What is Digital Services Act?

The Digital Services Act forces platforms to show their work — explain how algorithms recommend content, let users opt out of profiling, and take responsibility for the harmful content they amplify.

Key Requirements

Algorithmic Transparency

• Platforms must explain how their recommendation algorithms work in plain language
• Users must have the option to use non-profiling-based recommendations (chronological feed, for example)
• Researchers must be given access to platform data for studying systemic risks

Dark Patterns Banned

• No manipulative design patterns that trick users into making choices they wouldn't otherwise make
• No making it harder to cancel a service than to sign up
• No deceptive cookie consent interfaces

Targeted Advertising Restrictions

• Banned: Targeting ads to minors based on profiling
• Banned: Targeting based on sensitive data (political opinions, sexual orientation, religion, ethnicity)
• Users must be told why they're seeing a specific ad and who paid for it

Content Moderation

• Platforms must act quickly on illegal content when notified
• "Trusted flagger" system for reliable reporting organizations
• Users have the right to appeal content moderation decisions
• Platforms must assess and mitigate systemic risks (disinformation, election interference)

Who It Applies To

Category	Examples	Requirements
Very Large Platforms (45M+ EU users)	Facebook, YouTube, TikTok, X, Amazon	Full DSA obligations + risk assessments
Large Platforms	Mid-size social media and marketplaces	Transparency + content moderation
All Online Platforms	Hosting services, forums	Basic obligations (notice and action)

Privacy Impact

The DSA complements GDPR by addressing the behavioral side of data exploitation. While GDPR regulates data collection, the DSA regulates what platforms do with that data — particularly how they use profiling to shape what you see, think, and buy.