Digital Platform Regulation - Impossible?

Digital platform regulation is in the spotlight again. Amid questions around competition, allegations of shortcomings in stewardship and lawsuits alleging negligence, calls to regulate digital platforms by governments, the media and civil society are louder than ever.

But this is a discordant chorus: its volume should not mask the wide divergence in approaches to platform regulation playing out round the world.

Allegations have been levelled at platforms for their role in amplifying hateful content during the violence in Myanmar. More recently, a lawsuit has been filed in Kenya against Meta on the basis that its recommendations systems magnified hateful and violent posts in the context of the Ethiopian civil war.

Elon Musk’s Twitter takeover has served as a further catalyst for wider discussions, notably in the press, on regulatory frameworks surrounding digital platforms. For example, with regards to Twitter’s compliance with the EU’s Digital Services Act, due to enter into force in 2024, censorship over journalists and issues surrounding anticompetitive practices mandated by the billionaire have faced criticism.

Elon Musk’s Twitter takeover has served as a further catalyst for wider discussions on regulatory frameworks surrounding digital platforms.

But the challenges posed by digital platform regulations cut both ways. Not all regulation is good regulation. In the absence of strong democratic institutions and appropriate checks and balances, they are likely to have a chilling effect on fundamental rights such as freedom of expression.

Concerns arise when governments leverage regulatory tools to reaffirm control over platforms without due process. In July 2022, the Economic Community of West African States (ECOWAS) Court ruled Nigeria’s ban on Twitter was a violation to freedom of expression, access to information and press freedom.

In some parts of the world, the rise of digital platforms has renegotiated long-standing settlements on the right to freedom of expression, which is deeply rooted in the International Covenant on Civil and Political Rights (ICCPR) and regional human rights treaties.

Striking The Right Balance

These trends and developments attest to three realities: First, the regulatory landscape surrounding digital platforms is a crowded – and increasingly fragmented – space. Second, as opposed to ‘classic’ power relationships between the state and individuals, digital platforms have grown into major and influential players in setting the boundaries and norms of freedom of expression and other rights. The social contract is now a negotiation between three parties.

It is precisely because of the power they hold that digital platforms are under such scrutiny: the question in most governments is no longer whether to regulate, but how?

Third, the question of digital platform regulation carries high stakes over the upholding of democratic values and human rights as the ‘digital public square’. It may even be argued that in some cases, digital platforms further the cause of democratic and timely participatory civic engagement.

Rapid and unfettered growth and a relative lack of licensing requirements, which digital platforms are generally not subject to in contrast with other forms of media (e.g., radio, television broadcasting, etc.) have propelled platforms into a critical societal role, and in doing so their terms of service have reshaped norms around freedom of expression.

It is precisely because of the power they hold that digital platforms are under such scrutiny: the question in most governments is no longer whether to regulate, but how.

Regulatory Trends

States and other governing bodies have been approaching the question of digital platform regulation differently leading to a fragmented regulatory landscape across the globe. Even within geographic or linguistic regions, legislation is often disparate and disconnected.

In Europe, the European Union’s Digital Services Act requires that clear terms of service and redress systems are in place for users; the publication of transparency reports; and the appointment by each member state of a national independent regulator as the digital service coordinator.

But neighbouring countries may choose not to align themselves with this approach. Belarus, Russia, and Turkey all put forward further restrictions on politicized content types (e.g., those offensive to public morality) and potential sanctions on individual platform employees or directors.

Globally recognized legal or normative frameworks, like international human rights, have not yet translated to digital spaces. Industry attempts to set rules – Facebook’s Oversight Board, for instance – have been welcomed but do not appear to have deterred governments from taking matters further.

Globally recognized legal or normative frameworks, like international human rights, have not yet translated to digital spaces.

Whether regulatory harmonization is feasible or desirable at all remains, however, debatable, particularly in light of countries’ respective priorities, norms, and legislative landscapes. It remains to be seen how platforms will manage regulatory regimes as divergent as those in Ireland and those in Indonesia, or manage the expectations of lawmakers in the US where most platforms call home.

Risk Mitigation & Solutions 

There remains little international agreement on a model to regulate digital platforms and it is unrealistic to hope for a ‘one-size-fits-all’ approach in light of diverse local democratic contexts. Local laws and customs, sociopolitical realities on the ground, the standing of human rights approaches, as well as the power relationships between the state, the people, and other private entities, all differ from country to country, and all inform national approaches to platforms.

Nevertheless, policymakers, legislators, the tech industry and other key stakeholders must take into account the following considerations to mitigate and reduce risks of human rights violations, and ultimately foster digital platforms and technologies made by all and for all:

The right balance must be struck to provide for an appropriate regulatory framework, taking into account:

  • Human rights compliance, and in particular with regards to the right to exercise freedom of speech, freedom of information, and privacy concerns; 
  • The need for safeguards against risks of harm, in particular against vulnerable users and parts of the population (e.g., children, minorities, etc.
  • The power relationships between powerful stakeholders on the one hand (i.e., states, platforms, shareholders) and the population on the other hand must be kept in check.

Discussions and deliberations surrounding the regulation of digital platforms, as well as the establishment of regional and international standards, or soft law, should be inclusive and of multistakeholder nature.

Governments should demonstrate greater political will to include civil society when shaping the regulatory landscape surrounding digital platforms.

Stakeholders with significant resources should facilitate and pave the way for inclusive and multistakeholder discussions both at the national and international levels, in addition to leveraging these resources to improve the general understanding on the dynamics and trends in a crowded and fast-paced space.

There is a need for digital platforms, in particular those bearing great presence (and influence) over the public to acknowledge the important role and influence they have; take responsibility over their approach to content moderation while preserving and safeguarding human rights norms; and engage with users across different regions in a more equal, non-discriminatory manner.

Processes established and/or led by the private sector to implement digital platform regulation must maintain a degree of democratic oversight - which must be inclusive and will inevitably lead to uncomfortable, but necessary, conversations.

Yasmin Afina is Research Associate, International Security Programme at Chatham House

You Might Also Read: 

Dissent Over British Internet Safety Laws:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« Cyber Security Strategies Need To Evolve Alongside The Enterprise
Scandinavian Airline App Compromised »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

eSentire

eSentire

eSentire is the authority in Managed Detection and Response Services, protecting the critical data and applications of organizations from known and unknown cyber threats.

Tech Industry Forum (TIF)

Tech Industry Forum (TIF)

Tech Industry Forum is a not-for-profit, membership driven trade body. We bring together end users and some of the UK’s leading cloud, software, platform, infrastructure, and service providers.

Gigamon

Gigamon

Gigamon provides intelligent Traffic Visability solutions that provide unmatched visbility into physical & birtual networks without affecting the performance or stability of production environments.

Cyber Security Experts Association of Nigeria (CSEAN)

Cyber Security Experts Association of Nigeria (CSEAN)

Cyber Security Experts Association of Nigeria (CSEAN) is a not for profit group of professionals in the field of Information Security in Nigeria and Diaspora.

Global Learning Systems (GLS)

Global Learning Systems (GLS)

Global Learning Systems provides security awareness and compliance training programs for employees that effectively promote behavior change and protect your organization.

Zeneth Technology Partners

Zeneth Technology Partners

Zeneth is a consulting firm providing information technology and cybersecurity services to federal and commercial clients.

StepStone

StepStone

StepStone is one of the leading online job platforms in Germany, and other countries, covering all industry sectors including IT and cybersecurity.

X-Ways Software Technology

X-Ways Software Technology

X-Ways provide software for computer forensics, electronic discovery, data recovery, low-level data processing, and IT security.

QuSecure

QuSecure

QuSecure provides a software-driven security architecture that overlays your current infrastructure and provides next-generation security to protect your entire network from quantum threats.

Suresecure

Suresecure

Suresecure are a specialised consulting company providing Strategic IT security consulting, Managed Security Services, and Incident Response Management.

Tetrate.io

Tetrate.io

Tetrate Service Bridge provides enterprises with a consistent, unified way to connect and secure services across an entire mesh-managed environment.

LimaCharlie

LimaCharlie

LimaCharlie gives security teams full control over how they manage their security infrastructure. Get full visibility, build what you want, control your data, get the security capabilities you need.

Binarii Labs

Binarii Labs

Binarii are focused on helping enterprises to design and deploy SaaS solutions that utilise DLT (Digital Ledger Technology) effectively, efficiently and sensibly.

Fivecast

Fivecast

Fivecast is enabling a safer world. We help organizations around the world explore masses of data to uncover actionable insights.

Cloud & More

Cloud & More

Tired of impersonal IT support? Experience the Cloud & More difference. We offer tailored IT services with a personal touch, ensuring your business technology runs smoothly.

SureStack

SureStack

SureStack is an AI-native cybersecurity platform that provides organizations with continuous validation, optimization, and real-time security of their cybersecurity stacks.