France's data protection authority, the Commission nationale de l'informatique et des libertés, issued its first set of recommendations for using artificial intelligence technologies while ensuring the protection of personal data. The recommendations focus on the legal and technical aspects of AI use in the context of complying with the EU General Data Protection Regulation, including a legal basis to process personal data using AI systems and carrying out tests when data is reused. Editor's note: Explore the IAPP AI Governance Center and subscribe to the AI Governance Dashboard.