Artificial intelligence: data protectionists demand specific requirements
State data protection officers demand clear AI regulations to prevent sensitive incidents during training.
(Image: chana/Shutterstock.com)
Data protection experts from the federal states have met repeatedly to discuss the use of artificial intelligence – a key challenge for data protection. Critical incidents can occur when training generative AI models in particular, as personal data is often processed. Data protectionists cited the case of a court reporter from Baden-Württemberg who was turned into a criminal by Microsoft's Copilot as a prominent example.
"In the majority of cases, the use of artificial intelligence also affects the requirements of the General Data Protection Regulation," said Prof. Dr. Alexander Rossnagel, Hesse's Data Protection Commissioner, who has also chaired the independent federal and state data protection supervisory authorities (DSK) since May. According to the data protection experts, a "careful analysis" is important, among other things. So far, there has been a lack of specific data protection requirements.
Concern about neglect of data protection
The data protection authorities were unanimous in their concern "that the announcements made so far regarding the digital policy priorities for the European legislative period that is now beginning are neglecting data protection", according to the data protection experts (PDF).
The use of AI entails "fundamental changes to the conditions for enforcing the rights and freedoms of citizens". A careful analysis and discussion of specific data protection requirements is therefore necessary.
Artificial intelligence working group
For their project and in response to new challenges, the data protection experts are also planning to set up a working group by the end of the year to deal with the topic of AI.
In addition, the data protectors also dealt with the currently much-discussed biometric facial recognition "in connection with repressive video surveillance by the security authorities" – i.e. in the area of law enforcement. Another topic was the Health Data Utilization Act and corresponding amendments to the hospital laws of the various federal states to reconcile research and data protection.
(mack)