EDPS Revamps Guidance to EU Bodies on Use of Generative AI
Generative AI used by EU institutions must serve the public interest without compromising data protection standards, the European Data Protection Supervisor said Tuesday. The EDPS published updated guidance on EU agencies' use of generative AI to "reflect the fast-moving technological landscape and the evolving challenges" such systems pose.
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
The guidance provides clearer and more practical instructions on developing and deploying generative AI tools, the EDPS said. Updates include a clearer definition of generative AI, and an action-oriented compliance checklist to help EU institutions assess and ensure the legality of their processing activities.
The revamped guidance clarifies roles and responsibilities to help EU bodies determine if they're acting as controllers, joint controllers or processors. It also gives detailed advice on lawful bases, purpose limitation and how to handle data subjects' rights in the context of generative AI.
The EDPS will monitor the evolution of generative AI and update its guidance as needed, it added.