According to Ireland’s influential data regulator, the biggest internet companies in the world are interacting closely with EU regulators to make sure their AI products comply with the EU’s stringent data protection laws.
Lead EU regulator for Alphabet’s Google, Meta, Microsoft, TikTok, and OpenAI, among others, Ireland’s Data Protection Commission stated that its extensive authority hasn’t been tried on AI yet and that it may eventually require modifications to business models to guarantee data privacy is maintained.
In an interview on Tuesday, the two senior officials at Ireland’s Data Protection Commission stated that AI raises a variety of potential problems for data privacy.
Regulators must determine what legal justifications exist for the use of personal data and whether or not businesses should be permitted to search the internet for public data in order to train AI models.
AI operators must also clarify how they can protect people’s data rights, including the ability to have their data deleted. The Irish officials stated that it is imperative to tackle the possibility of AI models providing inaccurate personal information about individuals.
Dale Sunderland, one of the two Data Protection Commissioners for the Irish regulator, stated that “there has been extensive engagement” from major U.S. internet companies like Google, Meta, TikTok, LinkedIn, and OpenAI.
“They’re seeking our views on some of their new products in the AI space, particularly the large language model space.” After consulting with the Irish authority, Google decided to postpone and modify its Gemini AI chatbot, he added.
Due to the fact that the majority of the largest US internet companies have their EU head offices in Ireland, the European Data Protection Board, which is currently developing guidelines for AI operations under EU data protection law, allows other regulators to weigh in on decisions.Operators of AI models will need to abide by the EU’s historic new AI Act starting next month. However, they will also need to abide by the General Data Protection Regulation, the bloc’s main data protection regulation, which carries fines of up to 4% of a company’s global sales.
“National regulators, like us, have a lot of power,” stated commission chair and other Ireland Data Protection Commissioner Des Hogan.
“If they haven’t done proper due diligence around the impacts of new products or services … they run that risk of having to change the design downstream.”