New EU Rules Would Require Chat Apps To Scan Private Messages for Child Abuse (theverge.com) 204
The European Commission has proposed controversial new regulation that would require chat apps like WhatsApp and Facebook Messenger to selectively scan users' private messages for child sexual abuse material (CSAM) and "grooming" behavior. The proposal is similar to plans mooted by Apple last year but, say critics, much more invasive. From a report: After a draft of the regulation leaked earlier this week, privacy experts condemned it in the strongest terms. "This document is the most terrifying thing I've ever seen," tweeted cryptography professor Matthew Green. "It describes the most sophisticated mass surveillance machinery ever deployed outside of China and the USSR. Not an exaggeration." Jan Penfrat of digital advocacy group European Digital Rights (EDRi) echoed the concern, saying, "This looks like a shameful general #surveillance law entirely unfitting for any free democracy." (A comparison of the PDFs shows differences between the leaked draft and final proposal are cosmetic only.) The regulation would establish a number of new obligations for "online service providers" -- a broad category that includes app stores, hosting companies, and any provider of "interpersonal communications service."
Not a chance. (Score:5, Insightful)
Even if this somehow manages to actually get voted into law (and that's already a rather low chance), it's not going to survive the first legal challenge, considering this is illegal in almost all member countries.
The amount of laws that would need to be changed for this to not be illegal is staggering, and I seriously doubt any country is going to do that.
Re: (Score:3, Interesting)
Re:Not a chance. (Score:4, Interesting)
It isn't illegal when the law man is doing it.
The law man has laws to follow. It's the reason stupid laws get struck down by courts all the time, even in Europe.
Re: (Score:2)
It's the reason stupid laws get struck down by courts all the time, even in Europe.
Actually no.
Laws can only be "struck down", if there is a higher law contradicting them, e.g. a constitution.
Re: Not a chance. (Score:3)
The EU isn't the US. They already have a tendency to favor safety much more than liberty. In the US, free speech is much more ironclad for this reason. If the EU wants to censor you, they just call it hate speech and say that it's necessary to protect the public.
Likewise, privacy takes a back seat to safety, or at least perceived safety, in the EU. For example, in Germany you can't play video games without providing ID, because they're afraid that if young people play GTA, then they'll turn cars into improv
Re: (Score:2)
You really think you have free speech in USA? Let me spoil it for you: https://dilbert.com/strip/1992... [dilbert.com]
Re: (Score:2)
The point of the EU is to put stuff into law that is laughed out of court in the national courts. Except in France or Sweden.
Re: (Score:2)
Usually EU law is considered supreme and national courts abide by it. The court that can and sometimes does nullify bad EU rules is the European Court of Justice. Of course, someone has to sue for that to happen, the court does not do it on its own initiative.
I wouldn't take that bet (Score:2)
This is the same EU with the 'court of human rights' that gives itself the power to balance the right to freedom of expression with the rights of others to have their religious feelings protected. [coe.int]
They will start at the position that the government needs to spy on you because 'think of the children', and do mental double backflips to work backwards from that conclusion, despite whatever laws you think you have that would protect you.
Re: (Score:2)
The European Court of Human rights is nothing to do with the EU.
Please stop Dunning-Krugering things you know very little about.
Re: (Score:3)
You seem to not understand how the EU works.
EU member states have contractually committed themselves to be little more than slave states concerning EU edicts like this. If a new EU edict has been proclaimed, member nations are contractually obliged to make it into national law, whatever way, under threat of punishment.
Re: (Score:2)
You seem to not understand how the EU works.
EU member states have contractually committed themselves to be little more than slave states concerning EU edicts like this.
LOL, brainwashed by Nigel Farage?
Elected MEPs can set laws withn the EU's jurisdictions as long as they don't breach the ECHR or the Charter of Fundamental Rights. That's what they're elected to do.
If you don't like it, go to Brexitland.
Re: (Score:2)
Well,
as usually the article is super bad.
And here is the original proposal: https://ec.europa.eu/commissio... [europa.eu]
I'm pretty sure it will be voted into law, and there is no real human possible objection to it, unless you are a child abuser yourself.
Re: (Score:2)
Re: (Score:2)
You missinterprete my answers.
I'm neither pro nor against that law proposal.
I'm against idiots who post bullshit, that is all.
And the law does not violate privacy, anyway.
No one reads/sees your messages.
Re: (Score:2)
>And you also no longer have guns to get your rights back
lol, you gave away where you live.
Re: (Score:2)
>And you also no longer have guns to get your rights back
lol, you gave away where you live.
He literally has "gun" in his username.
Re: (Score:2)
Actually he doesn't, really. He's not the same person. There's only one actual account, and the rest are either trolls, or alt accounts (fairly sure they're trolls, though..)
Re: Not a chance. (Score:2)
The US still has a chance.
Not really. Not without some serious crap happening first.
Whne you Scan Private Messages (Score:5, Insightful)
How about the EU puts a rule to randomly search vehicles on the road, in case they have kidnapped children in them.
Re: (Score:2)
Re: (Score:2)
Amazon is already at it. Maybe write your MP that they should subsidize that stuff.
Re: Whne you Scan Private Messages (Score:2)
Re: (Score:2)
Nah the NSA are behind the curve. Google, Facebook, Amazon, Tesla and the phone companies are the guys that know everything about you,
Re: (Score:3, Insightful)
Re: (Score:3)
As an interesting addendum to this important point here is a discussion between Supreme Court Justices Antonin Scalia and Stephen Breyer where they discuss their approaches to this very topic.
They do some interesting discussion on how with Scalia being an "originalist" and how he takes the framing of the original document and Breyer is more of a living document guy and how he attempts to translate the values of the constitution. Many times their methods seem to blur together really.
It was something I was i
Re: (Score:2)
That's one of the reasons they created an amendment process [...] so instead they essentially declared the US constitution to be a "living document".
That is not typically what people refer to when they talk about the US Constitution being a "living document". The claim of it being a living document is that it can/should be interpreted differently as the world changes without having to resort to a formal amendment process.
D'ya suppose the Second Amendment would've ever passed if the 3D printed firearms or even the Gatling Gun had existed back then?
Frankly, yes. They wanted the militia to be instead of a standing army. Madison lays out his idea pretty well in Federalist No. 29. You'd basically just let the entire populous have military arms and equipment privately, train them ma
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
but they never conceived of fully automatic weapons, movies/radio/television, automobiles, the internet, child pornography, etc.
Although most of those I would agree are probably true, I think pornography and child pornography have been around for a long time.
Re: (Score:2)
Did you actually read how to operate the Puckle Gun? You had to unscrew it, rotate the chamber, close the pan, screw it back down, and then fire it. 9 rounds per minute. Sure sounds like an AR, yeah?
Re: (Score:2)
Actually an AR is very much similar to your Puckle gun.
Remember and AR-15 is NOT a fully automatic rifle.
It is a semi-automatic weapon that fires once per trigger activation.
In that case it is very much like your puckle gun, except the rate of fire is faster due to the resetting of the trigger being a bit fa
Re: (Score:2)
Re: (Score:2)
There are far better examples of repeating weapons than the Puckle gun. And predating that as well. The Kalthoff repeater [wikipedia.org], for example. And the authors of our Constitution included individuals [wikipedia.org] who were well versed in scientific and technological advances. And who understood that it was only a matter of time before the Puckle design would be refined and improved.
Re: (Score:2)
Re: (Score:2)
I think
Spotted the problem right there.
Re: (Score:2)
Yes, your argument absolutely is every bit as stupid.
Re: (Score:2)
OK so what's a "well regulated militia"
Any group the state sees fit to organize to defend its territory or laws. Police, highway patrol, state national guard, etc. Organized from the public who are already armed, since arming a militia is reserved to the US Congress. A state can't make possessing arms conditional on being a member of the "well regulated militia" because that would be an end run around the US Constitution. Except for the national guard. Which is organized by each state but provided arms by congressional authorization.
Re: (Score:2)
Re: (Score:2)
And a ful auto rifle is a very rare thing indeed in the US, you'll not find many/any in use in the US.
The Hughes amendment, from 1986 says that ONLY full auto weapons made before 1986 can be obtained legally by any US civilian.
So, those weapons are VERY $$$$ due to rarity, not to mention the paperwork, LONG wait times and $200 tax stamp for each you ha
Re: (Score:2)
Re: (Score:3)
It really doesn't matter what armament you want. They would have probably been in favor of it because they had just had to overthrow an oppressive government and wanted the people to have whatever arms the government they had just fought was equipped with to do it again if needed. That doesn't mean everyone could afford a small nuke now anymore than everyone could afford a cannon or a frigate then. That's the thing about the big weapons of today. Even if the government took the 2nd amendment the way the fou
Re: (Score:2)
>That doesn't mean everyone could afford a small nuke now
We could crowdfund it. Or gofundme.
Re: (Score:2)
Re:Whne you Scan Private Messages (Score:4, Interesting)
They are no longer Private.
Worse. When you introduce technology that lets companies do this on behalf of one government, nothing can prevent that technology from being used by *any* government to do *any* arbitrary spying.
But I hope the EU commissioners enjoy having their private messages scrutinized and reported if they are critical of Xi Jinping or Vladimir Putin.
The sorts of clueless people who can't understand this concept have absolutely no business being in any position of authority, because it is instantly clear that they haven't given more than the most superficial thought to the worst-case consequences of their ideas. The reason so many people screamed when Apple did a much, much smaller version of this is because the worst-case consequences of even a massively scaled-back version of this idea are utterly catastrophic for freedom worldwide. And that's before you even start considering the consequences of false positives on individual safety.
Frankly, it is downright embarrassing that the EU commissioners are so utterly clueless that they would propose a scaled-up version of the same idea that led to Apple being utterly crucified in the press just a couple of months before.
If this happens, it will be absolutely necessary for social media to turn off their apps in Europe and ship a separate app for use in Europe, because nobody anywhere else in the world is going to put up with an app that has a giant government wiretapping back door.
Re: (Score:2)
I think the clueless people is you.
The proposed law is supposed to check images for child porn.
Not to spy on your messages, regardless if they are pro Putin or anti Putin or what ever.
For that: you would need another law
No idea why we have idiots in the year 2022 who do not even know how a law works.
Re: (Score:2)
Re: (Score:2)
Cant be done.
As the law is explicitly about child porn.
Can't be so hard to grasp that you can not simply spy on anyone. To "spy" on a target person one needs a warrant.
Re: (Score:2)
Re: (Score:2)
But hashes they check for are not public knowledge so in practice they can check for anything they'd like.
No they can't.
The system is run by the corporation offering the service.
No one except their programmers have access to that.
And they most likely would not stay silent if an unauthorized government agency suddenly demands code changes to search for something different than formulated in the law.
Re:Whne you Scan Private Messages (Score:5, Insightful)
I think the clueless people is you.
The proposed law is supposed to check images for child porn.
Unless the summary and the original article are both wrong, you are wrong. It also requires checking for "grooming behavior", which has nothing to do with images.
Also, you're completely missing the whole point, which is that once you break the encryption by adding code on the device that can apply AI to look for unknown images that are flagged by some arbitrary object recognition neural network, it can look for any arbitrary things matched by whatever neural network some foreign government might insist on supplying to them, whether the thing matched by that neural net turns out to be child porn or photographs of sensitive documents.
Worse, because this would have to be done by neural networks, you could never be absolutely sure that they aren't spying. They could slip a few images into the training set that match some specific set of interesting keywords, and you'd never know it just by looking at the model or running some reasonable set of test images/text through it, and then one day, boom. Suddenly Russia knows that the U.S. is planning to take some action in Ukraine, because some image or phrase triggered the recognizer. In some cases, governments might not even need to see the document to gain critical insight; the mere existence of something matching a particular recognizer could be enough to leak state secrets.
And before you say, "Yes, but what if they refuse to allow the government to provide the neural networks?" I would point out that China could easily pass a law saying that if a company wants to operate in China, they have to allow the government to provide their own neural networks. And boom, they bend over. As long as the answer is "We can't do this," it won't happen. The second somebody says, "We could maybe do it this way," the floodgates suddenly open, and every authoritarian government in the world starts making demands.
The only way to prevent this is to draw a line in the sand and absolutely refuse to allow any back doors to crypto. Folks have been saying this since the 1990s Clipper Chip fiasco, but for some reason, the government folks who want to spy on the public just can't seem to get it through their heads that once a back door exists, there's no way to guarantee that it won't be used in ways that are unintended.
IMO, you're hopelessly naïve if you think this won't be abused. It isn't a question of "if", but "when" and "how".
Re: (Score:2)
Unless the summary and the original article are both wrong, you are wrong. It also requires checking for "grooming behavior", which has nothing to do with images.
Yes, the summary is wrong and the article is wrong too. But the article links to the proposal in the third sentence.
it can look for any arbitrary things matched by whatever neural network some foreign government might insist on supplying to them,
And how exactly would a foreign government get his code on my device? You are just silly.
If a foreign go
Re: (Score:2)
Europe and ship a separate app for use in Europe, because nobody anywhere else in the world is going to put up with an app that has a giant government wiretapping back door.
There is no giant government tapping backdoor. Perhaps you should read the proposals before knee jerking off.
Especially as the government has absolutely nothing to do with the process.
Re: (Score:3)
Europe and ship a separate app for use in Europe, because nobody anywhere else in the world is going to put up with an app that has a giant government wiretapping back door. There is no giant government tapping backdoor. Perhaps you should read the proposals before knee jerking off. Especially as the government has absolutely nothing to do with the process.
Of course it's a giant government wiretapping back door. What do you think scanning private messages with a pattern recognizer is? You don't have to have the actual contents of the message for certain messages' existence to be a problem. Merely flagging someone as having expressed dissident statements about the leader of an authoritarian regime could be deadly. And once the support code exists for running these recognizers to detect CSAM, the same code can potentially be used for that, too, either with
Re: (Score:2)
Of course it's a giant government wiretapping back door.
No it is not.
Or you have weird ideas about:
a) how a government works
b) what wire tapping actually is
Merely flagging someone as having expressed dissident statements about the leader of an authoritarian regime could be deadly.
And that is not possible with this proposed system. Again: learn to read about the topic instead knee jerking bullshit.
Re: (Score:2)
Of course it's a giant government wiretapping back door. No it is not. Or you have weird ideas about: a) how a government works b) what wire tapping actually is
Wiretapping is government gaining access through some presumably authorized means to the contents of private communications. This is quite literally wiretapping. The communication is private, and the government is able to get their hands on a flag that says that someone's communication contains a photo or text that a neural network says is dangerous. In this particular case, it is because some machine learning model or equivalent says that it might contain underage nude photos or text communication inten
Re: (Score:2)
Wiretapping is government gaining access through some presumably authorized means to the contents of private communications. This is quite literally wiretapping.
No it is not.
Wiretapping is: RECORDING EVERYTHING THAT GOES OIVER THE WIRE.
Re: (Score:2)
But swap in a different neural network, and that exact same code is now snitching on political dissidents with no changes other than swapping out a single data file!
NO ONE CAN DO THAT. How dumb are you?
If one could, they would do it right now already.
Re: (Score:2)
Again, learn to RTFA instead of defending fascism.
I do not defend fascism, or this proposal even (the one you still have not read yet).
I argue against your WRONG ARGUMENTS!
That is all.
Commissioner trying to thread a needle (Score:2)
Firstly, all measures are voluntary.
As we know, it's impossible to detect grooming without decrypting messages.
So you have four options:
1. Don't weaken encryption and warn those who identify as young girls if they're talking a lot to older men.
2. Weaken encryption for young girls talking a lot to older men.
3. Weaken encryption for everyone.
4. Ban children from using it.
I can't see Apple or Meta doing #3 or #4. Everyone will probably do #1.
https://www.theverge.com/2022/... [theverge.com]
Re: (Score:2)
So you have four options:
1. Don't weaken encryption and warn those who identify as young girls if they're talking a lot to older men.
Which doesn't detect anything, and thus doesn't meet the requirements because it can't catch anybody.
2. Weaken encryption for young girls talking a lot to older men.
And now they send nudes to their teenage boyfriends, and suddenly somebody manages to get past the newly weakened encryption and get their hands on the photos, and there's liability all around. Nobody will do this one, either. Not to mention that the day their boyfriends turn 18, if the CSAM filter flags them as having dirty pics of their 17-year-old girlfriends, suddenly they're dangerous predators and th
Just when I thought EU privacy law was insightful (Score:5, Insightful)
"Think of the children" (Score:2)
Gotcha! Door's open boys!
A bunch of anthropomorphic rolled up sheets of paper containing every fascist's dream law runs up the steps into the house of government.
Re:"Think of the children" (Score:5, Funny)
If you think of the children all the time, chances are you're a pedo.
How is this suppose to work? (Score:2)
Can't wait for it to flag things like, "Hey, I beat my kid -- at checkers!"
#ThinkOfTheChildren-LosingAtCheckers
Re:How is this suppose to work? (Score:5, Insightful)
Re: (Score:2)
Also, in end-to-end encrypted chats, the scanning would have to run as software on your phone. Depending how sophisticated its language recognition was, that could be a battery consumer. Relatively minor compared to the lack of privacy. How soon before it would be reconfigured to scan for, say, signs of environmental activism?
The government's favorite, built in security defects that only *they* will ever use. Can we start by testing out the prototypes on government official's private devices?
Re: (Score:2)
that could be a battery consumer.
Wow. Clearly you've no idea what actually happens to your images when you open them in a chat app if you think this is a concern. This is a comparison of a checksum to the CSAM database, not some high impact AI learning algorithm. It's far more of a battery consumer to apply an instagram filter.
Can you do us a favour and not pollute the discussion of the actual terrible reasons this law is bad with these useless non-issues.
Re: (Score:3)
None of this is limited to images. Nor did his comment limit the scanning to images. That is all in your head. Can you please take your own advice and not pollute the conversation with your insulting and uninformed responses. His concerns may be limited, but yours is equally dumb with the added bonus of derision.
Re: (Score:2)
How soon before it would be reconfigured to scan for, say, signs of environmental activism?
Some might even get flagged for reporting weather conditions: "Storm in Capital" :-)
Re: (Score:2)
How soon before it would be reconfigured to scan for, say, signs of environmental activism?
Reconfiguring would be illegal. You would need a new law for that. Sorry, do you have some weird ideas how laws work?
And what is wrong with "environmental activism" anyway? Why would anyone look for such people?
Re: How is this suppose to work? (Score:2)
Re: (Score:2)
Nah, merkins word gooder then anywon. Murica invented everything. Go murica!
Oh, this is gonna be good (Score:3)
Scanning messages for abuse is going to get a load of false positives in various BDSM chatrooms.
And I really, really wonder just how many conservative politicians will suddenly have to make embarrassing public statements because of that.
Re: (Score:2)
really wonder just how many conservative politicians will suddenly have to make embarrassing public statements because of that.
None.
As police investigations are not reported to the press.
So: no one will know about it.
Re: (Score:2)
So the police is "no one". Gotcha.
There will absolutely, 100%, no possible way this will be abused by anyone at any point in time.
Re: (Score:2)
There will absolutely, 100%, no possible way this will be abused by anyone at any point in time.
Without breaching other laws? Nope.
Self-policing the only acceptable step (Score:2)
Create trusted flag hashes (it has to have a cert) and allow you to enable text like a grammar check or images in the regular file system. This could be anything you want - offensive language, double entendres, that "known images" hash they use etc.
This would allow the paranoid or overly cautious to flag and remove items they may not have the sense to delete normally . . . again, I'm keeping
Diametrically opposed to other EU privacy rules (Score:2)
Re: (Score:2)
False positives do not cause a problem.
As the police officer reviewing it will notice, or do you think the "supposed victims" get an automatic court verdict and are supposed to find themselves in a jail voluntarily?
Re: (Score:2)
Meanwhlie, the UK has record debt, an enormous deficit, 7-10% inflation, a flatlining economy and no hope of recovering from its self-imposed trade sanctions. Oh and it can't sell sausages to itself (Northern Ireland).
And you support Trump echoing Stalin in calling journalists The Enemy of the People.
Secondly, you're wrong about privacy laws. There are 3 in the EU and GDPR is the only one which isn't consttutional.
Re: (Score:2)
Article 8 of the ECHR is literally about preventing Govt snooping.
Right to respect for private and family life
1. Everyone has the right to respect for his private and family
life, his home and his correspondence.
2. There shall be no interference by a public authority with the exercise of this right except such as is in accordance with the law and is necessary in a democratic society in the interests of national security, public safety or the economic well-being of the country, for the prevention of disorder
Re: (Score:2)
2. There shall be no interference by a public authority with the exercise of this right except such as is in accordance with the law and is necessary... in the interests of... the economic well-being of the country, for the prevention of disorder or crime... or for the protection of the rights and freedoms of others.
Which is to say, pretty much every reason for government doing anything ever.
You know China arrested protestors in Hong Kong for "the prevention of disorder" right? That the government acted for "the protection of the rights and freedoms" of people trying to get to work when roads were blocked? That the protest had reduced "the economic well-being of the country"? And need I remind you that everything the Chinese government has done was "in accordance with the law"?
scan for one you can scan for everything (Score:5, Insightful)
as abhorrent as child abuse is this legislation at first glance looks like its pulling the "think of the Children" card to get into law.
In my book that is an automatic fail and I will oppose it the best I can.
The trouble with fighting for human freedom is that one spends most of one's time defending scoundrels. For it is against scoundrels that oppressive laws are first aimed, and oppression must be stopped at the beginning if it is to be stopped at all.
- H. L. Mencken
Re: (Score:2)
Totally agree. Yours was exactly my first thought when I saw this too.
That's a pretty ... (Score:3)
Re: (Score:2)
Polanski needs to be converted to fertilizer. [gawker.com]
Re: (Score:3)
Re: (Score:2)
The Hypocrisy is strong in the US, too.
Having sex with a minour is considered rape.
Here in Europe it is rape when it is rape: regardless of age.
And while a 13 year old is "to young", it is certainly not rape if she agrees, or he.
It is no wonder that Europe often does not extradite with the fucked up laws in the US.
Context vs Keywords (Score:2)
In my opinion, it's completely impossible to implement an automatic system which does this kind of scanning anyway. That's because in order to tell if a conversation carries indicators of malicious activity the scanner:
A. Would need to be capable of nearly perfect understanding of the human language with all it's nuances and highly contextual interpretation:
B. Would need to take into account the relationship between the parties to, for example, differentiate between parents taking to their children, or sex
Absolute power corrupts (Score:3)
The EU demanding 'prove you're innocent': It reveals even these supposedly practical bureaucrats want absolute power over technology.
Re: (Score:2)
Or maybe they actually understood the fact that it could be easily repurposed for surveillance and censorship. The design wasn’t restricted to a specific category of content; a service could simply swap in any content-matching database, and the person using that service would be none the wiser. Luckily these airheads that you spit upon aren't uninformed fools dumb enough to trust the government or Apple to protect their interests.
Re: (Score:2)
The EU can prohibit its use within its territory. Something as big as Signal would definitely get banned from the EU if they didn't comply while operating within the EU.
Re: Any reason to comply for Signal? (Score:2)
Isn't the Signal software Free Software?
All.they have to do is make it easy for the end user to.... aehm... configure and compile a new version. The EU would actually have to ban the Signal app source code in its entirety. That would be one big whoop step and covered under a completely different law.
Re: (Score:3)
They would just pressure Apple and Google to drop it from the app store. Most people won't be able to figure it out at this point or in Apple's case, will be just completely blocked because no side loading.
Very sad but also doesn't surprise me coming out of the EU. Hopefully they don't pass this.
Re: (Score:2)
Well "think of the children" but this proposed legislation goes way to far.
Re: (Score:2)
For the technically savvy, yes but most people just get it from the app store.
Re: (Score:2)
Something as big as Signal would definitely get banned from the EU if they didn't comply while operating within the EU.
As the law stands, Signal can largely ignore it.
https://techcrunch.com/2022/05... [techcrunch.com]
Re: (Score:2)
EU law contains a prohibition on placing a general monitoring obligations on platforms because of the risk of interfering with fundamental rights like privacy — but the Commission’s proposal aims to circumvent that hard limit by setting out what the regulation’s preamble describes as “targeted measures that are proportionate to the risk of misuse of a given service for online child sexual abuse and are subject to robust conditions and safeguards”
also
As well as applying to messaging services, the regime includes some targeted measures for app stores which are intended to help prevent kids from downloading risky apps
So I still think Signal would apply and the EU can just Apple and Google to remove it from their app stores because "think of the children."
That article does mention that most of the kiddie pr0n stuff is based in Europe, I didn't really know that one.
Re: (Score:2)
Second, many "chat" apps, such as signal, telegram, whatsapp, and even messenger with an opt-in option, are end-to-end encrypted, meaning that their service providers cannot decrypt the messages in transit or on their servers. Messages are encrypted by the sender's app code and decrypted by the recipient's app.
The only place that content scanning