Digital identities

Ireland and the EU intensify DSA pressure on Meta

Coimisiún na Meán, the media regulator of Ireland, has launched two formal investigations into Meta over the design of recommender systems on Facebook and Instagram under the Digital Services Act. The investigations focus on whether users are prevented from choosing recommendation feeds that are not based on the profiling of their personal data.

Coimisiún na Meán said concerns emerged following platform supervision reviews and complaints linked to potential ‘dark patterns’ and deceptive interface designs. Regulators are examining whether users can easily access and modify non-profiled recommendation feeds as required under Article 27 of the DSA, alongside whether interface designs may improperly influence user choices under Article 25.

John Evans, Digital Services Commissioner at Coimisiún na Meán, said recommender systems can repeatedly push harmful material into user feeds, particularly affecting children and younger users. The regulator also warned that Very Large Online Platforms (VLOPs) must ensure users can exercise their rights under the DSA without manipulation or unnecessary barriers.

EU investigates Meta over under-13 access on Instagram and Facebook

At the same time, the European Commission has preliminarily found Meta in potential breach of the DSA over failures to adequately prevent children under 13 from accessing Instagram and Facebook. Regulators said Meta’s age verification and reporting systems may be ineffective, while the company’s risk assessments allegedly failed to properly address harms faced by underage users.

Why does it matter?

These investigations are critical because they could shape how the DSA is enforced across Europe, particularly in cases involving children and algorithmic recommendation systems. If regulators conclude that Meta failed to properly protect minors or used manipulative interface designs that discouraged users from choosing non-profiled feeds, the case may set a wider precedent for how large online platforms handle age assurance, user consent, privacy protections, and recommender system transparency under EU law.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

New Meta age assurance system aims to prevent underage access

Meta has expanded its use of AI to strengthen age assurance and improve enforcement of underage account policies across its platforms. The systems are designed to detect users under 13 for removal and to place suspected teens into protected Teen Account settings on Instagram and Facebook in regions including the EU, Brazil, and the US.

The technology analyses a range of signals, including profile information, user activity, and other contextual indicators, to estimate age more accurately. Automated systems are also being used to support faster and more consistent review of reports related to underage use.

Visual analysis has also become part of Meta’s broader detection approach, with the company saying its systems look for general age-related indicators rather than attempting to identify specific individuals. Reporting tools have been simplified, and AI-assisted moderation is being used to improve the speed and reliability of enforcement decisions.

Alongside these enforcement measures, Meta is increasing parental engagement through notifications and guidance to encourage more accurate age reporting and safer online behaviour. The wider effort reflects growing pressure on platforms to move beyond self-declared age checks and to build stronger systems to protect younger users.

Why does it matter?

The significance of the move lies in the fact that age assurance is becoming a core platform governance issue rather than a secondary moderation tool. Meta is trying to show that large social platforms can use AI not only to recommend or personalise content, but also to enforce minimum age rules at scale. That matters because regulators are increasingly questioning whether self-declared age data is enough to protect minors online. It also points to a broader shift in which platforms are expected to combine safety obligations, automated detection, and parental tools into a more active system of child protection.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!  

European Commission urges fast rollout of EU age verification app

The European Commission has adopted a recommendation urging member states to accelerate the rollout of the EU age verification app and make it available by the end of the year. The recommendation says the app can be deployed either as a standalone solution or integrated into a European Digital Identity Wallet.

According to the Commission, the app is intended to let users prove they meet a required age threshold without disclosing their exact age, identity, or other personal details. The Commission has also published a blueprint for the system, leaving it to member states to customise and produce the app for their citizens.

The recommendation sets out actions for member states to support rapid availability and interoperability, including implementation plans and coordination to ensure the swift rollout of the solution across the EU.

The measure forms part of the EU’s wider approach to protecting minors online under the Digital Services Act, which requires online platforms to ensure a high level of privacy, safety, and security for minors.

Executive Vice-President Henna Virkkunen said: ‘Effective and privacy-preserving age verification is the next piece of the puzzle that we are getting closer to completing, as we work towards an online space where our children are safe and empowered to use positively and responsibly without restricting the rights of adults.’

Why does it matter?

The move takes age verification in the EU from a general policy objective to a more concrete implementation phase. Rather than leaving platforms and member states to develop separate solutions, the Commission is trying to steer the bloc towards a common privacy-preserving model that can work across borders.

That matters for both child protection and regulatory coherence, because if countries adopt incompatible systems or move at very different speeds, enforcement under the Digital Services Act could become uneven in practice.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Digital identity ecosystems expand as verifiable credentials roll out across India and other regions

Digital identity ecosystems are expanding with Google Wallet, introducing new capabilities to simplify secure identity verification across multiple regions.

The latest update enables users in India to store Aadhaar-based verifiable credentials directly on their devices.

The integration allows individuals to confirm identity or age in everyday scenarios while maintaining strong privacy protections. Features such as selective disclosure ensure that only necessary information is shared, reinforcing a privacy-first approach to digital identity management.

At the same time, digital ID passes based on passport data are being rolled out in Singapore and Brazil. These credentials provide a streamlined way to authenticate identity across both online services and physical environments.

Why does it matter?

Such an expansion by Google reflects a broader push towards interoperable and secure digital identity systems. By aligning with global standards and embedding privacy into design, the initiative aims to support more seamless and trusted digital interactions worldwide.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

EU pushes Android changes to open AI competition

The European Commission has outlined draft measures requiring Google to improve interoperability on Android as part of ongoing proceedings under the Digital Markets Act. Regulators are focusing on how third-party AI services can interact with hardware and software features controlled by the Android operating system.

The proposed measures are intended to give competing AI services access to key Android features already used by Google’s own AI services, including Gemini. In practice, that could allow rival services to support actions such as sending messages, sharing content, or completing tasks through user-preferred applications rather than being limited by Google’s default ecosystem.

The Commission’s approach could also make it easier for users to activate alternative AI assistants through customised interactions and device-level features, reducing dependence on default system tools. The broader aim is to give third-party providers a more equal opportunity to innovate and compete in the fast-moving market for AI services on mobile devices.

Feedback on the proposed measures is being gathered as part of the Commission’s specification proceedings under the DMA. The consultation forms part of a wider regulatory effort to enforce fair access to core platform features and strengthen digital competition across European markets, including in the AI sector.

Why does it matter?

The move targets one of the most important control points in the digital economy: the operating system layer. Opening Android features to competing AI services could reduce the structural advantage held by Google and shift power towards a more competitive, multi-provider mobile ecosystem. This is an inference based on the Commission’s stated objective of giving third-party AI services access equivalent to that available to Google’s own AI tools.

Greater interoperability under the Digital Markets Act could reshape how AI reaches users, turning smartphones into more open platforms rather than tightly controlled default environments. At the same time, the case also shows how strongly the EU is trying to apply competition law to the next phase of AI distribution, not only to search, app stores, and browsers.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!  

ECON adopts Business Wallets opinion and highlights cybersecurity risks

Members of the European Committee of the Regions’ Commission for Economic Policy adopted a draft opinion on European Business Wallets at their meeting, while also addressing cybersecurity, industrial policy, defence, AI, and state aid issues.

ECON members stressed that European Business Wallets should be simple, user-friendly, and cost-effective, particularly for SMEs, micro-enterprises, and start-ups operating across borders. They also backed a ‘once-only’ principle allowing businesses to submit data a single time and reuse it across different administrative procedures.

The draft opinion also calls for awareness-raising, clear guidance, financial support, technical assistance, and training for local administrations facing new obligations.

Rapporteur Branislav Zacharides, Mayor of Vrútky, stated:

The deployment of the Business Wallets will entail new administrative obligations for public authorities, which can be especially burdensome for smaller municipalities. We therefore call on the European Commission and Member States to provide adequate technical capacity-building and financial support so that the Wallets can deliver real added value.

Members also addressed the upcoming Cybersecurity Review and the Digital Networks Act, warning that new responsibilities linked to digital resilience and connectivity could put pressure on regional and local administrations, especially those with limited resources and technical expertise. They called for financial support, training, and capacity-building to help authorities meet those requirements.

ECON members also discussed the EU Defence Industry Transformation Roadmap and the Industrial Accelerator Act, stressing the need for a place-based approach to defence and industrial acceleration policies. They argued that local and regional authorities should help shape investment priorities and industrial strategies, rather than merely implement them.

The meeting also included a discussion of gender bias in AI and a review of the General Block Exemption Regulation on state aid. ECON members warned that broader state-aid flexibilities could have uneven territorial and competition effects, risking the widening of regional disparities.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Hong Kong advances digital corporate identity to transform business operations

The development of its Digital Corporate Identity (CorpID) platform has been accelerated by Hong Kong, positioning it as a central pillar of the territory’s digital economy strategy.

Backed by a $300 million public investment approved in 2024, the system is designed to provide corporations with a secure, standardised and scalable digital identity, enabling seamless interaction with both government and private sector services instead of fragmented administrative processes.

The platform builds on the success of ‘iAM Smart’, extending digital identity capabilities from individuals to corporations. With more than 4.3 million users already accessing over 1,400 services through the personal system, authorities aim to replicate and expand the model for businesses.

CorpID will enable companies to authenticate their identity digitally, authorise representatives, and access services through a unified interface, reducing duplication and significantly improving operational efficiency.

At its core, the platform introduces a set of integrated functions intended to modernise corporate workflows.

Digital authentication replaces traditional document submission, allowing real-time verification through direct integration with official databases. Digital signing, supported by legally recognised certificates, serves as a secure alternative to company chops and handwritten signatures, enabling faster and more reliable transactions.

A document wallet will store verifiable licences and certificates, while automated form pre-filling reduces administrative burden by reusing existing data across applications.

The inclusion of an AI assistant reflects a broader shift towards intelligent public services. The system will provide instant responses to corporate queries and deliver personalised recommendations, including access to funding schemes, regulatory guidance and industry support programmes.

Such an approach by Hong Kong aims to improve user experience while encouraging small and medium-sized enterprises to adopt digital tools and expand their capabilities.

Security and trust are central to the platform’s design. The system incorporates multi-layered protection measures, including public key infrastructure, advanced encryption standards and blockchain-based verification to prevent data tampering.

Strict compliance with privacy regulations and cybersecurity requirements ensures that corporate data remains protected, while continuous monitoring, audits and red team testing will reinforce resilience against emerging threats.

Integration with existing government systems also enables reliable identity verification and reduces the risk of fraud.

Beyond domestic efficiency, the platform is designed to strengthen Hong Kong’s position in global and regional markets.

Authorities are actively exploring interoperability with mainland China and international systems, incorporating widely recognised identifiers such as Legal Entity Identifiers and D-U-N-S numbers.

The initial rollout will connect approximately 200 services across sectors such as taxation, trade, logistics, finance and licensing. Government departments will be required to integrate their corporate services within 18 months of the platform’s launch, ensuring rapid adoption.

Collaboration with financial institutions, technology hubs and industry organisations is also expected to drive business-to-business applications, supported by sandbox testing environments that allow companies to develop and refine use cases before full deployment.

Development has now entered its final phase, with system integration and testing scheduled for mid-2026. The official launch is planned for the end of the year, followed by a gradual expansion of services and capabilities.

By 2028, all corporate-related government services are expected to support the platform, marking a significant step towards a fully digital business environment.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

UK’s ICO outlines personal data use in elections

The UK Information Commissioner’s Office has issued guidance on the use of personal data during the upcoming local elections. The publication aims to inform voters about their rights and expectations.

According to the Office, personal data plays a central role in political campaigning, helping parties communicate with voters and understand public concerns. The regulator emphasises that trust depends on lawful and transparent data use.

The guidance states that voters should expect clear explanations of how their data is used, including when profiling or targeted advertising is involved. Political organisations must provide accessible privacy information and follow data protection rules.

The Information Commissioner’s Office also highlights that individuals have the right to question or object to data use, reinforcing accountability during election campaigns in the UK.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Minnesota weighs AI free speech limits

The National Constitution Center reports that Minnesota lawmakers are considering a constitutional amendment to exclude AI systems from free speech protections. The proposal would clarify that such rights apply to people, not machines.

According to the National Constitution Center, the amendment would add language stating that AI does not have the right to speak, write or publish sentiments freely. Human free speech protections would remain unchanged under the proposal.

The article highlights ongoing debate around the measure, with supporters arguing it distinguishes human rights from technological tools, while critics warn it could affect how AI-generated content is treated under the law.

The National Constitution Center notes that the proposal reflects broader tensions over how legal systems should address AI and free expression as the issue develops in Minnesota.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

EPO introduces AI captions to improve accessibility in digital patent proceedings

The European Patent Office (EPO) has introduced automated real-time captions for oral proceedings conducted via video conference (VICOs), aiming to improve accessibility for participants with hearing impairments.

The measure forms part of broader efforts to enhance inclusivity within digital public services.

A system that enables speech recognition-based captions during virtual hearings, with optional translation into official languages.

While activation requires prior request, the feature reflects a shift towards more accessible and adaptable procedural frameworks in digital legal environments.

The introduction of captions aligns with wider European accessibility and digitalisation objectives, supporting equitable participation in administrative and legal processes.

At the same time, the EPO notes that machine-generated captions may contain inaccuracies and are intended solely as a support tool during proceedings.

Such a development illustrates how AI-enabled tools are being integrated into institutional workflows to address accessibility barriers, while maintaining procedural safeguards and operational integrity.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

Diplo chatbot can make mistakes. Consider checking important information.