> A third-party controlling the local scan of all my data specifically to report whatever it wants is a huge problem.

And that is exactly my point: you fundamentally can't audit what ChatControl is doing, because you don't have access to the "list of illegal material" (precisely because it is illegal). So whoever controls that list could abuse it.

I see lot of weird arguments like "it's breaking encryption" and "it's destroying democracies". It's wrong. The problem is that it may be abused if your democracy doesn't work as well as it should. And it's good enough an argument to be against ChatControl.

My whole point is that it's not constructive to throw baseless complaints at ChatControl: there is a valid argument against it (still looking for more), and we need to use it.