AI & the GDPR: How to Reconcile Both Areas from the European Law Perspective
Abstract
Artificial intelligence is the latest in a long wave of disruptive technology, offering significant benefits but also creating risks if deployed in an uncontrolled manner. The EU AI Act which is currently in a draft stage and will come into force not before end of 2024, covers the development and the usage of AI whereas the GDPR regulates the processing of personal data and, hence, has a much broader scope. This paper particularly scrutinizes the interplay between both the AI Act/AI systems and the GDPR and considers the regulatory state of play as per October 2022.