While the majority of the world was busy celebrating the advent of 2024, it was back to work for ChatGPT’s parent firm, Openai.
The company is said to be racing against the clock to do everything in its power to reduce the regulatory risk in the EU after it came under scrutiny for violating people’s privacy. This is the main reason why the firm is back to work in terms of making amendments to its terms and conditions.
The powerful AI offering from the company, ChatGPT was accused of affecting users’ privacy negatively with a whole line of investigations in place to counteract data protection issues related to how chatbots process user data and how they produce data in general including those coming from top watchdogs in the region.
We even saw things get serious when Italy went as far as suspending the AI tool for a while after it felt the company needed to modify some data and the degree of control provided to users across the board.
Now, OpenAI is generating emails on how it has altered its ChatGPT service in these particular regions where the most concerns grew. They have highlighted which entity is responsible for personal data processing and regulation as mentioned in their privacy policy.
The latest terms outlined the firm’s Dublin subsidiary as the leading regulator for user data across the EEA region including Switzerland. This would be applicable as early as next month, the firm added.
In case any form of disagreement arises on the subject, users are told to get rid of their accounts immediately on OpenAI. More discussions were done on how the GDPR’s OSS would be in place for enterprises processing EU’s data to better align privacy oversights through a single supervisory organization present in the EU.
Such a status limits the chances for privacy watchdogs present in other places around the globe to act on such matters. Before, they would need to take the route. Now, they can send complaints back to the main firm’s supervisor to take into consideration any matter.
If there is any urgent risk arising, GDPR regulators would retain powers so they could intervene through local means.
We saw the company opening up an office in Ireland’s capital this past year and hiring several people for leading legal and privacy positions. However, the majority of the company’s positions for hiring are still based in the US.
The exact figure for hires that its Dublin subsidiary makes would be in context to the GDPR.
OpenAI’s latest privacy policy for the EU also entails further details in terms of what legal bases it uses for data processing of user information. They have added some new terms including how it relies upon the best interests of the user so that its AI model can be trained effectively that can benefit third parties as well as society as a whole.
Whether they choose to admit it or not, one thing is for sure. OpenAI intends to provide justification for the fact that makes use of user data without obtaining consent and is being done to gain profits linked to privacy regulators in the EU. It vows that everything it has done was never for personal gain but for the interest of the public.
The matter is very tricky and the GDPR watchdogs are very well aware of the strategy that OpenAI might be using to tackle the scrutiny related to privacy concerns. Italy has been in the lead on this front.
The country has been demanding for so long how regulators need to find out how data protection in the world of AI can be carried out effectively.
Before we forget, the company’s users in the UK are excluded from the entire legal basis upon which OpenAI’s switch toward Ireland works due to Brexit. Ever since the latter arose, GDPR by the EU has failed to function and apply to those in the United Kingdom.
A lot is going on here and it’s going to be interesting to see how the change in OpenAI’s terms impacts the regulatory risk at peak in the EU.
Read next: Even Though Prompt Engineering is a Hot Skill, Better Communication with Humans will be More in Demand
