Tech Pro Brief

Mon 18 November 2024 | View online
Estimated reading time: 4-5 minutes


Good day ,



Thank you for joining us for our daily Tech Pro briefing. Today we are covering the ongoing work on the implementation of the AI Act, an attempt to revitalise the CSAM file, and the Gaia-x cloud initiative.


You have received this email because you have signed up for the daily Tech Pro Brief. If you would like to manage your subscription, click here.  


🟡 Top stories

Busy AI times

AI stakeholders have a lot on their plate these days:

  • GPAI CoP. The four working groups will meet to discuss the first draft of the Code of Practice for general-purpose AI this week. It was published on Thursday, meaning the roughly 1,000 stakeholders had little time to analyse and prepare for the meetings.

    • Each working group will have a one and a half hour meeting every day this week, Monday through Thursday, then the chairs will summarise findings in a plenary on Friday.

    • For the uninitiated, we share the schedule, format, and questions shared by the AI Office for each working group. Written input must be submitted by 28 November.

  • Prohibitions and definitions. A four-week consultation was launched Wednesday last week on which systems should be considered as carrying "unacceptable risk," and which should be considered "AI" under the AI Act.

    • Prohibitions are set to enter into force on 2 February, and some stakeholders are complaining that the Commission is way too late, especially given the low level of detail shared in the consultation.

      • They worry the focus on the GPAI CoP takes oxygen from other important and messy part of the Act, both within and outside the Commission. A more detailed version is circling inside the Commission but hasn't been shared with stakeholders, Euractiv understands.

  • IMCO. At the Parliament's IMCO committee meeting today, Brando Benifei (S&D, Italy) will report back to MEPs on the first meeting of the cross-committee working group on the implementation and enforcement of the AI Act, which took place on 24 October.

    • The Commission will also present findings of the Digital Fairness Fitness Check.

  • AI Board. The Board is currently setting up its own working groups with national experts. The working groups will monitor the CoP, the prohibitions, and other processes related to the implementation of the AI Act to prepare topics for the AI Board, which is made up of member states' representatives to monitor the implementation of the AI act states.

    • The Board's next meeting is set for 10 December, one person involved told Euractiv.

🟡 Platforms

CSAM, again?

A group of 77 organisations working on children's protection is looking to revitalize the debate around the Children Sexual Abuse Materials (CSAM) Regulation.


They signed an open letter, publicized today, and are planning meetings and events at the EU Parliament this week. Perhaps the new batch of MEPs will breathe fresh air in their efforts.


"EU Member States and Members of the European Parliament have a critical opportunity to adopt a strong EU legislative framework" with the CSAM regulation, the joint letter said.


The file has been stuck in the council for over two years. The thorn? Encryption. The regulation has been criticized for potentially allowing the scanning of private messages on platforms that use end-to-end encryption, such as WhatsApp or Gmail.


The latest drafts have gone back and forth trying to balance the drive to have more transparency into private messages for law enforcement, versus protecting encryption, for example by limiting detection orders to known material. Some technical experts say there is no way for law enforcement to peak into end-to-end encrypted communications without bulldozing over the digital rights of innocent people.


"The Regulation must enable the prevention, detection, removal and reporting of all forms of child sexual abuse content (including grooming) in all online spaces where children are present, including encrypted spaces," the 77 organisations said in their letter.


Last Friday, the High Level Group (HLG) on access to data for effective law enforcement met to come up with a concluding report on umbrella recommendations on encryption and law enforcement.

🟡 Industrial strategy

Cloud labels

Some cloud providers think labelling cloud services as EU-made will help the bloc's industry. But the former CEO of Gaia-X, one of the EU's flagship cloud programs, says labels are only part of the solution; “Enforcing Gaia-X labels will not save Europe," Francesco Bonfiglio told Euractiv.


Gaia-X is a politically-led initiative which originally aimed to develop an EU federated data and cloud ecosystem. The project met limited success in actually getting such an ecosystem up and running. The market share of EU cloud providers in the bloc has continued to shrink since Gaia-X was founded.  


Instead, the project has pivoted to create standards, specifications, and labels needed for cloud providers in Europe to be interoperable and trustworthy.


Providers that fulfill certain criteria can get a Gaia-X label; "a mark of confidence which reflects the completion of different criteria related to transparency, data protection, security, interoperability, portability, sustainability, and European Control," says their website.


Some firms are jumping on the bandwagon.

  • French electricity provider EDF and European airplane maker Airbus already committed to including Gaia-X labels into their next cloud calls for tenders.

  • Lobby organisation CISPE, which includes mostly European cloud service providers and US hyperscaler Amazon, advocated that Gaia-X association and its members follow EDF and Airbus's examples last Thursday.

    • For CISPE, "customer demand" will drive Gaia-X long-term relevance.

    • French OVHcloud shared a similar view, calling on cloud consumers to adapt Gaia-X labels.


These labels "are necessary," but the EU "needs to enable the creation of a concrete federation of cloud service providers based on a new business model that can compete against US hyperscalers,” Bonfiglio said.  


Labels will not be accepted as a protectionist “mechanism by the open market, nor [will they] compensate for the lack of capacity and spread of portfolio that make EU providers weaker," he stated.


If the EU is to become a champion of the data economy, it needs to "gain control of the hosting and of the processing of data through its own cloud computing," Secretary-General of the European DIGITAL SME Alliance Sebastiano Toffaletti told Euractiv.


"It is too late for the EU to [...] develop systematic challengers to the major US cloud providers," wrote Former Italian Prime Minister Mario Draghi in his September report on the single market.


Draghi advised Europeans to develop sovereign cloud solutions, for reasons of strategic autonomy.

Read more

Today’s brief was brought to you by Euractiv’s Tech team

Today’s briefing was prepared by the Tech team: Eliza Gkritsi, Théophane Hartmann, and Jacob Wulff Wold. Share your feedback or information with us at digital@euractiv.com.

Transfer to third parties is not authorised. If you found this newsletter valuable, please recommend a free trial.

Contact us - Manage your briefing subscriptions

© Euractiv. All rights reserved.