This page is fully or partially automatically translated.

Your message has been sent

You can find the message in your personal profile at "My messages".

An error occured

Please try again.

Make an appointment with

So that you can make an appointment, the calendar will open in a new tab on the personal profile of your contact person.

Create an onsite appointment with

So that you can make an onsite appointment, the appointment request will open in a new tab.

Make onsite appointment

Forums it-sa Expo Knowledge Forum C

AI Regulation and GDPR - a double barrier to the use of AI?

What are the challenges of processing personal data with AI? What is the difference between the AI Act and the GDPR?

Buy trade fair ticket

You can register for this action soon.

You can register for the digital action soon.

Please come back at the scheduled date and time.

The action is currently live. Please scroll down to watch.

This action is only available onsite: Forums it-sa Expo

Add action to bookmarks and download as iCal

Join now

Note: If you continue, the contact data you provided during registration may be transmitted to the respective provider in accordance with our General Terms and Conditions.

Please log in or register in advance so that you can take part in actions or watch the action videos!

This action has already taken place. This action will soon be available as a video.

This action has already taken place. Please scroll down to watch the video.

This action has already taken place. Please login or register to watch the video.

This action has already taken place. It's not available any more.

You are in!

Your ticket / access to the action was sent to you by email.

There is a problem with the action at the moment. Please come back later or contact support.

calendar_today Wed, 11.10.2023, 14:30 - 14:45

event_available On site

place Forum, Booth 7-641

Action Video

south_east

Action description

south_east

Speaker

south_east

Themes

Data protection / GDPR Legislation, standards, regulations Governance, Riskmanagement and Compliance

Key Facts

The AI Act is based on the GDPR in terms of its structure and mode of operation.
Core question: Processing of personal data
Liability issues, threat of fines & double sanctions?

Event

This action is part of the event Forums it-sa Expo

Action Video

Action description

The upcoming AI regulation of the European Union (internationally referred to as the AI Act) will bring about a world first regulation of AI systems among manufacturers and users. The spectrum of reactions in business, politics and the population ranges from "protective shield" to "dead blow" for the future development and use of AI in the EU.

The effects are already predicted to be as serious as those of the GDPR - not least because the AI Act is strongly modelled on the GDPR in its structure and mode of action. Thus, the AI Regulation will also deal with the processing of personal data as a core issue and pursue a risk-based approach. This will require those affected by the regulation to establish appropriate risk management systems that allow for risk and data protection impact assessments that are as reliable as possible and provide for appropriate technical and organisational measures for risk minimisation and damage limitation.

Currently, the AI Regulation is still in the making. Its last available status dates from the discussions in the European Parliament in June 2023, so a current assessment is only possible on this version, which next enters the trilogue negotiations between the EU Commission, Parliament and Council of Ministers.

But how should the interaction between the AI Act and the GDPR be assessed in light of this current state of affairs? Does the AI Act supersede the GDPR? Does it create new freedoms or additional restrictions? In principle, the aim of such regulations is not to make competition more difficult, but to regulate fair competition while taking into account the overriding protection of the rights and freedoms of the natural persons affected by processing.

It will be interesting to observe how the term "artificial intelligence" or "AI system" is ultimately defined, interpreted and understood within the meaning of the AI Regulation. Where does purely mathematical-technical processing end, and where does artificial intelligence begin? It will also be important whether the processing is carried out exclusively by AI or whether a human checks the results of the AI and then uses them for further processing.

Liability issues and the threat of fines, which both regulations provide for if a (non-legal) use of an AI system in the company ultimately leads to a data protection incident, can also cause uncertainty. In principle, the AI Regulation provides for significantly higher penalties than the GDPR, but can double sanctions occur under certain circumstances?

The lecture attempts to address all of these questions, to put the weal and woe of the upcoming AI Regulation into perspective and to shed light on the possible effects of the AI Act on the regulations of the GDPR already in force with a look at the current draft of the proposed legislation.