Tous les articles

Online platforms: The DSA framework

September 8, 2023
The Digital Services Act (DSA) is a new regulation in EU law that aims to create a safer and more responsible online environment.

The Digital Services Act (DSA) is a new regulation in EU law that aims to create a safer and more responsible online environment. It was adopted by the European Parliament and the Council of the European Union on July 5, 2022 and came into force on August 25, 2023.

The DSA applies to a wide range of online platforms, including social networks, search engines, online marketplaces, and app stores. It establishes a number of obligations for these platforms, including:

  • Remove illegal content in a timely manner, such as hate, child pornography, and terrorist content.
  • Giving users more control over their data and privacy
  • Be more transparent about how they work, such as how they use algorithms to recommend content.
  • Cooperate with law enforcement authorities.

The DSA is also creating a new system for monitoring online platforms. The European Commission will be responsible for enforcing the regulations, but it will be supported by the national authorities in each EU Member State.

The DSA is expected to have a significant impact on the functioning of online platforms. It is likely to lead to a more proactive removal of illegal content, greater transparency about how algorithms work, and greater accountability of online platforms.

Who will be affected by DSA?

DSA affects a wide range of online platforms, including:

  • Social media platforms: Facebook, Twitter, Twitter, Instagram, TikTok
  • Search engines: Google, Bing, Yahoo
  • Online marketplaces: Amazon, eBay, Alibaba
  • App Stores: Apple App Store, Google Play Store
  • Online ads: Craigslist, Gumtree
  • Online forums: Reddit, Quora
  • Online news publishers
  • Online gaming platforms

The DSA also affects businesses that use online platforms to sell their products or services. These businesses will need to ensure that they comply with DSA requirements, such as providing clear information about their products and services and ensuring that their websites are accessible to people with disabilities.

How does the DSA make the internet more secure?

The DSA is designed to make the internet safer by making it easier for users to report illegal content and by requiring platforms to remove that content promptly. The DSA also requires platforms to be more transparent about how they operate, which will help users understand how their data is being used.

The DSA should also contribute to the fight against misinformation. Platforms are required to take steps to prevent the spread of misinformation, such as labeling political ads and giving users greater control over the content they see.

What are the challenges of applying the DSA?

The DSA is a complex regulation and it is difficult to enforce it effectively. One challenge is that the DSA applies to a wide range of online platforms, each operating in a different way. Another challenge is that the DSA requires platforms to take action against illegal content, but it's not always easy to identify what constitutes illegal content.

The European Commission will have to work closely with national authorities to ensure that the DSA is effectively applied. A “digital services coordinator”, an independent authority appointed by each Member State, is set up. In France, the national coordinator will be Arcom.. In other countries, it will also be the media authority.

The Commission will also need to provide guidance to platforms on how to comply with DSA requirements.

The DSA is an important piece of legislation that has the potential to make the internet a safer and more responsible place. It is still too early to say how the DSA will be implemented and enforced, but it is a step in the right direction.

Online platforms: The DSA framework

RéglementationExigence cléRéponse ShareIDRésultat pour vous
DSP2 – Directive (UE) 2015/2366 + RTS SCA (UE 2018/389) Source DSP2 : Directive (UE) 2015/2366Authentification forte du client (SCA) obligatoire (art. 97) avec lien dynamique (art. 5 RTS) et indépendance des facteurs (art. 9 RTS).- Full IDV : authentification du document d’identité + biométrie (détection du vivant) - MFA 3.0: Ré-authentification forte basée sur l’identité Full IDV + MFA 3.0Conformité immédiate SCA ; fluidité pour l’utilisateur, sécurité renforcée.
DSP3 / Payment Services Regulation (projet) Source RTS SCA : Règlement délégué (UE) 2018/389 Entrée en vigueur prévue en 2025/ 2026.Articles 85–89 : consolidation de la SCA, règles d’accessibilité, clarification des exemptions.- Full IDV : authentification du document d’identité + biométrie (détection du vivant) - MFA 3.0: Ré-authentification forte basée sur l’identité Solution déjà alignée sur les parcours biométriques & exemptions. MFA 3.0Anticipez les évolutions futures sans refonte lourde.
DORA – Règlement (UE) 2022/2554 Source DORA : Règlement (UE) 2022/2554Authentification forte pour protéger les systèmes et les données critiques (art. 9(4)(d)), encadrement strict des prestataires de Technologie de l’information et de la communication (art. 28–30).- MFA 3.0: Ré-authentification forte basée sur l’identité. Intégrable via SDK/API (iOS, Android, Web), traçabilité complète. MFA 3.0Sécurisation des systèmes d’informations critiques, conformité démontrable aux superviseurs.
eIDAS (UE 910/2014) + implémentation 2015/1502 Source eIDAS (2014) : Règlement (UE) 910/2014Niveaux simple / substantiel / élevé ; multi-facteurs encouragés pour les niveaux substantiel et élevé.Authentification des documents + biométrie (détection du vivant). Full IDVValeur probante proche d’un contrôle présentiel.
eIDAS 2 – Règlement (UE) 2024/1183 Source eIDAS 2 : Règlement (UE) 2024/1183Les EUDI Wallets devront fonctionner à un niveau d’assurance élevé, avec partage sélectif d’attributs.- MFA 3.0: Ré-authentification forte basée sur l’identité Intégrable via SDK/API (iOS, Android, Web), traçabilité complète. MFA 3.0Intégration fluide des futurs portefeuilles européens.
MiCA – Règlement (UE) 2023/1114 Source MiCA : Règlement (UE) 2023/1114Les prestataires de services sur crypto-actifs doivent appliquer les obligations KYC/AML (Directive 2015/849) ; art. 76 impose CDD (renforcement de la vigilance client) renforcé pour certaines plateformes.Authentification des documents + biométrie (détection du vivant) = anti-deepfake et anti-spoofing. Doc IDV ou Full IDVRéduction drastique des fraudes, conformité crypto-AML.
ETSI TS 119 461 (V2.1.1, 2025) Source ETSI TS 119 461 : Norme européenneVérification d’identité à distance : 5 étapes (initiation → collecte → validation → liaison → résultat). Liveness et anti-spoofing obligatoires pour les parcours à distance.- Enrôlement complet : authentification des documents + Biométrie (détection du vivant) - Algorithmes entraînés sur une base de données de vrais et de faux documents de la Gendarmerie Nationale. Full IDVEnrôlement KYC robuste, valeur probante reconnue.
FIDA – Financial Data Access (projet) Source FIDA (proposition) : Commission européenneConsentement explicite, traçable et révocable via des tableaux de bord.- MFA 3.0: Authentification forte basée sur l’identité au moment du consentement + réauthentification fluide avec un simple sourire. MFA 3.0Accès aux données conforme et centré utilisateur.
RGPD – Règlement (UE) 2016/679 Source RGPD : Règlement (UE) 2016/679Durée de maintien de données chez ShareID paramétrable. Aucun stockage biométrique : hachages homomorphiques brevetés , ISO 27001.Image de marque, risque réglementairejuridique réduit, confiance accrue des régulateurs et clients.



← Tous les articles
Our newsletter - Digital Consciousness

Each month, get tips and tricks to protect yourself against online fraud.

Paris
San Francisco
Casablanca
Copyright © 2025 ShareID, Inc. All Rights Reserved.