions on AI, ethical, and political perspectives on emerging digital technologies.

Social media channels

Facebook @ICT4Peace

LinkedIn @ICT4peace

X @ict4peace

YouTube @ICT4Peace Foundation