Italy's data protection authority, the Garante, found OpenAI's artificial intelligence chatbot ChatGPT breached several provisions of the EU General Data Protection Regulation following a fact-finding inquiry. OpenAI has 30 days to submit counterclaims. Meanwhile, the Garante issued a 79 million euro fine to energy company Enel Energia for alleged unlawful processing of personal data for telemarketing purposes in violation of the GDPR.
1 March 2024
Garante alleges OpenAI's ChatGPT violated GDPR
Related stories
Notes from the IAPP Canada: An evolving approach to privacy amid geopolitical shifts
GPS 2025: How 3 AI regulators view cross-border cooperation
GPS 2025: European regulators reflect on pay or consent enforcement, concerns
Notes from the IAPP Europe: EDPB and EDPS 2024 annual reports, first DMA fines and difficulties keeping up with deadlines
GPS 2025: Collaboration, precision highlight future of US state privacy law enforcement
