EDPO (European Data Protection Office)’s Post

Renewed calls for enshrining #privacy as a #humanright in proposed Canadian legislation, Bill C-27 and Artificial Intelligence and Data Act (AIDA). This issue is nothing new and will not go away seeing that other jurisdictions have long recognized privacy as a fundamental human right (including under #gdpr and EU #aiact). #ai https://lnkd.in/dYwtZHSe

Addressing the Commission on Science and Technology for Development at the United Nations in Geneva recently I pointed out that there is a risk of a regulatory chilling effect on AI. Take the European Commission’s GDPR as a case in point. GDPR has emerged as a barrier to data usage, even when it could benefit citizens. A prime example is in healthcare, where a large pool of anonymised data from a specific patient cohort, say those with Cystic Fibrosis, cannot be utilised to aid in the development of innovative treatments because consent was not obtained at the time the data was collected. This issue could potentially be managed through the use of data trusts under a mandate granted democratically by parliament. We need to ensure that regulation is balanced: protecting individual interests but not undermining collective benefits or addressing collective harms. The Inter-Parliamentary Union has drafted the Charter on the Ethics of Science and Technology as a standard for legislation and a framework for navigating current and future ethical frontiers. It offers guidelines to mitigate risks and promote responsible innovation. You can access the draft charter here: https://lnkd.in/eNKJYqbU #AI #GDPR #DataPrivacy #HealthcareInnovation

From software that recognizes faces to predictive analytics systems, the inclusion of AI technologies into various aspects of daily life raises concerns about consent, transparency, and accountability in data use. In addition, the possibility of algorithmic bias and discrimination boosts the value of addressing ethical considerations at the intersection of data privacy and AI. #aitehnologies #datausage #aiethics #dataprivacy #privacyviolations #informedconcent #informeddecisions #privacyrights #aiinovation #gdpr #prose

Habemus EU AI Act! Today marks a momentous day for AI regulation in the EU. The official publication of the Act is expected in April with an entry into force just 21 days later. As privacy practitioners, we will need to grapple with the addition of yet another to the existing alphabet soup of legislation and regulatory expectations vis a vis data (GDPR, CCPA to name my favourites and all the accompanying acronyms they bring within them). Watch this space for updates on how this will impact our work. #EU #AI #regulation #privacy #dataprotection

Text of EU AI Act leaked amid debate over the timeline for final approval The EU AI Act, a massive 892-page document, was leaked a day after it was circulated to member states. The legislation is due to be discussed by the EU Council's telecoms working group this week, with adoption by EU ambassadors expected on 🗓️ 2 February. The leak comes amid concerns that lawmakers and businesses will not have enough time to scrutinise the legislation and iron out differences… read more in Tech Monitor.👇 --- #SypherPrivacyTalks Stay tuned for more:📌 follow the Sypher Solutions company page. We'll keep you updated on #dataprotection, #privacy, #privacymanagement, #GDPR, #GDPRcompliance, #DPO, #cookies, #consent.

While AI has valid, useful purposes, the use of so much #data can pose a threat to individuals, including their privacy. 🤖🔒    Sophie Stalla-Bourdillon, senior privacy counsel and legal engineer from #TytoClient Immuta, says data handling and management principles in aid of privacy still need to focus on issues including data mutation damage and data quality.    For more on data privacy in the age of #AI, click here ComputerWeekly.com: https://lnkd.in/gZ8UGBPm    #GDPR #dataprivacy #compliance 

This is going to be good! Bart Willem Schermer will bring the facts on all you need to know about the new AI Act in Europe and Valital Technologies' Alex Aoun will talk about the practical aspects of using AI in background checks, with Alice Q. in the mix to bring it all together. Wish I could be there, PBSA Europe. #Valital #VerifyThenTrust #AMaaS

𝐏𝐫𝐢𝐯𝐚𝐜𝐲 𝐰𝐢𝐭𝐡𝐨𝐮𝐭 𝐁𝐨𝐫𝐝𝐞𝐫𝐬: 𝐄𝐔 𝐀𝐈 𝐀𝐜𝐭 Check out Kennedys' first webinar in this series where Joshua Mooney, Ashley Pusey, CIPP/US/EU, CIPM, FIP, Edward L. and I discuss the EU AI Act and how it interacts with privacy laws. What you'll find in this webinar: 🤖 Terminator references 🕵♂️ What is the #aiact and who does it apply to? 🌎 How does the Act apply to non-EU organisations 👽 and what is the current #ai legal landscape in the US? 💫 How does the Act compare to the #GDPR? ⏩ What can organisations do to prepare? The webinar can be accessed here: https://lnkd.in/dHUA-RvG

"During its latest plenary, the European Data Protection Board (EDPB) adopted a statement on the Data Protection Authorities’ (DPAs) role in the Artificial Intelligence Act (AI Act) framework. According to the EDPB, DPAs already have experience and expertise when dealing with the impact of AI on fundamental rights, in particular the right to protection of personal data, and should therefore be designated as Market Surveillance Authorities (MSAs) in a number of cases. This would ensure better coordination among different regulatory authorities, enhance legal certainty for all stakeholders and strengthen the supervision and enforcement of both the AI Act and EU data protection law. According to the AI Act, Members States shall appoint MSAs at national level before 2 August 2025, for the purpose of supervising the application and implementation of the AI Act." #Privacy #GDPR #dataprotection #EDPB #AI   Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde   *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/e25c74y4

Second session of the scientific track of the Privacy Symposium, co-organised by Jaap-Henk Hoepman, Meiko Jensen, Stefan Schiffner and myself. Michal Czerniawski, PhD is speaking in a personal capacity about the effective extraterritorial enforcement of the AI Act: most debates about the AIA are about what should be done, but we need to talk about who does what and how. Key takeaways: Why enforcement matters: AI is a game changer that leverages power asymmetry and is expected to lead to significant innovation, so some countries are choosing not to regulate. But even the best regulation is not as effective without its enforcement. EU's extraterritorial jurisdiction is a conscious choice necessary for the effectiveness of digital policies. But EU is not sole actor regulating the AI, so AIA may have reduced Brussels effect + third countries may avoid the EU due to its tight regulation. Issues with enforcement are that the 1) the AI Office has no dedicated enforcement unit and deals with a moving target 2)AIA works on the 'moderate enforcement approach' of GDPR, which suffers from known issues. 3) lack of tools undermine the AIA's credibility He argues we need hard law enforcement tools and political will to enforce. Watch this space: article in proceedings coming soon! #privacysymposium2024 #dataprotection #anonymisation #GDPR #AIAct #Brusselseffect