September 12, 2024 at 08:24AM
Ireland’s Data Protection Commission (DPC) has initiated a cross-border inquiry into Google’s AI model to ensure compliance with EU regulations. The focus is on Google’s Data Protection Impact Assessment (DPIA) and its processing of personal data under the General Data Protection Regulation (GDPR). This reflects broader efforts by EU and EEA regulators to oversee AI model training and citizen data usage.
From the meeting notes, it is clear that the European Union’s key data privacy regulator, Ireland’s Data Protection Commission (DPC), has initiated a cross-border inquiry into Google’s AI model to determine its compliance with EU regulations. The inquiry is part of a broader effort by the DPC and European regulators to regulate the collection of personal data into AI models.
The DPC is specifically concerned about whether Google has fully complied with its Data Protection Impact Assessment (DPIA), as required by the General Data Protection Regulation (GDPR), in relation to its foundational AI Model, Pathways Language Model 2 (PaLM 2). The DPIA assesses the necessity, proportionality, and safeguards of processing personal data, aiming to identify and mitigate any data protection risks.
This probe reflects the close monitoring by EU and EEA regulators of how tech giants like Google are training their AI models and using citizen data, highlighting the potential privacy minefield of using personal data in training and processing prompts for AI companies in the EU and EEA.