AI

Open Rights Group Complains to ICO About Meta’s AI Data Use

AI, Enforcement, Meta |

The Open Rights Group (ORG) has filed a complaint with the Information Commissioner’s Office (ICO) against Meta’s plans to use user data from Facebook and Instagram to develop AI, claiming “legitimate interests” as the legal basis. ORG argues that Meta’s approach violates UK GDPR by failing to guarantee users’ right to object and not providing clear, specific purposes for the data use. Despite Meta pausing these plans on 14 June after a GDPR complaint by noyb, ORG insists on a binding decision to protect the data of over 50 million UK residents.

Open Rights Group Complains to ICO About Meta’s AI Data Use Read More »

Baden Wurtemberg DPA published a navigator for AI & data protection guidance (ONKIDA)

AI, EU law, GDPR |

The LfDI Baden-Württemberg has published the ‘Orientation Aids Navigator AI & Data Protection’ (ONKIDA) on 19 July 2024. This tool helps organize and provide quick access to key regulatory documents on artificial intelligence and data protection, making it easier for authorities and companies to navigate GDPR compliance. ONKIDA includes a matrix that links central data protection requirements with guidance from various supervisory authorities, facilitating the understanding and application of these regulations in AI contexts.

Baden Wurtemberg DPA published a navigator for AI & data protection guidance (ONKIDA) Read More »

CNIL’s Guidance on Deploying Generative AI

AI, CNIL, EU law, GenAI |

On 18 July 2024, CNIL published guidelines for organizations planning to deploy generative AI systems, emphasizing the importance of responsible and secure deployment to protect personal data. Generative AI, capable of creating various types of content, requires large datasets, often including personal data, for training. CNIL advises starting with specific needs, supervising usage, acknowledging system limitations, choosing secure and robust deployment methods, and implementing governance for GDPR compliance. Training and awareness for end users on risks and prohibited uses are crucial to mitigate potential harms and ensure proper handling of data.

CNIL’s Guidance on Deploying Generative AI Read More »

CNIL publishes Q&A on the Use of Generative AI Systems

AI, CNIL, EU law, GenAI |

On 18 July 2024, CNIL issued a Q&A document addressing the use of generative AI systems. The FAQ outlines the benefits, limitations, and compliance measures for deploying these systems, emphasizing GDPR adherence. Generative AI systems generate diverse content but pose risks such as inaccuracies and potential biases. CNIL highlights the need for proper system selection, deployment methods, risk analysis, and end-user training. The Q&A also provides guidance on compliance with the upcoming EU AI Act, which mandates transparency and accountability in AI system usage.

CNIL publishes Q&A on the Use of Generative AI Systems Read More »

Irish DPC Highlights GDPR Challenges with AI and Data Protection

AI, DPC, EU law |

On 18 July 2024, the Irish Data Protection Commission (DPC) highlighted important data protection issues with the growing use of Generative AI (Gen-AI) and Large Language Models (LLMs). These AI systems, which often process personal data during training and usage, raise concerns about data accuracy, retention, and potential biases. The DPC advises organizations using AI to ensure GDPR compliance by conducting risk assessments, understanding data flow, and safeguarding data subject rights. AI product designers must also consider GDPR obligations, transparency, and security to prevent misuse and protect personal data throughout the AI lifecycle.

Irish DPC Highlights GDPR Challenges with AI and Data Protection Read More »

Scroll to Top