• The full name of the legislative file is the ‘Regulation of the European Parliament and of the Council laying down rules to prevent and combat child sexual abuse’ and its reference is 2022/0155(COD);
• It is often referred to as the ‘CSA Regulation’, ‘CSAR’ or ‘CSAM proposal’. It has also been coined ‘Chat Control’ by its critics;
• It is lex specialis to the EU’s Digital Services Act, meaning that it builds on and particularises certain parts of the DSA (those relevant to tackling child sexual abuse material online);
• The legal basis for the Regulation is Article 114 of the Treaty on the Functioning of the European Union (TFEU), which provides for the functioning of the EU Internal Market.

Note:

• The CSA Regulation is different from the ‘Directive on combating the sexual abuse and sexual exploitation of children and child sexual abuse material and replacing Council Framework Decision 2004/68/JHA’ (the CSA Directive), reference 2024/0035(COD), which has been the subject of EU negotiations in 2024 and 2025 and has caused some confusion because of the similar name;
• Whilst there is some relation between the two laws, the Directive is mostly focused on updated EU Member States’ national criminal justice and education frameworks relating to the crime of child sexual abuse;
• This document pool does not include updates or analyses about the CSA Directive. It focuses on the CSA Regulation only.

• Access the official annexes and Commission impact assessment by scrolling down to ‘Commission adoption’ at the following link, and downloading the relevant documents.

• The file is a proposal for a Regulation, meaning that it not (yet) a piece of EU legislation, and therefore its rules do not apply (yet);
• Like any EU Regulation, it has to be agreed by the ‘co-legislators’: the European Parliament and the Council of the EU (member states). The European Parliament adopted their report (the position of the whole Parliament, which they will take as their negotiating mandate into ‘trilogue’ negotiations with the Council) in 2023;
• The file is still being negotiated within the Council of the EU (member states), but despite numerous attempts, the bloc’s 27 countries have not yet been able to agree a deal. As of the second half of 2025, the Danish Presidency of the Council is in the lead, becoming the seventh country to try to broker a deal (see section 7 for more info).

• Originally scheduled for October 2021 and subsequently delayed several times, the file was eventually ‘adopted’ (proposed) by the European Commission on 11 May 2022;
• The lead European Commissioner when the law was proposed was the Commissioner for Home Affairs (2019-2024), Ylva Johansson. Johansson has been superceded by Commissioner Magnus Brunner (2024-2029).
• The lead European Commission cabinet is DG HOME (Directorate-General for Migration and Home Affairs);
• DG HOME have published information and communications including a press release, Q&A, factsheet and public campaign.

• The lead committee in the European Parliament is the committee on Civil Liberties, Justice and Home Affairs (LIBE);
• The Internal Market and Consumer Protection (IMCO) committee is an Associated Committee;
• Three committees are opinion-giving committees: the Women’s Rights and Gender Equality (FEMM) committee, the Culture and Education (CULT) committee and the Budgets (BUDG) committee;
• More information is available in the Parliament’s Legislative Observatory page for the file.

The Parliament agreed its official position (called a “Report”) on 16 November 2023.

More resources about the process in Parliament are available in section 6.

• The Council Configuration is ‘Justice and Home Affairs’ (JHA) (Coreper II);
• The responsible working group is the Law Enforcement Working Party (LEWP);
• Many of the Council’s documents are routinely published in the public register.

As of August 2025, the Council does not yet have an official position.

More resources, including detailed information about the Council negotiations, relevant presidency compromise documents, and dates of key votes, are available in section 7.

• The CSA Regulation is intended to replace Regulation (EU) 2021/1232, the ‘interim ePrivacy derogation’. The derogation expired on 3 August 2024, but was extended on 29 April 2024 because of an ongoing lack of agreement on the CSA Regulation. The extended interim derogation is in force until 3 April 2026;
• Even though a new Parliament was elected in June 2024, the Parliament’s position on the CSA Regulation remains the same as before the elections;
• The CSA Regulation was put forward alongside a complementary but distinct strategy, called ‘Better internet for Kids‘, or BiK+;
• It aims “to protect and empower children in the online world”. The European Parliament’s Culture and Education (CULT) committee developed a Resolution on the strategy, which was adopted in October 2023.

In September 2023, an investigation by journalists published in seven media outlets across Europe raised allegations of a conflict of interest from Commissioner Johansson and DG HOME staff. These allegations include facilitating access to a company with commercial interests in the file, Thorn, and have led to questions about the legitimacy and ethics of the Commission’s process in the preparation of the CSA Regulation:

• Original story in Balkan Insight (in English): https://balkaninsight.com/2023/09/25/who-benefits-inside-the-eus-fight-over-scanning-for-child-sex-content/
  • Zeit (in German): https://www.zeit.de/digital/datenschutz/2023-09/chatkontrolle-eu-ashton-kutcher-thorn
  • Le Monde (in French): https://www.lemonde.fr/article-offert/dxvzicdekfra-6190911/pedopornographie-en-ligne-bataille-d-influence-autour-d-un-texte-europeen-controverse
  • De Groene Amsterdammer (in Dutch): https://www.groene.nl/artikel/wie-heeft-hier-baat-bij-niet-de-kinderen
  • El Diario (in Spanish): https://www.eldiario.es/tecnologia/conflictos-intereses-lucha-ue-pornografia-infantil-internet_1_10535781.html
  • IRPI Media (in Italian): https://irpimedia.irpi.eu/sorveglianze-pericoli-nascosti-regolamento-anti-pedopornografia/
  • Solomon (in Greek): https://wearesolomon.com/el/mag/thematikh/logodosia-diafaneia/poios-ofeleitai-apo-ton-agona-tis-ee-kata-tis-paidikis-sexoualikis-kakopoihshs/
• Additional reporting detailing Europol’s request for the CSA Regulation to be expanded in future to allow scanning for other types od content: https://balkaninsight.com/2023/09/29/europol-sought-unlimited-data-access-in-online-child-sexual-abuse-regulation/
  • Netzpolitik (in German): https://netzpolitik.org/2023/interne-dokumente-europol-will-chatkontrolle-daten-unbegrenzt-sammeln/

The European Parliament’s Civil Liberties (LIBE) committee wrote to the Commissioner to request an explanation, and subsequently received a response from Thorn and from Commissioner Johansson:

• LIBE coordinators letter: https://cloud.edri.org/index.php/s/PMMTGWXXQiom8GZ
• Response from Thorn: https://netzpolitik.org/wp-upload/2023/10/2023-10-02_Thorn_LIBE_Letter.pdf
• Response from Commissioner Johansson: https://cloud.edri.org/index.php/s/TrEykTHYA2Cd4d8

Before this investigation, journalists had already raised other concerns:

• Netzpolitik, Alex Fanta, ‘How a Hollywood star lobbies the EU for more surveillance‘ (2022)

• Later in 2023, researcher Danny Mekić uncovered an illegal advert microtargeting campaign led by Commissioner Johannson and DG HOME featuring deeply emotive imagery to try to persuade citizens and residents in swing Member States to support the Commission’s proposal. In addition to allegedly constituting undue interference in an ongoing legislative process, the ads were specifically targeted on the basis of people’s political views and even religious views (also reported in Wired). The Commissioner originally denied the allegations;
• Among others, MEP Alexandra Geese publicly challenged the Commission’s actions;
• 6 civil society organisations, including ARTICLE19, wrote to the Commission detailing the extent of the allegations;
• Following a complaint to the European Data Protection Supervisor (EDPS) by digital rights group noyb, the EDPS ruled that the Commission had indeed carried out illegal microtargeting, in contradiction to EU law.

• Parallel to the already-mention controversies, digital rights group the Irish Council for Civil Liberties (ICCL) submitted a complaint to the European Ombudsperson in 2023 regarding allegations of maladministration by the Commission for refusing to disclose the composition of their ‘expert group’ on the law. The Ombudsperson ruled that maladministration had indeed occured.
• The Ombudsman later investigated the same DG HOME team for further maladministration in refusing to disclose documents about Thorn’s lobbying activities about the CSA Regulation. Again, maladministration was confirmed, and the Ombudsperson further noted that the proposal seemed to give preferential treatment to Thorn’s commercial interests.
• Subsequently, this time following a complaint from former MEP Patrick Breyer, the Ombudsperson confirmed another count of maladministration linked to the CSA Regulation, this time for Europol’s failure to stop two conflicts of interest by allowing staff members to move to Thorn without following proper rules and procedures.

Because of the widespread criticism from digital and human rights groups, lawyers, UN experts, police forces, certain child protection and child rights experts, and many others, EDRi has called the CSA Regulation “the most criticised draft EU law of all time”.

EDPB-EDPS Joint Opinion 04/2022 on the Proposal for a Regulation of the European Parliament and of the Council laying down rules to prevent and combat child sexual abuse – 28 July 2022

Proposal for a regulation laying down rules to prevent and combat child sexual abuse: Complementary impact assessment, Study, European Parliamentary Research Service – April 2023

Opinion of the Legal Service, Proposal for a Regulation laying down rules to prevent and combat child sexual abuse – detection orders in interpersonal communications – Articles 7 and 8 of the Charter of Fundamental Rights – Right to privacy and protection of personal data – proportionality – 26 April 2023

Opinion: Impact assessment / Regulation on detection, removal and reporting of child sexual abuse online, and establishing the EU centre to prevent and counter child sexual abuse – 15 February 2022

Opinion from the Houses of the Oireachtas, Joint Committee on Justice, on the application of the principles of Subsidiarity and Proportionality – 30 March 2023

Résolution n° 77 (2022-2023), devenue résolution du Sénat le 20 mars 2023, RÉSOLUTION EUROPÉENNE sur la proposition de règlement du Parlement européen et du Conseil établissant des règles en vue de prévenir et de combattre les abus sexuels sur enfants – COM(2022) 209 final

Antrag auf Stellungnahme gemäß Art. 23e Abs. 3 B-VG der Abgeordneten Mag. Carmen Jeitler-Cincelli, BA, Katharina Kucharowits,
Süleyman Zorba, MMag. Katharina Werner, Bakk.

TOP 1 COM (2022) 209 final Vorschlag für eine Verordnung des Europäischen Parlaments und des Rates zur Festlegung von Vorschriften zur Prävention und Bekämpfung des sexuellen Missbrauchs von Kindern (109099/EU XXVII.GP)

• In DE: https://epicenter.works/sites/default/files/antragaufstellungnahme_top1_com2022209final.pdf
• In EN: https://epicenter.works/sites/default/files/antragaufstellungnahme_top1_com2022209final-en.pdf

„Chatkontrolle“ – Analyse des Verordnungsentwurfs 2022/0155 (COD) der EU-Kommission

USNESENÍ výboru pro evropské záležitosti, Návrh nařízení o pravidlech pro předcházení pohlavnímu zneužívání dětí a boj proti němu

Motie van het lid Van Ginneken c.s. over zorgen dat het Europese voorstel geen encryptiebedreigende chatcontrol bevat

• The lead committee in the European Parliament is the committee on Civil Liberties, Justice and Home Affairs (LIBE);
  • The lead Member of the European Parliament (MEP) (aka ‘rapporteur’) for the LIBE committee is MEP Javier Zarzalejos (Spain, European People’s Party). MEP Zarzalejos has continued in the lead after the EU elections;
  • The other MEPs leading in the LIBE committee (the Shadow Rapporteurs) since the 2024 elections are: Alex Saliba (S&D), António Tânger Corrêa (Patriots), Jadwiga Wiśniewska (ECR), Hilde Vautmans (Renew), Markéta Gregorová (Greens) and Isabel Serra Sánchez (the Left);
• The Internal Market and Consumer Protection (IMCO) committee is an Associated Committee;
  • The rapporteur for the IMCO committee was MEP Alex Saliba (Malta, Socialists & Democrats).
• Three committees were opinion-giving committees: the Women’s Rights and Gender Equality (FEMM) committee, the Culture and Education (CULT) committee and the Budgets (BUDG) committee.

• Draft report: ***I Draft report on the proposal for a regulation of the European Parliament and of the Council Laying down rules to prevent and combat child sexual abuse, Committee on Civil Liberties, Justice and Home Affairs, Rapporteur Javier Zarzalejos (19.4.2023), available at: https://www.europarl.europa.eu/doceo/document/LIBE-PR-746811_EN.pdf
• Amendments tabled in LIBE committee:
  • Amendments 277 – 544
  • Amendments 545 – 953
  • Amendments 954 – 1332
  • Amendments 1333 – 1718
  • Amendments 1719 – 1909
• Compromise amendments: not publicly available
• Committee vote: 28 September (delayed) 9 October 2023 (delayed) 26 October 2023 (delayed) 14 November 2023 (adopted)
• Plenary: vote or confirmation of mandate expected 8/9 November or w/c 20 November 2023 held on 22 November 2023 (confirmed)
• Final report: adopted. Parliament now has to wait for the EU Council to reach a position so that they can start inter-institutional negotations (trilogues).

• Draft: Draft Opinion (8.2.2023), available at: https://www.europarl.europa.eu/doceo/document/IMCO-PA-740727_EN.pdf
• Final: Opinion of the Committee on the Internal Market and Consumer Protection for the Committee on Civil Liberties, Justice and Home Affairs on the proposal for a regulation of the European Parliament and of the Council Laying down rules to prevent and combat child sexual abuse, Rapporteur for opinion: Alex Agius Saliba (3.7.2023), available at: https://www.europarl.europa.eu/doceo/document/IMCO-AD-740727_EN.pdf

• FEMM: [Final] Opinion of the Committee on Women’s Rights and Gender Equality for the Committee on Civil Liberties, Justice and Home Affairs on the proposal for a regulation of the European Parliament and of the Council Laying down rules to prevent and combat child sexual abuse, Rapporteur for opinion: Heléne Fritzon (29.6.2023), available at: https://www.europarl.europa.eu/doceo/document/FEMM-AD-746640_EN.pdf
• CULT: [Final] Opinion of the Committee on Culture and Education for the Committee on Civil Liberties, Justice and Home Affairs on the proposal for a regulation of the European Parliament and of the Council Laying down rules to prevent and combat child sexual abuse, Rapporteur for opinion: Niyazi Kizilyürek (29.3.2023), available at: https://www.europarl.europa.eu/doceo/document/CULT-AD-737365_EN.pdf
• BUDG: [Final] Opinion of the Committee on Budgets for the Committee on Civil Liberties, Justice and Home Affairs on the proposal for a regulation of the European Parliament and of the Council Laying down rules to prevent and combat child sexual abuse, Rapporteur for opinion: Niclas Herbst (9.6.2023), available at: https://www.europarl.europa.eu/doceo/document/BUDG-AD-740759_EN.pdf

• The file has been allocated to the Justice and Home Affairs configuration of the EU Council;
• Preparatory work is being led by the Law Enforcement Working Party (LEWP);
• The first Presidency to start internal (within the Council) negotiations towards a Council position was the Czech Republic, who held preliminary discussions before passing the Presidency on to Sweden at the beginning of 2023 who continued the discussions before passing on to Spain in summer 2023;
• The EU Council’s General Approach (position) was first scheduled to be voted on by Justice and Home Affairs ministers representing each EU member state on 28 September 2023. This vote was not taken, as a significant number of member states had informed the Spanish Presidency of the EU Council that they would not be able to agree to the law in its current form;
• Since then, Belgium, Hungary, and Poland have all tried and failed to broker a deal, with several Ministers’ votes held during this time. The current Danish Presidency (as of the second half of 2025) has therefore become the seventh country to try to find a common Council position on the CSA Regulation, but so far have not been successful.
• The Danish Presidency has scheduled a working meeting (LEWP) for 12 September 2025 and a vote of Ministers on 14 October.

• Presidency Compromise text (DK attempt #2) – 24 July 2025 – document 11596/25
• Presidency Compromise text (DK attempt #1) – 1 July 2025 – document 10131/25

• Presidency Compromise text (PL attempt #3) – 12 May 2025 – document 8621/25
  • Correction, 13 May – document 8621/25
  • Progress report from the Polish Presidency – 2 June 2025 – document 9277/25
• Presidency Compromise text (PL attempt #2) – 4 April 2025 – document 7080/25
• Presidency Compromise text (PL attempt #1) – 28 January 2025 – document 5352/25
  • Exchange of views
  • Feedback from member states

• Presidency Compromise text (HU attempt #4) in the form of an escalation to ambassadors (COREPER) seeking political endorsement – 24 September 2024 – 29 November 2024 – documents 16329 and 16547
  • Presentation of Presidency Compromise text for for vote at ministers’ meeting – 3 December 2024 – document 16547/24
  • Critical opinions of Austria and Slovenia
• Progress report (state of play) – 7 October 2024 – document 13726/24
• Presidency Compromise text (HU attempt #3) in the form of an escalation to ambassadors (COREPER) seeking political endorsement – 24 September 2024 – document 13726
• Presidency Compromise text (HU attempt #2) – 9 September 2024 – document 12406
  • Discussion document
• Presidency Compromise text (HU attempt #1) – 14 June 2024 – document 11277/25

• Presidency Compromise text (BE attempt #4) in the form of escalation to ambassadors (COREPER) for political endorsement – 14 June 2024 – document 11277/24
• Belgian progress report – 7 June 2024 – document 10666/24
• Presidency Compromise text (BE attempt #3) – 28 May 2024 – document 9093/24
  • Belgian progress report – 7 June 2024 – document 10666/24
• Presidency Compromise text (BE attempt #2) – 9 April 2024 – document 8579/24
• Presidency Compromise text (BE attempt #1) – 27 March 2024 – document 8019/24
  • On the basis of new approach detailed in 7462/24

• Progress report from Spanish Presidency – 15 December 2023 – Document 16098/23
• Escalation of controversial questions to ambassadors (COREPER) for political endorsement – 10 October 2023 – document 12826/23
• Leaked notes from German delegation about Law Enforcement Working Party meeting on 14 September 2023, discussing the compromise text of 8 September 2023 (in DE) – EU-Rat verschiebt Abstimmung über Chatkontrolle
• Presidency Compromise text (ES attempt #3) – 8 September 2023 – Document 12611/23
• Presidency Compromise text (ES attempt #2) – 1 August 2023 – Document 12066/23
• Presidency Compromise text {ES attempt #1) – 16 July 2023 – Document 11518/23

• Presidency Compromise text – 29 June 2023 – Document 10833/23
• Presidency compromise text – 8 June 2023 – Document 9971/23
• Presidency compromise text – 17 May 2023 – Document 9317/23
• Presidency compromise text – 4 May 2023 – Document 8845/23
• Presidency compromise text – 21 April 2023 – Document 7842/23
• Presidency compromise text – 23 March 2023 – Document 7595/23
• Presidency compromise text – 8 March 2023 – Document 7038/23

Document 9512/23

Document 9533/23

Document 8285/23

Document 8833/23

Document WK 10235/2022 ADD 10 REV 2.

Document has not been made public by the Council, but was leaked to Wired.

Additional analysis by Wired available here.

Document 8200/23

Document 7354/23

Document 14862/22

These are listed in our blog, ‘Is this the most criticised EU law of all time?’

‘CSAM’ stands for ‘Child Sexual Abuse Material’. It’s a term used to refer to videos, photos, and sometimes written or audio content, which depict the sexual solicitation, abuse and exploitation of under-18s. Generally, the term CSAM is used to refer to the online sharing of such material, for example via messages, or in materials that are uploaded to a cloud server.

Sometimes the terms ‘CSEM’ or ‘CSAEM’ are used to specify that “exploitation” is also included.

‘OCSA’ stands for ‘online child sexual abuse’ and is the term used in the EU’s CSA Regulation to include both the material (CSAM) and the associated behaviours, such as grooming.

A derogation is an exception, passed via a legislative process, to carve out provisions of another law that will no longer apply in the specific context in which the derogation operates.

Wikipedia describes lex specialis as follows: “Lex specialis, in legal theory and practice, is a doctrine relating to the interpretation of laws and can apply in both domestic and international law contexts. The doctrine states that if two laws govern the same factual situation, a law governing a specific subject matter (lex specialis) overrides a law governing only general matters (lex generalis).”