The action plan states that “this work will also make it possible to prepare for the entry into application of the draught European AI Regulation,” which is a commitment to this goal.
The National Commission on Informatics and Liberty (CNIL), France’s data protection regulator, released an action plan on May 16 to address privacy concerns with artificial intelligence (AI), particularly generative applications like ChatGPT.
In the first two months after its launch, ChatGPT, the most well-known chatbot in the world, saw an increase in its user base to 100 million. Concerns about how it collects and uses personal data increase as it becomes more popular.
The CNIL publishes an action plan for the deployment of AI systems that respect people’s privacy concerns in light of recent news regarding artificial intelligence, especially with regard to so-called generative AIs like ChatGPT. the announcement is read.
OpenAI, the provider of ChatGPT, was penalised for data protection violations by Garante in March. The service was reinstituted in Italy in April, but a task force was created by the European Data Protection Board to ensure uniform enforcement. This allowed for a dispersed strategy throughout the EU.
The French authority is already regarded as one of the most powerful in the EU at the European level, so the proposal may affect how European regulators view ChatGPT and related technologies.
Domestically, a source with knowledge of the situation told EURACTIV under the condition of anonymity that the French data protection authority is positioning itself to take the lead in national enforcement of the landmark EU law known as the AI Act, which regulates AI based on its potential for harm.
The action plan states that “this work will also make it possible to prepare for the entry into application of the draught European AI Regulation,” which is a commitment to this goal.
ChatGPT was ordered to be banned by the Italian privacy watchdog and its provider OpenAI was investigated for possible violations of EU data protection laws. The action plan focuses on data protection, including transparency, safeguards against biases, scraping of publicly accessible data, and user inputs.
Due to the importance of these issues in the EU and France, the CNIL committed internal resources to addressing these concerns and has already released a document outlining its philosophy regarding data protection issues.
By sharing best practises and guidelines and publishing directive documents, the “guiding AI development” stream aims to direct generative AI companies towards technical advancements that respect personal data.
The third “ecosystem” stream has three layers. It aims to expand the regulator’s existing regulatory sandbox to innovative AI-based projects.
CNIL launched a competition to assist companies in compliance with European data protection rules. It also launched a project for providers of “enhanced video surveillance” in the context of the Paris Olympic and Paralympic Games. The CNIL’s action plan focuses on compliance with enhanced video surveillance, AI in the fight against fraud, and investigating complaints lodged on generative AI.