r/europrivacy

https://reddit.com/link/1t3mjew/video/zrpyt9cj95zg1/player

After installing this Mass surveillance app in a Pixel 10 XL Virtual Machine i discovered that the App ID name was com.scytales.av which made me curious so i looked up Scytales on Google which took me to www.scytales.com

https://preview.redd.it/xv3uyz4fb5zg1.png?width=2496&format=png&auto=webp&s=7c8d77139e4ac49dc410edf6df46319e3f233767

which is where i found out that this Spyware app is made by this Scytales company here, once again this seems really shady, yes let's give out our private information this company

Just something to think about 🤔

There are more articles that are probably better but I wanted to get the word out anyway

This looks worrying. The EU Comission wants to include phone calls as well. And what's with the period of non-disclosure? "Line 352: Period of non-disclosure by providers – align with TCO Regulation (6 months) or insist on Council mandate? (12 months)."

Phone calls included: see page 5, bottom segment.

Period of non-disclosure: see page 4, article 15, line 352

Link: https://www.patrick-breyer.de/wp-content/uploads/2026/05/8612-2026-Document-CSAM-%E2%80%94-presidency-compromise.pdf

I've really tried to figure this out but I still don't get it. EU officials say nothing will be logged with their age verification app. The eidas 2.0 law says every action will be logged and kept for 5 years (Article 9).

Some amendment drafts mention 10 years retention of logs. Other amendment drafts mention a differentiation between certified wallets (logging requirement) and uncertified wallets (no logging requirement. The architecture reference framework mentions that details of logging requirements can be found under Topic 19 in the Annex, but if you go to the Annex no topic 19 exists.

I guess you have to assume that everything will be logged and kept for 5-10 years, which would make this "privacy preserving" app really look a lot more like centralized government surveillance, and you might be better off using literally any other app?

Maltese privacy regulator has admitted in writing that they can not protect citizens from Big Tech due to Malta's failure to implement EU law correctly.

My team and I have been stressed for months about the August 2026 deadline for AI labeling. The idea of manually adding disclosure tags and metadata to every single output was a non-starter.

I ended up building a 'set and forget' system for our company that handles all the Article 13 requirements automatically. It’s been running for a week now, and just knowing we won’t get hit with those 7% fines feels like a weight off my shoulders.

Has anyone else automated this yet, or are you still planning to do it manually? If anyone is stuck on the technical side, I’m happy to share what I learned about the metadata injection logic.

Here are my thought on things that might be good to have if we get the worst possible versions of the DSA, Chat Control 2.0 and ProtectEU.

If "app stores" are defined as any graphical user interface where you can download software, that's going to be a massive hit to the availability of open source software, but I don't see how they would stop people from updating software they already have using terminal commands.

Old hardware from before any hardware level backdoors that might come in the ProtectEU legislation.

Iso files for a few different Linux distros, including Tails (Tor is included and on by defaukt iirc) and Devuan or Artix (problematic for other reasons but unlikely to enforce age verification, see the systemd discussions). "Linux from scratch" might come in handy.

Install files for the Tor browser, WireGuard, possibly even the i2p router and Kiwix (for Wikipedia). Instructions on how to use these tools.

Wikipedia as a zip file.

What else might be nice to have?