On the Online Safety Act
A few years ago I wrote a letter to my then MP Tulip Siddiq, with regard to the Online Safety bill.
This bill has now become the Online Safety Act and the regulator, Ofcom is preparing the rules and regulations around this.
What I then was worrying about, now all seems to come through. So I wrote the following letter to my new MP Georgia Gould.
Dear Georgia Gould MP,
I wanted to write to you as my MP regarding the UK's Online Safety Act (OSA), which was passed under the previous government with wide support from Labour.
Although it was always touted as promoting online safety, targeting the large social media companies, it is currently already having serious unintended consequences.
Because it is not just the larger social media companies that are in scope, but it also affects community forums, discussion groups about issues in Open Source software, and small independent sites. In most cases, these are not commercial entities making money from stirring up controversies, which is what in my opinion the OSA should have focussed on.
Each platform that has some relation with user-to-user to content is in scope, and the operators needs to a complicated risk assessment. Although Ofcon is now coming out with some help 1, and they talk about "proportionality", I would argue that many of these requirements are not proportional at all.
Personally, I would, need to do a risk assessment for several "services" (that I have identified so far), none of which are commercial—there are not even ads, algorithms, or tracking:
-
The comments for my low-traffic blog (https://derickrethans.nl), as users can reply to comments by other users, and potentially add links to photos, even though all comments are pre-moderated.
-
The issue tracker for one of my Open Source projects (https://bugs.xdebug.org). I self-host this, but users can submit bug reports, with screenshots showing where something went wrong.
-
The web-based interfaces to the discussion groups of a large Open Source language project (PHP) (https://news-web.php.net/). This is a language used by upwards of 50% of the web. The groups are for discussing technical details of the language, but as it is user-to-user and not just e-mail, it is in scope.
-
I help run a Mastodon server for the community of users for this language (https://phpc.social) as well, which is also clearly in scope.
-
A small website that I, and a few other users, use for storing and sharing notes on whiskies we have tried (https://dram.io).
If I do any of these assessments wrong, or neglect to do, I would be liable, perhaps with severe penalties. Some of those deal with images, others with alcohol (so 18 and up). But none of them are probably high risk. But I still have to this. And these 5 are just examples that affect me. And nothing would stop malicious entities from making spurious complaints or uploads to get me in trouble.
But it goes further, resources and communities grown over decades will be gone because the consequences of enforcement under the OSA are so draconian that anyone rightly concerned about their users and the law isn't going to take the risk of that liability 2.
Ironically those who don't care about their users or UK law will just ignore it and likely be beyond prosecution/enforcement anyway, while those who do genuinely care about the actual safety would find it really hard and costly.
The worst about this is this will do is the opposite of the intentions of the OSA, and consolidate power in the large companies, as small independent operators shut their services down.
This is pretty much exactly the opposite of what we need right now.
We need diversity of online communities and opportunities for people to create safe online spaces that are not subject to the whims of someone like Mark Zuckerberg or Elon Musk.
As a matter of fact, there is already a list being compiled of services that have decided to shut down, or block access to users from UK locations: https://onlinesafetyact.co.uk/in_memoriam/ — I expect that list to grow drastically over the next few months.
I hope you can urge the UK government to amend things and clarify the position for small operators (some of which that have been part of the internet since the earliest days), so the UK doesn't lose all the small, independent, curated online communities, nor small independent non-UK companies blocking access for UK users.
With kind regards, Derick Rethans
Please write to your own MP if you share similar concerns, and feel free to copy parts of this letter and adapt them to your own examples. You can find out how to contact your elected officals on WriteToThem.
Life Line
I walked 7.4km in 1h16m10s
Updated a fast_food
Updated a cafe, a pet shop, and a bench; Confirmed a cafe, a convenience shop, and a motorcycle_repair shop
I walked 5.0km in 1h2m27s
I walked 1.1km in 10m08s
Updated a cafe; Confirmed 3 convenience shops, a fast_food, and a laundry shop
Created a fitness_centre; Updated an event_caterer office and a social_facility; Confirmed a restaurant and a pharmacy
I walked 7.6km in 1h29m58s
Updated a pub
I walked 10.8km in 2h18m39s
Created 3 entrances
I walked 6.5km in 1h8m25s
Created 2 fast_foods, a convenience shop, and 2 other objects
I hiked 10.6km in 2h59m33s
I walked 3.2km in 1h17m20s
I walked 3.3km in 1h2m23s
I walked 1.6km in 16m19s
Updated a restaurant
I walked 8.0km in 1h27m42s
Merged pull request #1074
Bump actions/download-artifact from 6 to 8
Merged pull request #1073
Bump actions/upload-artifact from 6 to 7
Merged pull request #1072
Bump geekyeggo/delete-artifact from 5 to 6

Shortlink
This article has a short URL available: https://drck.me/osa1-jbw