A newly proposed Florida draft bill has set off a firestorm of discussion. It requires social media companies to develop encryption backdoors, so law enforcement can access any user’s account. The “Social Media Use by Minors” (SB 868) bill would provide minors with greater protections online. Not so fast, say technology advocates and privacy organizations who are leading the charge against it.
That bill just cleared a key committee in the state legislature and is headed to the Senate floor for a vote. In the Florida House, HB 743 is set for a final committee vote. Once it clears that committee, it will head toward the full House floor for a possible vote. If these measures are passed, they will build upon a 2022 law that limits social media access for kids under the age of 16. That law is now in limbo as courts determine its constitutionality.
As tech companies such as Apple, Google and Meta continue deploying end-to-end encryption, this makes the proposed legislation all the more worrisome. Under current encryption protocols, only users can access their private content, effectively preventing even the companies from retrieving the data. The new proposed legislation would let law enforcement agencies issue subpoenas that would compel social media firms to act. This entire process would unfold with no judicial oversight whatsoever.
The Electronic Frontier Foundation (EFF), along with other public advocacy groups, have been very outspoken against the bill. The EFF argues that encryption serves as the “best tool we have to protect our communications online” and warns that forcing companies to create backdoors could lead to the removal of encryption for minors, ultimately making them less safe online.
“The idea that Florida can ‘protect’ minors by making them less safe is dangerous and dumb.” – Electronic Frontier Foundation
Florida lawmakers were unanimous in approving the bill’s advance through committee, underscoring bipartisan support for greater regulation of social media platforms. According to privacy advocates, the requirements as written risk eroding user privacy and security.
Leave a Reply