Digital identities

Ofcom warns platforms over online abuse ahead of FIFA World Cup 2026

Ofcom has urged online platforms to strengthen protections against illegal hate speech, abuse, threats and harassment ahead of the FIFA World Cup 2026. The UK regulator reminded technology companies that they have legal responsibilities under the Online Safety Act to reduce the risk of users encountering criminal content on their services.

The intervention follows concerns about abuse directed at players, coaches, officials and commentators during previous international tournaments. According to Ofcom, online attacks have frequently targeted individuals based on race, ethnicity, perceived sexual orientation and disability, causing significant personal and professional harm.

Under the UK’s Online Safety Act, platforms are required to operate effective reporting systems, maintain adequately resourced moderation teams and remove illegal content without undue delay. Ofcom stated that evidence of failures to meet these obligations during the tournament could be considered as part of its ongoing compliance assessments.

The regulator also highlighted a partnership established earlier this year with the UK Football Policing Unit, the Football Association, the Premier League, the English Football League, the Women’s Super League, the Professional Footballers’ Association and anti-discrimination organisation Kick It Out.

The initiative aims to strengthen information sharing and support preventative measures against online abuse targeting individuals across the football ecosystem.

Why does it matter?

Major sporting events often lead to spikes in online abuse, particularly against athletes, officials and other high-profile figures. The scale and visibility of these events can amplify harmful behaviour and place additional pressure on platforms to enforce their content moderation policies effectively.

Ofcom’s intervention highlights how online safety regulation is increasingly being tested during major public events. The regulator’s warning also signals that compliance with the Online Safety Act will be assessed not only through policies on paper but through how platforms respond to real-world surges in harmful content.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

Australia’s regulator warns of growing AI-powered sextortion threat

Australia’s eSafety Commissioner has launched a public awareness campaign warning that criminals are increasingly using AI and other digital tools in sextortion scams.

The initiative, titled ‘If sextortionists were honest’, uses generative AI to expose deceptive tactics used by online criminals targeting victims through dating apps and social media platforms.

According to eSafety, more than 3,300 reports of sexual extortion were received through its image-based abuse scheme in 2025. Eighty-six percent of reports came from males of all ages, while 42% of all sextortion reports involved males aged 18 to 24.

eSafety Commissioner Julie Inman Grant said offenders are already weaponising face-swapping and voice-cloning technologies, while using generative AI to create fake but convincing online characters and improve scam scripts that previously contained warning signs such as poor grammar or inconsistent messaging.

Reports made to eSafety show that first contact frequently occurs on platforms such as Tinder, Instagram, and Grindr, before conversations are moved to WhatsApp, Telegram, or other messaging apps. Offenders may then search victims’ social media accounts to identify family members and friends they can threaten to contact.

The regulator said overseas offenders often try to appear local and legitimate, including by spoofing Australian phone numbers, using intimate images taken from other victims, or using bank accounts belonging to previous victims to receive and move payments.

eSafety said the safest response is to stop contact, report the account to the platform, block the offender, preserve evidence where possible, and seek support rather than paying. The regulator also called on platforms to take proactive Safety by Design steps, including better language analysis, classifier-based detection, accessible reporting and blocking tools, swift removal pathways for image-based abuse, and cross-platform signal sharing.

Why does it matter?

The campaign shows how generative AI is making online coercion and scams harder to detect. Sextortion is no longer only a problem of fake accounts and blackmail messages: offenders can now use AI-generated personas, improved scripts, voice cloning, and deepfake-style techniques to build trust and pressure victims more effectively. That raises the importance of platform-level detection, user reporting tools, digital literacy, and victim support.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

UNESCO promotes media literacy as response to online hate speech

UNESCO has announced a new issue brief examining how Media and Information Literacy (MIL) can help address the spread of hate speech, disinformation and other harmful content across digital platforms. The publication will be officially presented on 18 June, the International Day for Countering Hate Speech.

UNESCO argues that addressing online hate speech requires measures that extend beyond content moderation and regulation. According to UNESCO, strengthening critical thinking, ethical awareness and digital skills can help individuals better navigate information environments, assess online content and engage responsibly in digital spaces while respecting human rights and freedom of expression.

The brief presents Media and Information Literacy as a long-term educational approach to strengthening information integrity and building more resilient societies. UNESCO officials emphasise that sustainable solutions depend on combining governance measures with investments in education, digital citizenship and informed engagement with information.

The publication forms part of UNESCO’s wider efforts to promote information integrity and responsible digital governance. A related webinar will examine how digital platforms, AI and generative technologies can amplify harmful narratives and social polarisation, as well as strategies for fostering safer and more inclusive online environments.

Why does it matter?

The spread of hate speech, disinformation and other harmful content remains a major challenge for governments, platforms and civil society. While regulatory and moderation measures often focus on limiting harmful content, UNESCO argues that long-term resilience also depends on strengthening citizens’ ability to critically assess information and engage responsibly online.

The initiative reflects growing international interest in combining platform governance with education, digital literacy and information integrity efforts as societies adapt to the influence of AI-powered content creation and increasingly complex online information environments.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

Greece approves major digital governance and interoperability reforms

The Greek Parliament has approved a bill from the Ministry of Digital Governance and Artificial Intelligence to expand digital public services, reduce bureaucracy, and strengthen cybersecurity.

The legislation implements the EU rules on the cross-border automated exchange of supporting documents through the once-only principle, allowing citizens and businesses to avoid repeatedly submitting the same documents to public authorities across the EU.

Greece’s new framework establishes technical and operational measures enabling public authorities to retrieve official documents securely and automatically, with the user’s consent. The system will operate through the European interoperability infrastructure and in line with the EU data protection requirements.

The General Secretariat for Information Systems and Digital Governance will oversee technical coordination and implementation.

Beyond cross-border services, the legislation introduces several domestic digital initiatives. These include a Defective Vehicle Recall Registry to notify vehicle owners about critical safety issues, upgrades to the MyStreet application with electric vehicle charging points and emergency gathering locations, and a customer relationship management platform on gov.gr that will allow citizens to track public service requests through a single interface.

The bill also includes measures to accelerate the launch of more than 800 new public-sector interoperability services and strengthen protections against online fraud. A National Malicious Website Blocking List will be established through Greece’s National Cybersecurity Authority to support faster blocking of phishing websites, scam portals, and malicious online services.

Why does it matter?

The legislation shows how EU interoperability rules are being translated into national digital government reforms. Greece is combining the once-only principle for cross-border public services with domestic service integration, citizen-facing digital tools, and cybersecurity measures against online fraud. The result is a broader shift towards public administration built around automated document exchange, consent-based data retrieval, and shared digital infrastructure.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

Microsoft expands protections against AI-generated intimate imagery

Microsoft has announced new measures aimed at combating non-consensual intimate imagery (NCII), including both authentic and AI-generated content. The company says the changes are designed to make reporting easier for victims, improve detection of harmful content, and strengthen enforcement across Microsoft services.

The initiative comes as the US’s new Take It Down Act enters into force, creating additional legal protections against the distribution of intimate images without consent. Microsoft said both synthetic and authentic NCII can cause significant harm and should be addressed through a unified response.

As part of the update, Microsoft has introduced a redesigned reporting process that allows users to report both real and AI-generated intimate imagery through a simplified global reporting system. The company has also expanded its use of StopNCII.org technology, which creates privacy-preserving digital fingerprints of images to help identify and remove known abusive content across platforms.

Microsoft is further extending the use of validated StopNCII.org hashes across consumer services, including Teams Free, OneDrive and Xbox. The company says it will combine automated detection systems with human review processes while maintaining appeal mechanisms for users affected by moderation decisions.

The company also highlighted broader cooperation with governments, regulators and civil society groups. Microsoft expressed support for the US Take It Down Act, welcomed European efforts targeting AI-powered ‘nudification’ applications, and pointed to upcoming UK Online Safety Act requirements addressing illegal intimate imagery harms.

Why does it matter?

Advances in generative AI have made it easier to create realistic synthetic images, prompting governments and technology companies to strengthen measures against image-based abuse. The announcement reflects a broader trend toward treating AI-generated intimate imagery and authentic non-consensual content under similar safety, moderation and legal frameworks.

The move also highlights growing cooperation between technology companies, regulators and civil society organisations as policymakers develop new approaches to addressing AI-enabled harms online.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

Papua New Guinea advances digital ID law

Papua New Guinea’s Ministry of Information and Communications Technology has begun drafting instructions and a proposed bill for digital identity and verifiable credentials legislation following the endorsement of the National Digital ID Policy.

ICT Minister Peter Tsiamalili Jr said the process marks a step towards a legal framework that will allow citizens to identify themselves securely and access trusted digital services.

The proposed legislation will support the national rollout of SevisPass, SevisWallet, SevisDEx, and other approved verifiable credentials. SevisWallet will allow citizens to register, hold, and present trusted digital credentials, while SevisDEx will enable secure, consent-based data exchange.

Tsiamalili said the government is moving from policy to implementation. He said SevisPass will verify identity, SevisWallet will hold and present trusted credentials, and SevisDEx will support secure data exchange based on user consent.

The minister urged banks, financial institutions, mobile network operators, telecommunications providers, government agencies, education institutions, and professional bodies to work with NICTA and the Department of ICT to complete technical, regulatory, and operational readiness by the end of July 2026.

The readiness process is intended to support electronic know-your-customer checks, SIM registration, secure onboarding, financial inclusion, and digital verification of credentials such as driver’s licences, police clearances, student and teacher IDs, education certificates, tax identification numbers, and superannuation records.

The ministry said relevant agencies, issuers, verifiers, and relying partners should align their systems and compliance pathways to support the rollout by July 2026.

Why does it matter?

Papua New Guinea’s move shows how digital identity systems are becoming foundational infrastructure for public services, financial inclusion, telecoms compliance, education records, and private-sector verification. By linking SevisPass, SevisWallet, and SevisDEx to verifiable credentials and consent-based data exchange, the planned law could shape how identity, trust, and interoperability are built into the country’s digital economy.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

European digital identity wallets and digital sovereignty discussed at EuroDIG 2026

Participants at EuroDIG 2026 discussed whether the European Digital Identity Wallet (EUDI Wallet) and the proposed EU business wallet could become foundational infrastructure for a more integrated European digital single market.

The session focused on reducing fragmentation in digital identity, trust, and cross-border administrative procedures across Europe. Speakers broadly supported the wallets as tools for simplification and interoperability, while also raising concerns about adoption, implementation, and Europe’s dependence on non-European digital infrastructure.

Nathan Meurens, CTO of EURid, framed the discussion around a central challenge for European integration: despite advances in the single market, digital trust and identity systems remain fragmented across member states.

Norbert Sagstetter, Head of Unit for Digital Identity and Trust at the European Commission, outlined the timeline and objectives of the updated European Digital Identity Framework. He said all EU member states will be required to offer a voluntary European Digital Identity Wallet by the end of 2026 under common technical and legal standards.

According to Sagstetter, the wallet is designed to allow citizens to identify themselves digitally, sign documents, and share verified attributes and official records under user control across both public and private services.

He described the wallet as a response to the growing role of private technology platforms in digital identity management. The framework, he said, aims to provide a citizen-controlled alternative governed by European law and supervised by public authorities.

Sagstetter also highlighted the concept of ‘electronic attestation of attributes,’ which could include digital versions of documents such as driving licences, educational credentials, certificates, and potentially health-related records.

The discussion also focused heavily on the proposed EU business wallet, which remains under negotiation.

Sagstetter argued that companies across Europe still face fragmented identification systems and inconsistent administrative procedures, particularly in cross-border interactions. The business wallet, he said, is intended to enable legally effective exchange of documents and interoperable communication between companies and public administrations.

Benjamin Knirsch of SMEunited said small and medium-sized enterprises continue to face duplicated reporting obligations, fragmented platforms, and repeated verification procedures across Europe. He argued that reusable verified company information and implementation of the once-only principle could significantly reduce administrative burdens for SMEs.

However, Knirsch warned that simplification would fail if interoperability remained partial or uneven. He criticised proposals that would exempt smaller municipalities from participation, arguing that SMEs often interact most frequently with local authorities.

Pedro Oliveira of BusinessEurope also supported the business wallet proposal, describing it as one of the few EU digital initiatives likely to create tangible, practical value for businesses.

Oliveira pointed to fragmented company registration and beneficial ownership systems as examples of existing inefficiencies the wallet could help address. He also suggested future links between the wallet and due diligence obligations, Know Your Customer procedures, product passport systems, and possible EU company identifiers.

Several participants stressed that successful implementation will depend on integrating the wallets with existing infrastructure rather than creating parallel systems.

Jaromir Talir of the Czech registry CZ.NIC described how domain registries have struggled for years with reliable registrant identification, particularly in the context of cybersecurity and regulatory requirements. Talir said large-scale EUDI wallet pilots involving domain registries have already demonstrated use cases including registrant verification, authentication, and proof-of-domain-ownership credentials.

He also noted that some countries, including France and Denmark, already operate wallet-like systems while full certification processes continue.

A major part of the discussion focused on digital sovereignty and Europe’s dependence on foreign technology infrastructure.

Sebastiano Toffoletti of the European DIGITAL SME Alliance warned that wallet deployment still depends heavily on US-controlled mobile operating systems and hyperscale cloud providers. He argued that Europe should not build critical identity infrastructure on systems it does not control.

Toffoletti also suggested that large-scale wallet adoption could help support broader adoption of European digital alternatives by creating new distribution channels for European services.

Other speakers responded that the framework itself remains technologically neutral and does not mandate any specific infrastructure provider.

Meurens argued that the wallet framework could operate on different infrastructures if Europe chose to develop them, while Talir noted that alternative implementations, such as web-based wallets, remain possible.

The discussion also addressed concerns that the wallet ecosystem could ultimately strengthen the role of major technology companies if implementation becomes concentrated among dominant providers.

Vittorio Bertola of Open-Xchange warned that Europe could face two separate risks. Either the wallet fails to achieve adoption, or it succeeds but becomes dependent on large non-European firms capable of operating identity services at scale.

Sagstetter defended the wallet’s public-private model, arguing that successful adoption will require both trusted public oversight and useful private-sector services. He also stressed that Europe is contributing actively to the development of international digital identity standards rather than simply adopting frameworks developed elsewhere.

Several participants emphasised that European digital sovereignty should remain open and collaborative rather than protectionist or isolationist.

Oliveira described the concept as ‘open sovereignty,’ while Meurens argued that reducing vendor lock-in through interoperability, open standards, and diversification should remain the primary objective.

The session concluded with broad agreement that the EUDI wallet and the business wallet could become important infrastructure for the European single market if they achieve interoperability, security, trust, and practical usability.

Participants also agreed that adoption will depend heavily on whether the wallets provide convenient and widely used everyday services while preserving privacy, user control, and legal certainty.

EuroDIG 2026 took place on 26 and 27 May at the Charlemagne Building of the European Commission in Brussels under the theme ‘European Voices for the Future of the Internet – Celebrating 20 Years of .eu and the Beginning of a New Internet Governance Era’.

Digital Watch Observatory followed EuroDIG 2026 through a dedicated event page, featuring session information and reporting from Brussels.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot 

YouTube expands AI transparency rules with automatic content detection

YouTube is updating its approach to AI-generated content by introducing more visible disclosure labels and new automatic detection systems designed to improve transparency for viewers and creators.

The update follows growing concerns around realistic synthetic media, manipulated videos, and generative AI tools across major digital platforms.

Under the revised system, labels for photorealistic or meaningfully AI-altered or generated content will appear directly below long-form videos and as overlays on Shorts. Less realistic, animated, or slightly altered content will continue to be disclosed in expanded video descriptions.

The company is also rolling out internal AI detection signals to identify AI-generated content when creators fail to disclose it themselves. If YouTube’s systems detect significant use of photorealistic AI, the platform may automatically apply a label.

Creators will still be able to update the disclosure status in YouTube Studio if they believe their content has been incorrectly identified as AI-generated. However, disclosures will remain permanent in some cases, including content created with YouTube’s own AI tools, such as Veo or Dream Screen, and content that contains C2PA metadata indicating that AI fully generated it.

YouTube said the updated labels are intended to balance transparency with creator control. The company also said that a disclosure label alone does not change how a video is recommended or whether it is eligible to earn money.

Why does it matter?

YouTube’s update reflects a broader shift towards platform-level governance of synthetic media and generative AI content. As realistic AI-generated video becomes easier to produce, platforms face growing pressure to make synthetic content more visible to users while preserving creator workflows and avoiding over-penalisation. The move also shows how provenance tools such as C2PA and automated detection systems are becoming part of mainstream content governance.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

European Commission marks .eu anniversary with internet governance focus

The European Commission has marked the 20th anniversary of the .eu top-level domain, presenting it as a symbol of European identity online and an element of Europe’s technological sovereignty agenda.

The milestone was celebrated during the 2026 European Internet Governance Dialogue in Brussels, where policymakers, technical experts, businesses, civil society representatives, and other stakeholders discussed the future of global internet governance.

According to the Commission, .eu has grown into the fourth-largest country-code top-level domain in Europe, with 3.8 million registrations since its launch in April 2006. The EU officials described the domain as a symbol of European identity online and an example of resilient European digital infrastructure, noting that it has operated without a single outage for two decades.

The discussions also focused on Europe’s broader approach to internet governance, digital autonomy, and the reduction of strategic technological dependencies. Executive Vice-President Henna Virkkunen said Europe is at a pivotal moment where digital autonomy, reduced dependencies, and global leadership in internet governance must go hand in hand.

The Commission linked the anniversary to future EU initiatives, including the upcoming Technological Sovereignty Package, which it said would further support Europe’s vision for a decentralised and open internet where users, businesses, and governments have real alternatives and control over their digital future.

Officials also stressed the importance of ensuring that European values, including human rights, inclusivity, and competition, continue to shape the next decade of global internet governance.

Why does it matter?

The anniversary shows how domain governance and internet infrastructure are increasingly being linked to digital sovereignty and technological dependence. By framing .eu as part of Europe’s identity, resilience, and internet governance agenda, the Commission is connecting a long-standing country-code top-level domain to broader debates on autonomy, infrastructure, trust, and Europe’s role in shaping the future of the open internet.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

Argentina launches AI ‘Digital Twin’ system for social policy simulations

Argentina’s Ministry of Human Capital has launched the ‘Digital Twin’ initiative, an AI-based system intended to simulate potential impacts of social policies before implementation. According to the government, the project is part of broader efforts to use data analysis and predictive tools in public policy planning.

The system is designed to model scenarios related to areas including poverty, subsidies, and human capital development using large-scale datasets. Officials said the initiative could support more anticipatory and data-informed policymaking processes.

The announcement by President Javier Milei was followed by public criticism related to promotional materials associated with the initiative. Opposition representatives have requested additional information concerning the project’s legal basis, data usage, and privacy safeguards.

Privacy specialists and analysts also raised concerns about governance frameworks, data aggregation, and potential profiling risks. The government has not yet publicly detailed oversight mechanisms or specific data protection standards linked to the initiative.

Why does it matter?

Argentina’s Digital Twin project reflects a broader global shift towards using AI to simulate and predict social and economic outcomes, potentially reshaping how governments design and test public policy. If effective, such systems could improve efficiency by allowing policymakers to model interventions before implementation, reducing costly or ineffective decisions.

At the same time, the initiative raises significant governance and civil liberties concerns, particularly around large-scale data aggregation and the potential for algorithmic profiling of citizens.

Without clear transparency, oversight, and privacy safeguards, predictive governance tools risk shifting from policy optimisation instruments into systems that enable expanded state surveillance and reduced accountability.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our chatbot!

Diplo chatbot can make mistakes. Consider checking important information.