OpenAI, a US-based Artificial Intelligence technology company, recently faced a GDPR-related suspension order from the Italian Data Protection Authority (the Garante) over their chatbot ChatGPT. Italy set out a list of demands that OpenAI needs to satisfy in order to lift the suspension order. These requirements include providing users with an information notice detailing the logic and arrangements of the data processing involved in ChatGPT, adopting age gating to prevent minors from accessing the service, clarifying the legal basis for OpenAI’s processing of personal data, and giving users the ability to exercise their rights over their personal data. The Garante has also mandated that OpenAI migrate to a more robust age verification system by September 30. OpenAI has to comply with these demands by April 30th in order to lift the order.
OpenAI responded to the order by swiftly blocking access to ChatGPT and has agreed to comply with Italian data protection authority’s regulations. CEO Sam Altman also stated that OpenAI will be transparent about their data processing and ensure that they are following all privacy laws. Italy’s Garante and OpenAI both aim to protect the rights of users and advance the data privacy standards.
Since the suspension of ChatGPT, OpenAI has been actively working to comply with the GDPR requirements, so as to provide a safer platform for the users and abide to all data protection regulations. The company has made a commitment to implementing the changes required from the Garante before the stipulated deadline and is committed to the protection of their users’ privacy. OpenAI will continue to maintain their high standards of privacy and security for their users, ensuring that the data of all users is safely handled with respect to the law.
