GDPR
General Data Protection Regulation — the European Union's comprehensive data protection law that gives individuals control over their personal data and imposes strict obligations on organizations handling that data.
Why It Matters
GDPR is the global standard for data privacy. Even non-EU companies must comply when handling EU residents' data, affecting AI training and deployment worldwide.
Example
A user requesting deletion of all their data from a company's AI training datasets under GDPR's 'right to be forgotten,' requiring the company to retrain their models.
Think of it like...
Like a bill of rights for personal data — it gives individuals specific powers over how their information is used, with serious penalties for organizations that do not comply.
Related Terms
Data Privacy
The right of individuals to control how their personal information is collected, used, stored, and shared. In AI, data privacy concerns arise from training data, user interactions, and model outputs.
EU AI Act
The European Union's comprehensive regulatory framework for artificial intelligence, establishing rules based on risk levels. It categorizes AI systems from minimal to unacceptable risk with corresponding compliance requirements.
Compliance
The process of ensuring AI systems meet regulatory requirements, industry standards, and organizational policies. AI compliance is becoming increasingly complex as regulations proliferate.
Data Governance
The overall management of data availability, usability, integrity, and security in an organization. It includes policies, standards, and practices for how data is collected, stored, and used.