Key takeaways
- The European Commission has published the final version of (non-binding) guidelines on measures to protect minors (U18) online
- The guidelines introduce stronger requirements for age assurance and verification, with the introduction of the EU age verification solution as a reference standard
- The guidelines expand obligations for default privacy and safety settings, including more granular controls
- The guidelines emphasize transparency, accessibility, and child participation, ensuring that minors and their guardians are informed and empowered
- The guidelines enhance moderation and reporting mechanisms, with a focus on rapid response, human oversight, and cross-platform cooperation
The European Commission has now finalized its long-awaited guidelines on measures to comply with article 28(4) of the Digital Services Act (DSA). While non-binding, they set out the Commission’s expectations regarding the implementation of appropriate and proportionate measures to protect minors’ privacy, safety, and security and serve as a reference point for national authorities and Digital Services Coordinators in interpreting and enforcing article 28 DSA.
The guidelines have not been completely rewritten since the draft consultation and final versions, but there are some key changes to be aware of. In the PDF below, we have highlighted the most relevant points and potential implications for online platform providers.
Client Alert 2025-196