The European Commission's preliminary finding that Meta has breached the Digital Services Act by allowing children under 13 onto Facebook and Instagram is not just another regulatory headline, it is the first time Brussels has applied this specific charge to a mainstream platform, and the fines that follow could run into the billions.
Ten to twelve percent of children under 13 across the European Union are using Facebook or Instagram right now. That figure comes not from a campaign group or a child safety charity, but from the European Commission itself, released as part of formal preliminary findings issued on Wednesday. Meta's own terms of service set 13 as the minimum age. The company's own internal systems are supposed to prevent younger children from accessing the platforms. According to Brussels, those systems are not working. That is the core of the charge, and it is harder to argue against than most DSA enforcement actions because the evidence is both measurable and embarrassingly simple.
The mechanism for failure is equally simple. Children enter a false birth date when signing up. Meta has no reliable way to verify whether the date is accurate. And once a minor is flagged, the follow-up is almost nonexistent. The Commission described the reporting tool for underage users as cumbersome and ineffective, requiring as many as seven steps just to access the relevant form. After that, the company frequently does nothing. The account stays live. The child stays on the platform. The regulation says this is a systemic risk that must be identified and mitigated. Meta, regulators have decided, has not done that.
What makes this moment significant beyond the immediate charge is the precedent it sets. The Next Web reported that this is the first time the Commission has applied a platform-level failure to prevent underage access to a mainstream social media company. Previously, this kind of charge had been reserved for adult content sites that were not age-verifying their audiences. Applying it to Facebook and Instagram puts the world's largest social platforms in a new category of regulatory exposure.
That matters because Meta is not the only company with this problem. Every social platform with minimum age requirements faces the same structural vulnerability. Age verification has historically been handled by self-declaration, which is obviously inadequate for an audience that has every incentive to lie. If the Commission establishes that self-declaration is not enough, and that platforms must implement technically meaningful verification, the consequences extend far beyond Meta. TikTok, YouTube, X, and Snapchat all face versions of the same question. Brussels just made that question far more pressing.
European Commission President Ursula von der Leyen has already accelerated the policy side. On April 15, she announced that the EU's own age verification app is technically ready for deployment. The app uses a passport or national ID to prove age anonymously, works across devices, and is open source so other countries can adopt it. It is a solution that directly addresses the self-declaration loophole. Whether it becomes mandatory is a political question, but the infrastructure for enforcement now exists in a way it did not six months ago. Von der Leyen's explicit statement that there are no more excuses was aimed directly at platforms that have used technical complexity as a reason to delay.
What Meta Is Facing
The preliminary nature of the findings matters. Meta now has the right to review the Commission's investigation files and respond in writing before a formal non-compliance decision is issued. That process takes time and the company will push back hard. Meta has already introduced Teen Accounts on Instagram, expanded age-linked content restrictions, and rolled out parental notification features. It will argue these are meaningful steps toward protection and that the Commission is measuring against a standard that no platform has yet met at scale.
But that defense has a ceiling. The Commission's findings specifically note that Meta disregarded readily available scientific evidence about the vulnerability of children under 13 on platforms like Facebook and Instagram. That framing is deliberate. It shifts the argument from technical difficulty to corporate intent, and that is a much harder position to defend publicly or legally. If the Commission reaches a formal non-compliance decision, the fine can reach 6 percent of Meta's total worldwide annual turnover. Based on current figures, that could exceed several billion euros, making this one of the largest potential penalties in the history of digital regulation.
The Bigger Stakes For Platform Policy
The EU has been the most aggressive jurisdiction in the world when it comes to applying structural obligations to large digital platforms. The DSA and the Digital Markets Act together represent a coordinated attempt to shift power from platforms to regulators in a way that no other regulatory system has attempted at this scale. What the Meta case demonstrates is that Brussels is willing to use that framework on child safety issues even when doing so means confronting the largest company in the social media industry directly.
The regulatory direction globally is converging on the same point. The UK has its Online Safety Act. Australia has passed sweeping age restrictions. The US has been moving through state-level legislation. The EU is now the furthest ahead in terms of actual enforcement action. For platform companies, that convergence removes the option of waiting it out. The question is not whether age verification requirements will tighten. The question is whether platforms build their own credible systems before regulators impose blunter solutions on them.
Meta has the resources to build those systems. What it has lacked, according to the Commission, is the will to prioritize them over growth metrics. Eleven million children under 13 using Facebook and Instagram in Europe is a very large audience. That audience generates data, shapes engagement patterns, and contributes to the flywheel that keeps parents, friends, and siblings more active on the platform. Child safety and growth are not automatically opposed, but when the design choices that allow children to slip through are also the choices that preserve those engagement numbers, the conflict of interest is structural. That is ultimately what Brussels is charging Meta with failing to resolve.
Also read: AI was supposed to be cheaper than labor, but the compute bill is killing the story • AI is learning to find pancreatic cancer before anyone feels sick • AI can now spot pancreatic cancer years before symptoms appear and that could save millions
