The complaint also raises GDPR transparency concerns, alleging that OpenAI cannot identify where the data it generates on individuals originates from, nor what data the chatbot stores about people. The nonprofit is urging the Austrian DPA to investigate OpenAI's data processing and impose a fine to ensure future compliance. This follows similar complaints in Poland and an ongoing investigation by Italy’s data protection authority. OpenAI's failure to comply with GDPR could lead to penalties of up to 4% of global annual turnover and potential changes to how generative AI tools operate in the EU.
Key takeaways:
- OpenAI is facing another privacy complaint in the European Union, filed by privacy rights nonprofit noyb, due to its AI chatbot ChatGPT's inability to correct misinformation it generates about individuals.
- The complaint argues that OpenAI is failing to comply with the General Data Protection Regulation (GDPR), which governs how personal data of regional users can be processed, and includes the right to have erroneous data corrected.
- OpenAI has previously faced intervention from Italy’s data protection authority, and is currently facing a similar complaint in Poland. The Italian authority has an open investigation into ChatGPT and believes OpenAI has violated the GDPR in several ways.
- OpenAI's failure to comply with GDPR could lead to penalties, including fines up to 4% of global annual turnover, and could force changes in how generative AI tools operate in the EU.