Italy’s move to temporarily ban ChatGPT has inspired other European countries to study if harsher measures are needed to rein in the wildly popular chatbots and whether to coordinate such actions.
While European parliamentarians disagree over the content and reach of the EU AI Act, some regulators are finding that existing tools, such as the General Data Protection Regulation (GDPR) that gives users control over their personal information, can apply to the rapidly emerging category of generative AI companies.
Generative AI, such as OpenAI’s ChatGPT, relies on algorithms to generate remarkably human responses to text queries based on analyzing large volumes of data, some of which may be owned by internet users.
The Italian agency, also known as Garante, accused Microsoft Corp-backed OpenAI of failing to check the age of ChatGPT users and the “absence of any legal basis that justifies the massive collection and storage of personal data” to “train” the chatbot.
“The points they raise are fundamental and show that GDPR does offer tools for the regulators to be involved and engaged into shaping the future of AI,” said Dessislava Savova, partner at law firm Clifford Chance.