Safety Online Pushing Likely Changes to Section 230

4 minute read | March.21.2023

Since its inception in 1996, Section 230 of the Communications Decency Act has protected internet platforms from liability for third-party content posted on the platform. However, changes to Section 230’s protections are brewing, as the United States (U.S.) government grapples with critical issues raised by this longstanding immunity. Orrick is tracking these new developments closely and will provide updates as they unfold.

Congress

On Tuesday, February 14, the U.S. Senate Judiciary Committee convened a hearing on "Protecting Our Children Online." Chairman Dick Durbin and others argued that social media and smartphones can affect children’s mental and physical health – many referencing an uptick in cyberbullying and hate speech online, coupled with the use of algorithms purportedly designed to ensure young users stay logged in. The Committee urged tech companies to “be part of the solution, instead of the problem.”

The Committee was heavily weighted toward witnesses who stressed the importance of tech companies cooperating with efforts to protect children online.

Kristin Bride, whose son committed suicide after experiencing cyber-bullying from anonymous and harassing social media messages, filed a lawsuit against social media platforms, which was dismissed under Section 230.She testified that it should not take parents filing lawsuits to hold companies accountable due to the platform design.
Michelle DeLaune, President and CEO of NCMEC asserted that “it is no longer feasible to rely solely on online platforms to adopt voluntary measures, especially given their near complete immunity for activity on their sites, or to hope that they will design their platforms to avoid precipitating dangers to children from sexual exploitation, enticement, and revictimization.”
John Pizzuro, CEO of Raven, testified that children remain vulnerable on social media platforms due to poor moderation, absence of age or identity verification, or inadequate or missing safety mechanisms.But he highlighted even with those controls, law enforcement does not have enough resources, so tech companies with resources need to do what they can to keep children safe.
Josh Golin, Executive Director at Fairplay, testified how tech companies develop algorithms that are designed to maximize engagement and profit without—in his view—any regard for the user’s well-being or potentially harmful consequences.He urged the Committee to implement legislation that curbs dangerous and unfair platform design practices.

The Committee also discussed potential upcoming legislation to crack down on Child Sex Abuse Material (CSAM) including the End Child Exploitation Act, the EARN IT Act, Kids Online Safety Act, and others.

The Supreme Court

One week later, on Tuesday, February 21, the Supreme Court heard argument in Gonzalez, a case stemming from the death of 23-year-old Nohemi Gonzalez, an American student killed in an ISIS attack in Paris in 2015.^[1] The day after Gonzalez was killed in Paris, ISIS issued a written statement and released a video on an internet platform claiming responsibility for the attack.

Gonzalez’s father sued three major internet platforms claiming, among other things, that they should be liable for aiding and abetting terrorism by failing to prevent ISIS from using their platforms.

During oral arguments in Gonzalez, the Court grappled with the boundaries of Section 230 and whether an internet service provider could be held liable under Section 230 for its algorithm which recommended videos created by ISIS. The Justices posed concerns about whether the Internet could be “destroyed” if Section 230 immunity is tightened and balked at the potential influx of litigation that could occur if the Court ruled against the defendant, Google. The Court was focused on a potential legal distinction between simply hosting versus amplifying user content when it comes to assessing liability.

The Department of Justice

The Department of Justice (DOJ) has signaled the need for reform of Section 230. In September 2020, DOJ issued a letter to Congress outlining its proposed areas for reform of Section 230, which included proposed carve-outs for bad actors, child abuse, terrorism, cyber-stalking, and platforms with actual knowledge or notice that the content posted on the platform violated federal criminal law.

^[1] On February 22, 2023, the Supreme Court heard argument in another similar case brought by the family of a Jordanian citizen, Nawras Alassaf, who died during an ISIS attack in Istanbul. In Taamneh, the main issue was whether the internet platform knowingly provided “substantial assistance” to ISIS under the Anti-Terrorism Act because it arguably could have taken more “meaningful” or “aggressive” action to prevent terroristic acts on its platform. The arguments explored the limits of “substantial assistance,” which the company argued should be limited to facilitating the use of the platform to plan, coordinate, and carry out a terrorist attack. The more conservative Justices seemed more amenable to the company’s arguments, while the liberal Justices pushed back on the idea that the company should only be liable if the Court could link the help the company gave to ISIS to the specific terrorist attack that led to Alassaf’s death.

Authors

Jacob M. Heath Partner, Cyber, Privacy & Data Innovation, Intellectual Property

Silicon Valley

See my bio

D:+1 650 614 7321
E: [email protected]

Practice:

Technology & Innovation Sector
Cyber, Privacy & Data Innovation
Intellectual Property
Trade Secrets Litigation
Blockchain and Virtual Currency
Automotive Technology & Mobility
Strategic Advisory & Government Enforcement (SAGE)

vCard

See full bio

Jacob M. Heath Partner

Silicon Valley

Undaunted by a case’s legal or technical complexity, precedent, or magnitude, Jake will not stop until his clients’ patents, copyrights, and trade secrets are protected; the cybersecurity breach is stopped; and the cybercriminals are brought to justice.

To develop those creative legal solutions, Jake draws upon his unique blend of experience. He has carried out Internet enforcement actions involving cybercrime, fraud, and deceptive activity; brand violations; intellectual property infringement; trade secrets; and cybersecurity breaches. Jake has also handled a variety of complex commercial and tech transaction litigation in federal and federal court, as well as several white collar criminal investigations. Jake also draws from his practical litigation experience and trial advocacy.

Eric Shumsky Partner, Supreme Court & Appellate, Intellectual Property

Washington, D.C.; San Francisco

See my bio

D:+1 202 339 8464
E: [email protected]

Practice:

Supreme Court & Appellate
Intellectual Property
Complex Litigation & Dispute Resolution

vCard

See full bio

Eric Shumsky Partner

Washington, D.C.; San Francisco

Chambers USA reports that Eric is “hailed as ‘highly intelligent, an effective communicator and a great writer’ by contacts, and his high-profile work in the tech patent sector is of particular interest to those who recognize him as one who ‘prepares meticulously, anticipates every question, and is a gifted orator.’” Legal 500 touts his “exceptional courtroom demeanor and presentation skills” as one of “the finest appellate litigators in the nation.” And Reuters, in a report reviewing some 17,000 practitioners, identified Eric as part of an “elite cadre” of 75 lawyers who are “the most influential members of one of the most powerful specialties in America: the business of practicing before the Supreme Court.”

Eric has served as appellate counsel to a who’s who of leading companies, including AT&T, DISH Network, Facebook, Genentech, Gilead, KPMG, LG Electronics, LinkedIn, Lyft, Microsoft, Morgan Stanley, Netflix, Norfolk Southern, Synopsys, Twitter, and Union Carbide. Across an array of industries, Eric has briefed and argued issues as diverse as patent and copyright, labor and employment, preemption, punitive damages, environmental law, national security, and foreign sovereign immunity. He has been a primary author of more than 100 briefs in the Supreme Court alone.

Eric has particular proficiency in matters of technology and intellectual property. He regularly litigates novel issues concerning the regulation of the internet, including CDA Section 230, computer fraud, takedown notices, and internet domain names. He has been counsel in dozens of patent appeals in the Federal Circuit—litigating patents ranging from semiconductor construction, computer architecture, and genetic sequencing to tobacco curing, keyboard trays, and electrical junction boxes. A former law clerk on the Ninth Circuit and the Central District of California, Eric has extensive experience in the California state and federal appellate courts where tech issues commonly arise.

In addition to traditional appellate work, Eric has years of experience developing legal strategy in high-profile and complex cases in trial courts. Eric has performed this role in high-stakes multi-district litigation, criminal trials, and civil litigation involving critical dispositive motions.

Prior to joining Orrick, Eric was a partner in the appellate group at Sidley Austin.

Meg Hennessey Of Counsel, Global Compliance & Regulatory, Government Investigations and Enforcement Actions

San Francisco; Orange County

See my bio

D:+1 415 773 5764
E: [email protected]

Practice:

Global Compliance & Regulatory
Government Investigations and Enforcement Actions
Cyber, Privacy & Data Innovation
Ethics & Compliance
Strategic Advisory & Government Enforcement (SAGE)
Internal Investigations

vCard

See full bio

Meg Hennessey Of Counsel

San Francisco; Orange County

Meg helps online service providers comply with online safety and consumer protection laws by marrying her knowledge of the data-driven environment with a decade of experience in white-collar and regulatory investigations. She also advises her clients on developing Trust & Safety programs to manage the risks of misleading or harmful content online such as child exploitation or hate speech that could lead to investigations or litigation.

As a crisis responder, Meg assists clients at every stage, from starting a dialogue with regulators to responding to formal inquiries to managing investigations. She has led diverse teams of lawyers and consultants in conducting investigations, including those initiated by the DOJ, SEC, FTC, OIG, State AGs, and Congress. She has also acted on both sides of corporate Monitorships, serving on two Monitorship teams, and representing two international companies undergoing years-long scrutiny of an external Monitor. This experience provides her with unique insight into best practices in the assessment and development of ethics, integrity, and online safety trust and compliance programs.

An advocate for diversity and inclusion, Meg co-leads Orrick’s Orange County women’s affinity group. Early in her career, she worked with LGBTQ+ youth at the National Center for Lesbian Rights and in the Juvenile Unit at the Santa Clara County Office of the Public Defender. She lives in California with her spouse and three children.