Skip to main content

UK threatens tech execs with jail time if they fail to meet online safety standards

UK threatens tech execs with jail time if they fail to meet online safety standards


Top managers could be liable if they withhold information from investigators

Share this story

A number of cursors point toward an unhappy face on a laptop
Photo by Amelia Holowaty Krales / The Verge

The UK has outlined new legislation that could see top managers at tech companies sent to jail if they fail to meet the demands of regulators. The rules are part of the government’s mammoth Online Safety Bill, a new draft of which was introduced to Parliament today — a major milestone to the bill becoming law.

Tech execs could be jailed if they fail to respond to requests for information from newly-empowered regulator Ofcom “in an accurate and timely manner,” according to the bill. The latest draft stipulates that senior managers will be liable for criminal prosecution just two months after the bill becomes law (instead of two years, as previously outlined).

New offenses have also been added, including suppressing, destroying, or altering information requested for investigations. Ofcom also has the power to fine companies who fail to comply with the regulations up to 10 percent of their global turnover or to block access to their services in the UK.

Making managers liable will worry tech companies in the UK

Ben Packer, a partner at law firm Linklaters, told The Verge that the new offenses for tech managers focused on denying or distorting information — and that this was a narrower remit than suggested by earlier recommendations. “Though tech companies will still be concerned about the breadth and reach of the ‘information offenses,’ there will be relief that the government is not proposing to ask tech companies to nominate a fall guy to be criminally liable for corporate failures to comply with the safety duties,” said Packer.

Investigations led by Ofcom will be tackling the broad range of offenses outlined in the Online Safety Bill. These measures include:

  • Age checks for all major sites that host pornography. This would likely include not only dedicated porn sites but social platforms that host adult content, like Reddit and Twitter.
  • Social media companies and search engines must prevent paid-for scam adverts from appearing on their platforms. If alerted about these adverts they should remove them swiftly.
  • Cyberflashing — the sending of unsolicited sexual images through dating apps, social media, or via AirDrop or Bluetooth — will become a criminal offense punishable by up to two years in prison. This is the same maximum sentence for indecent exposure.
  • Content that is “legal but harmful” must be moderated effectively on social media. This is content that does not constitute a criminal offense (like racist or abusive language) but that could cause “adverse physical or psychological impact.” Tech companies will be expected to introduce new measures to reduce users’ exposure to this content.

Although the Online Safety Bill has been trumpeted by the UK’s Conservative government as the most forward-thinking legislation for reducing online harm, it’s been heavily criticized by digital rights and advocacy groups. Many experts say the bill deploys vague language (such as “legal but harmful”) which will make enforcement a problem, and may encourage tech companies to preemptively censor users in order to avoid prosecution.

Jim Killock, executive director of the UK’s Open Rights Group, said the legislation also gives politicians too much power to describe what constitutes harmful content without due scrutiny. “It would mean state-sanctioned censorship of legal content,” said Killock.

Some UK lawmakers involved in drafting the legislation have been criticized for a lack of expertise. Conservative politician Nadine Dorries, who is spearheading the project, has come under particular scrutiny. A recent report in Politico claimed that, in a meeting with Microsoft, Dorries asked when the tech giant was going to get rid of its algorithms.