United Kingdom: Published Ofcom register of risk under Online Safety Act

On 16 December 2024, the Office of Communications (Ofcom) published the Illegal Harms Register of Risks under the Online Safety Act. The risk register sets out Ofcom's risk assessment of the circumstances and means by which illegal harm manifests itself online, together with the characteristics of services that are considered relevant to the potential for harm. It delineates the underlying causes, consequences, and contributing factors associated with illegal online harms, classifying priority offences and emphasising the role of service characteristics, functionalities, and evolving risks in shaping the nature and extent of harm, with a particular focus on vulnerable groups and the necessity for regular risk assessments and governance measures. The register of risks categorises 140 priority offences into 17 broad harm types, including sexual child abuse, terrorism, fraud, and hate speech, among others. Ofcom conducted an assessment of the characteristics of a service with regard to governance, systems, and processes. The assessment concluded that effective systems, including clear policies, reporting mechanisms, and risk management processes, are essential for the identification, mitigation, and monitoring of illegal harms. It was recommended that services establish internal governance measures, assign senior accountability, and ensure compliance through regular reviews and monitoring.