this post was submitted on 05 Jun 2024
8 points (90.0% liked)
SimpleX Chat
460 readers
1 users here now
Community of SimpleX Chat users – managed by the team.
SimpleX Chat is the first chat platform that is 100% private by design – it has no user identifiers of any kind and no access to your connections graph – it's a more private design than any alternative we know of.
Please ask any questions and make feature suggestions. Your ideas and criticism are very welcome!
https://github.com/simplex-chat/simplex-chat
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
There's this blog post about it, but it doesn't say anything about what will happen to SimpleX. SimpleX will need to comply with local law, as do all companies, but I am unsure of whether or not SimpleX Ltd. is within jurisdiction, as I believe they are based in the UK (which is no longer part of the EU after Brexit). They would, however, need to enforce the law when serving users in the jurisdiction of the EU regardless of if the law were to pass. I'm unsure how SimpleX would choose to handle that (probably just IP-based blocking, as I highly doubt they would consent to scanning), in which case your best bet is a VPN.
With chat control in the UK, there was an exception that applied to SimpleX, so unless the final law is passed, we won't know if the same would be true for the new EU law. Since servers can be self-hosted, you would likely see unofficial instances pop up that are in unaffected countries if main instances went down, but they would also be legally required to comply with the EU law when servicing EU users (though they might be less likely to do so).
I'd like an official response for clarification, but as far as the law is concerned, there's not much SimpleX can do.
Thank you very much !
That's what I suspected :/ So protonVPN outside EU will probably be my best bet... I Hope my download speed will not suffer to much...
How comes? That's rather strange that only simpleX was an exception compared to other messengers? Do you know why, how?
Somehow a gray zone? But a dangerous one... If they get caugh by regulation, what can they expect to get for a sentence by not complying to EU laws?
Thank you very much !!
Edit: Thanks for the blogpost, very inyeresting ! I really love SimpleX's stands and tone.
I believe it had to do with the size of SimpleX (fewer than X employees, or fewer than Y users). I can't fully remember, but I asked about it on Reddit (which I think I probably deleted when I switched to Lemmy).
It would likely be similar to a GDPR violation. The server would have to be reported and investigated, and then a fine will be levied. We will have to wait until we see the final version of the law to be certain, however. SimpleX has new "private routing" servers, which hide your IP address from the SimpleX relays, so perhaps if those become self-hostable, it will be better than a VPN (here's another blog post about that). It would also be incredibly hard to enforce, because the private routing server itself doesn't encrypt your messages, and the SimpleX network has no way of knowing the request came from the EU. That's very much a legal grey area, and I'm not a lawyer, so I don't know how things would actually work out. I still think that using SimpleX's private routing servers would likely not work (since for compliance, my belief is that there would still be IP based blocking), but it's hard to say.
The other side to this is that all encryption happens on the device (hence why SimpleX is safe even on compromised servers, something detailed in their whitepaper if you're interested), so it may just be that downloads are blocked in the EU. Again, it will depend on the final version of the law, and I'm not a lawyer, so this is all speculation. Since all the SimpleX servers do is transport one already encrypted message to some other endpoint, it may be no issue for them to operate as normal. The law may require that the app checks your location before you can send a message however, in which case I'm not sure how things would be handled. The app could either check your IP address (bypassable by VPN), or check your location (bypassable by location spoofing). Regardless of which it would use, I find it likely that you will simply be denied the ability to send files (as I believe this law only pertains to files, not all messages?).
Hopefully this law doesn't pass, but if it does, all of this will likely depend on the final version of the law. It could very well be that SimpleX is unaffected due to exemption, as with chat control in the UK.