Tuesday, December 3, 2024
12.2 C
Los Angeles

FATF Monitoring: Countries Addressing Strategic Deficiencies

Jurisdictions under Increased Monitoring by the FATF Countries...

Former Peruvian President Alejandro Toledo Sentenced to 20+ Years in Odebrecht Bribery Scandal

Former Peruvian President Alejandro Toledo has been...

Ex-Mexican Security Chief Sentenced for Bribery and Aiding Sinaloa Cartel’s Drug Trafficking

Genaro Garcia Luna, Mexico's former Secretary of...

OpenAI Faces GDPR Complaint Over ChatGPT Compliance, Allegations of Privacy Violations

AI/MLOpenAI Faces GDPR Complaint Over ChatGPT Compliance, Allegations of Privacy Violations

OpenAI is reportedly facing a complaint filed with the Polish data protection authority that alleges the company’s ChatGPT, the AI language model, is not compliant with the European Union’s General Data Protection Regulation (GDPR). The complaint asserts that OpenAI has breached several dimensions of the GDPR, including lawful basis, transparency, fairness, data access rights, and privacy by design.

The complaint was filed by Lukasz Olejnik, a security and privacy researcher, who found inaccuracies in a biography generated by ChatGPT. Olejnik’s complaint argues that OpenAI’s approach to developing and operating ChatGPT violates GDPR regulations, claiming that the company did not engage with local regulators before launching the AI chatbot in Europe.

The complaint alleges that OpenAI processed personal data unlawfully, unfairly, and in a non-transparent manner. It also asserts that OpenAI failed to rectify inaccuracies generated by ChatGPT when requested, which contradicts GDPR’s principles.

The Polish data protection authority is expected to investigate the complaint, a process that could take several months to years.

This isn’t the first time OpenAI has faced GDPR-related issues. In March, Italy briefly banned ChatGPT after its data protection authority began probing potential GDPR breaches and age-verification practices. ChatGPT was reinstated in Italy after OpenAI fulfilled the data protection authority’s requirements in April.

By FCCT Editorial Team

Disclaimer: The views expressed in this article are independent views solely of the author(s) expressed in their private capacity.

Check out our other content

Ad


Check out other tags:

Most Popular Articles