The European Commission has accepted X's proposed remedial measures to address significant breaches of the European Union's Digital Services Act, marking a critical juncture in the bloc's effort to enforce new digital platform regulations. The acceptance follows an €88 million penalty imposed in December 2025 for three core violations: failing to meet transparency obligations, employing deceptive design practices through its "blue checkmark" feature, and denying researchers access to publicly available platform data.

The Digital Services Act represents one of the world's most comprehensive attempts to regulate technology platforms, establishing strict rules around content moderation, algorithmic transparency, and protection of minors online. X's breaches triggered the first-ever fine under this landmark legislation, underscoring the European Commission's determination to enforce compliance across the technology sector. The penalty came after months of investigation into the platform's practices, particularly how it presented account verification features and restricted data access that researchers need to study platform dynamics and potential harms.

X's proposed solution addresses several key transparency deficits that regulators identified. The platform has committed to substantially expanding researcher access to content across various categories, including advertising materials that have previously been opaque to independent scrutiny. These measures aim to enable academics, civil society organisations, and the broader public to better understand how X's systems operate and what effects they produce on user experiences. The commitment represents a significant reversal from X's earlier restrictive approach to researcher access, which had drawn criticism from the academic community and civil society groups across Europe.

Thomas Regnier, the European Commission's spokesperson on digital affairs, characterised the agreement as "an important step in the right direction." He emphasised that the approved measures would facilitate meaningful transparency into X's operational systems and their broader impact on users. The Commission's measured language suggests recognition that the agreement, while imperfect, represents genuine progress in making platform operations more accountable to external scrutiny. This framing is important as it provides political cover for accepting a settlement rather than pursuing more aggressive enforcement actions.

X must implement these transparency measures within a six-month timeframe, a relatively compressed schedule that demonstrates the Commission's intent to see rapid results. Critically, an external and independent auditor will monitor compliance, meaning the platform cannot unilaterally determine whether it has met its obligations. This third-party oversight mechanism reflects lessons learned from previous regulatory efforts where companies claimed compliance without meaningful external verification. The audit requirement adds teeth to the agreement by introducing accountability measures that extend beyond simple self-reporting.

The agreement's scope is notably limited in one critical respect: it does not affect X's ongoing appeal against the December fine itself. The platform filed its appeal in February, arguing that the Commission's findings were legally or factually incorrect. This means X may simultaneously comply with remedial measures while challenging the fundamental legitimacy of the penalty, a situation that underscores the complexity of enforcing digital regulations. The appeal could take years to resolve through European courts, potentially creating uncertainty around whether the €88 million penalty ultimately stands.

One notable shift already undertaken by X involves rebranding its verification system. The platform previously labelled verification status as "verified," which regulators argued was deceptive because it implied some official endorsement or accuracy guarantee. X has since changed this language to "premium," more accurately reflecting the paid subscription nature of the service rather than any validation of account authenticity. This semantic change, while seemingly minor, addresses a core deception concern the Commission identified and demonstrates willingness to modify user-facing features.

The regulatory dispute occurs within a broader geopolitical context of US-EU tensions over technology governance. The US technology industry and the Trump administration have mounted fierce resistance to European digital regulations, characterising DSA enforcement as censorship. President Donald Trump personally criticised X's fine in similar terms, injecting the dispute into higher-level diplomatic relations. These tensions escalated when the US State Department announced sanctions against five individuals in March, including Thierry Breton, a former EU commissioner who had championed stringent platform regulation.

This retaliatory posturing from Washington complicates the enforcement environment for European regulators. The Commission faces pressure from the US government while simultaneously working to establish credible enforcement mechanisms that hold platforms accountable. The X settlement represents an attempt to demonstrate that European regulation can be effective without being draconian, potentially defusing some US criticism. However, ongoing investigations into other X practices suggest the Commission remains committed to comprehensive oversight regardless of external pressure.

The European Commission's investigation into X remains incomplete as of early 2025. Beyond the resolved transparency violations, the Commission opened a separate investigation at the beginning of the year into Grok, X's artificial intelligence chatbot, which has been generating sexualised deepfake images depicting women and minors. This emerging threat represents a novel regulatory challenge that goes beyond traditional content moderation into algorithmic generation of harmful material. The investigation signals the Commission's intention to address AI-related harms proactively rather than waiting for widespread problems to emerge.

For Malaysia and Southeast Asian readers, these developments carry significant implications. As regional governments increasingly consider their own digital platform regulations, the EU's DSA and its enforcement trajectory provide crucial lessons about what effective regulation requires. Malaysia's own regulatory approaches to digital platforms may be influenced by whether the European model proves durable and whether US pressure ultimately forces retreats. The X case demonstrates both the possibility and the difficulty of holding major platforms accountable to rules protecting users and ensuring data access for researchers.

The settlement also illustrates how regulation in one jurisdiction creates ripple effects globally. X's commitment to enhanced transparency for researchers will benefit academics worldwide, not just in Europe, improving the knowledge base about platform operations available to policymakers in other regions. As Southeast Asian countries develop their own digital governance frameworks, access to credible research about platform effects becomes increasingly valuable for evidence-based policymaking. The precedent established here may influence how technology platforms relate to regulatory demands in other markets.