Twitter's report in compliance with Regulation (EU) 2021/1232

By @Policy
Saturday, 1 January 2022

Submitted and uploaded on 3 February 2022


Under Article 3(1)(g)(vii) of Regulation (EU) 2021/1232 on a temporary derogation from certain provisions of Directive 2002/58/EC as regards the use of technologies by providers of number-independent interpersonal communications services for the processing of personal and other data for the purpose of combating online child sexual abuse, came into force on the 2nd of August 2021, Twitter is required to publish and submit a report to the Irish Data Protection Commission and to the European Commission.


Twitter’s mission is to serve the public conversation. As part of this mission, we have a zero tolerance approach to combating child sexual exploitation (CSE) on our service. Any content that features or promotes child sexual exploitation (CSE) is prohibited on Twitter. This may include media, text, illustrated, or computer-generated images. Regardless of the intent, viewing, sharing, or linking to child sexual exploitation material contributes to the re-victimisation of the depicted children. This also applies to content that may further contribute to victimisation of children through the promotion or glorification of child sexual exploitation. 

We are actively working to protect children around the world from CSE. We are achieving this via advancing technology solutions, intensive training and support to law enforcement, and expanded education and partnerships.

We use a combination of machine learning and human review — our systems are able to surface content to human moderators who use important context to make decisions about potential rule violations. This work is led by an international, cross-functional team with 24-hour coverage and the ability to cover multiple languages. 

When we are made aware of CSE media, including links to images of or content promoting child exploitation, the material will be removed from the site without further notice and immediately reported to The National Center for Missing & Exploited Children ("NCMEC"). The latter makes reports available to the appropriate law enforcement agencies around the world to facilitate investigations and prosecutions. NCMEC has strong relationships with law enforcement authorities and NGOs worldwide as well as with the INHOPE network.

We also have an appeal process for any potential errors that could occur. 

For further information on our approach please visit this page and our Transparency Center.


(1) the type and volumes of data processed; 

During this reporting period Twitter suspended 532,898 accounts for violating our CSE policy. At this time, Twitter does not track the accounts which are reviewed and not actioned for any policy violations. However,  Twitter may review personal information, including account information, text, and media to investigate possible violations of our CSE policy. 

(2) the specific ground relied on for the processing pursuant to Regulation (EU) 2016/679; 

Information regarding the grounds for processing relied upon by Twitter are available in our Privacy Policy and our Data Processing materials.  

(3) the ground relied on for transfers of personal data outside the Union pursuant to Chapter V of Regulation (EU) 2016/679, where applicable; 

As outlined in our Privacy Policy, Twitter relies on Standard Contractual Clauses for such transfers.

(4) the number of cases of online child sexual abuse identified, differentiating between online child sexual abuse material and solicitation of children;

Both types of actions violate Twitter’s CSE Policy, but at this time we are unable to distinguish between online sexual abuse material and the specific context of each peice of material, such as the solicitation of children. However, during this reporting period we suspended 532,898 accounts for violating our CSE Policy.

(8) the retention policy and the data protection safeguards applied pursuant to Regulation (EU) 2016/679; 

The relevant retention periods for data Twitter collects are outlined in our Privacy Policy. Twitter operates a security and privacy programs which comport with the ISO standards and undergo third party audits as needed to ensure the security and the privacy of the data it processes.

(9) the names of the organisations acting in the public interest against child sexual abuse with which data has been shared pursuant to this Regulation

The National Center for Missing and Exploited Children (NCMEC) in the United States of America (

This post is unavailable
This post is unavailable.