The European Parliament narrowly voted this afternoon, at about 2:48pm CET on Tuesday, July 7, to fast-track the revival of "Chat Control," the plan that would let platforms scan private messages for child sexual abuse material. MEPs approved an urgency motion by 331 votes to 304 with 11 abstentions, resurrecting a measure the same chamber had rejected only months ago and clearing the way for a decisive vote on Thursday, the last session before the summer break.
- The vote was procedural, not final: it approved an urgency (urgent procedure) requested by the center-right EPP, which lets the substantive extension be voted this Thursday instead of going to committee.
- What is being revived is the "voluntary detection" derogation that expired on 3 April 2026, the rule that let Meta, Google and Microsoft scan chats and emails for CSAM without falling foul of EU ePrivacy law.
- Parliament had rejected the same extension in March by 311 to 228 with 92 abstentions, so critics call reviving it through urgency an end-run around a democratic decision.
- Because the file sits in second reading, only a simple majority of those present is needed to pass it Thursday, while blocking it needs an absolute majority of 361 MEPs, a threshold made harder by the pre-summer exodus.
What actually happened in Strasbourg today?
Parliament did not vote on message scanning itself. It voted on whether to handle the file under an urgent procedure, and it said yes by 331 to 304. That thin 27-vote margin matters because it flips the calendar: had urgency failed, the draft would have gone to the Committee on Civil Liberties, Justice and Home Affairs to be reworked after the recess. Instead the extension goes straight to a plenary vote on Thursday. The measure was placed on the agenda at short notice by Parliament President Roberta Metsola at the request of member states and the EPP group, and four European Commissioners sent a warning letter about a "regulatory gap" ahead of the vote. The Social Democrats ultimately supplied the votes that carried the urgency motion over the line.
RelatedJanuscape: a 16-Year KVM Bug Escapes Guest to Host
What is Chat Control, and what expired in April?
"Chat Control" is the nickname critics gave to the EU's push to detect CSAM inside private communications. The specific thing being revived here is narrow but consequential: a temporary derogation from the ePrivacy rules that, since 2021, allowed services like Messenger, Gmail and others to voluntarily scan for known abuse imagery without breaking EU privacy law. That derogation lapsed on 3 April 2026, so those voluntary scans have technically been in legal limbo since. The extension would reinstate the voluntary regime, not the far more contentious permanent proposal that would mandate scanning of every private message, including client-side scanning that breaks end-to-end encryption. Conflating the two is the single most common error in coverage of this fight, and it is why the stakes here are easy to overstate and easy to understand.
| On the table | Interim extension (Thursday) | Permanent CSA Regulation | Status since 3 April |
|---|---|---|---|
| Scanning | Voluntary, by platforms | Mandatory detection orders | No legal basis |
| Encryption impact | None required | Client-side scanning risk | None |
| Who is covered | Firms that opt in | All messaging services | Nobody, formally |
| Legal status | Being fast-tracked | Stalled in Council | Expired derogation |
| Privacy objection | Mass voluntary scanning | Breaks private messaging | n/a |
Reading the columns together explains the temperature of the debate. The interim rule is the milder of the two, but privacy advocates fear that quietly re-enacting it removes the pressure that would otherwise force the EU to either fix or abandon the permanent regulation. A comfortable transitional status, in that view, becomes a permanent gray zone.
Why are digital-rights groups so angry about the process?
The objection is less about this vote's content than its method. Under normal practice, when Parliament rejects a text the Council stops pushing it and the Commission eventually withdraws it. Here, a measure voted down in March and April is back within weeks through an urgency shortcut, and under voting rules that favor its supporters. Rapporteur Birgit Sippel of the SPD refused to back it, calling the maneuver unfair. Pirate MEP Marketa Gregorova accused the EPP of "engaging in a farce" and breaking its own procedural rules, while AfD MEP Mary Khan called it reviving a rejected law "through the back door using salami tactics." Metsola has defended the process, saying she followed every rule. Longtime campaigner Patrick Breyer warned that locking in the transitional status could bleed away the political urgency needed for a lasting successor law.
RelatedA Windows Device ID Unmasked a Hacker Behind a VPN
How did we get here?
- 2021Voluntary detection derogation begins. Platforms get a temporary ePrivacy carve-out to scan for CSAM.
- Mar 2026Parliament rejects the extension. 311 against, 228 in favour, 92 abstentions.
- 3 Apr 2026The derogation expires. Voluntary scanning loses its legal basis in the EU.
- 17 Jun 2026EPP asks Metsola to revive the file. No other group objects; member states move to reinstate the interim rule.
- 7 Jul 2026Urgency motion passes, 331 to 304. Sets up a decisive plenary vote two days later.
- 9 Jul 2026Decisive extension vote. Last session before recess; simple majority of those present decides.
Who is affected, and what changes for users?
In the immediate term, very little changes for the person sending a message. Even before April, the derogation only permitted voluntary scanning, and end-to-end encrypted content on services like WhatsApp or Signal was never in scope of that voluntary regime. If Thursday's vote passes, platforms that already chose to scan for known abuse imagery regain clear legal cover to keep doing so. The deeper stakes are political and precedential. A reinstated interim rule keeps the EU's CSAM-detection apparatus alive and normalized while the fight over the permanent, mandatory regulation, the one that genuinely threatens encryption, continues in the Council. For privacy-focused users, the worry is not this week's scan, it is what a permanent successor built on this foundation eventually demands.
- Thursday's plenary vote. Watch the turnout as much as the tally. A thin room favors passage, and the 361 bar to block is unforgiving before recess.
- The permanent CSA Regulation. The real encryption fight is the mandatory-scanning proposal stalled in Council. This interim vote shapes its momentum.
- Client-side scanning language. Any successor text that mandates scanning before encryption is where end-to-end messaging actually breaks. That wording is the battleground.
- Whether "temporary" sticks. Interim rules have a habit of renewing. If it becomes a rolling extension, the pressure for a permanent fix quietly evaporates.
Our take
The substance of Tuesday's vote is milder than the "Chat Control is back" headlines suggest, and the process is more troubling than the substance. Reinstating a voluntary scanning derogation is defensible on its own terms; platforms genuinely lost legal footing when it expired in April, and detecting known abuse imagery is not the same as breaking encryption. But resurrecting a measure Parliament rejected twice, within weeks, through an urgency shortcut engineered to exploit a pre-summer empty chamber, is exactly the kind of maneuver that corrodes trust in how the EU legislates on digital rights. The right thing for observers to track is not Thursday's near-certain result, it is whether this becomes the quiet foundation for the permanent, mandatory scanning regime that would actually put end-to-end encryption on the table. That is the fight that matters, and this week just made it easier to lose sight of.
- OfficialEuropean Parliament newsroom plenary agenda and voting records
- Reportingheise online: Showdown in Strasbourg the 331-304 urgency vote, with quotes
- ReportingEuronews: EU to extend message-scanning regime March vote figures and procedure
- AdvocacyFight Chat Control the digital-rights campaign's tracker
- ReferenceChat Control background on the regulation and timeline
Original analysis by GenZTech. Figures current as of July 7, 2026. Source: heise online.
