Photo by BILL OâLEARY/POOL/AFP via Getty Images
In a markup hearing on Thursday, the Senate Judiciary Committee advanced a controversial new bill targeting Section 230 protections for content involving online sexual exploitation. In a majority vote, the EARN IT Act was favorably referred for a floor vote, despite vigorous objections from human rights and privacy groups.
Among other provisions, the bill would strip companies of immunity for the knowing transmission of child sexual abuse imagery (CSAM) on their platforms. Currently, companies are protected from civil cases by Section 230.
Human rights groups have compared the bill to FOSTA â an anti-sex trafficking bill passed into law in 2018 â saying EARN IT will restrict online speech while doing little to address the underlying problems. In a group letter to the committee, more than 60 human rights organizations (including the EFF and ACLU) called on the committee to abandon the effort.
âBy opening providers up to significantly expanded liability, the bill would make it far riskier for platforms to host user-generated content,â the letter reads.
Critics also worry that the bill could open the door to a de facto ban on end-to-end encryption. The current version of EARN IT says encryption shall not âserve as an independent basis for liability of a provider,â but it can still be taken into account when courts consider whether a company has taken reasonable efforts to root out exploitation on its networks.
Within the committee, lawmakers characterized the bill differently. Sen Blumenthal (D-CT), a lead sponsor of the measure, described the bill as âa narrow carveout to section 230â and dismissed concerns over encryption as âa red herring.â Blumenthal also detailed separate incidents in which victims saw non-consensual pornography (also called ârevenge pornâ) shared on Twitter and Reddit respectively and faced few options without involving federal law enforcement.
âThe EARN IT Act will stop exploitation before it starts,â Blumenthal said in an opening statement. âIt fosters the next generation of technology to stop exploitation, and it does hold tech companies when they fail survivors and they enable these predators to spread child sexual abuse material.â
Most online platforms scan aggressively for CSAM, reporting material to the National Center for Missing and Exploited Children (NCMEC) on a voluntary basis. Hosting services like Google Drive and Dropbox also scan their platforms against hashes generated by NCMEC to ensure CSAM canât be stored privately in the cloud or included as an attachment to an email. (Apple recently tabled a complex plan that would impose similar scans in iCloud storage.) Despite these efforts, CSAM continues to circulate in less regulated online spaces, particularly those hosted outside the US.
Outside of CSAM, systems for blocking non-consensual pornography are far less developed, although platforms like Facebook and Pornhub have tested limited portals that would allow victims to flag specific photos. Unlike CSAM, other kinds of non-consensual pornography continue to circulate in mainstream online spaces, and there is no centralized database for flagging and removing them, as Blumenthalâs anecdotes show.
Critics of the bill acknowledge the urgency of these problems but say the EARN IT Act wonât help fight exploitation. In particular, legal experts worry that compelling companies to disclose information to NCMEC will create significant problems for existing prosecution. If that reporting is legally compelled, courts could rule that tech companies are acting on behalf of law enforcement, and thus subject to constitutional restrictions under the state actor doctrine. In essence, Congress canât compel private companies to do anything that would be unconstitutional for law enforcement to do on its own.
âItâs turning social media companies into an arm of the government,â says Carl Szabo, a vice president and general counsel at NetChoice. The result would be new restrictions on how tech companies can scan for CSAM. State laws in Illinois and South Carolina directly prohibit legal requirements for such information sharing.
First introduced in 2020, the EARN IT Act previously cleared committee the following July, but stalled in the broader Senate. This time, the committee moved to mark up the EARN IT Act without a hearing, a move critics see as an effort to sidestep debate over its contents.
âThey recognize that the more time people have to talk about this bill, the more time they have to identify its fundamental problem,â Szabo said.