The DPC’s investigation into the development of Google’s AI model delves into the processing of personal data belonging to EU citizens to train PaLM2.
The Data Protection Commission (DPC), the Irish supervisory authority for the General Data Protection Regulation (GDPR), has initiated a cross-border investigation into Google Ireland Limited to ascertain whether Google adhered to EU data protection laws while developing its artificial intelligence model.
DPC stated on September 12 that the regulator will examine the use of personal data from EU citizens in the training of Google’s Pathways Language Model 2 (PaLM2).
PaLM2, an advanced language model, was introduced on May 10, 2023. It stands out for having improved multilingual, reasoning, and coding abilities.
DPC stated that a Data Protection Impact Assessment is “essential in guaranteeing that the fundamental rights and freedoms of individuals are adequately considered and safeguarded when the processing of personal data is likely to result in a high risk.” DPC elaborated:
“This statutory inquiry forms part of the wider efforts of the DPC, working in conjunction with its EU/EEA (European Economic Area) peer regulators, in regulating the processing of the personal data of EU/EEA data subjects in the development of AI models and systems.”
Google asserted that PaLM 2 was more efficient and quicker than its predecessors at its release. It is available in four sizes—Gecko, Otter, Bison, and Unicorn—appropriate for various applications.
Gecko is a lightweight application that functions efficiently on mobile devices, even inactive ones. The technology giant also announced that it would distribute version updates for PaLM 2 as it is integrated into products.
DPC continues to investigate tech companies
The investigation was initiated just one week after the DPC concluded its inquiry into social media platform X, which complied with the compliance requirements.
X consented to cease using personal data from users in the European Union and European Economic Area (EEA) on September 4. Grok, the company’s artificial intelligence chatbot, had been previously trained using this data.
X declared that it would delete data collected between May 7 and August 1 to develop, refine, or train Grok. Additionally, it committed to refraining from collecting any additional data.
Regulators tighten oversight to protect users
Regions in various jurisdictions have intensified their supervision of Web3, AI, cryptocurrency, and related businesses to safeguard users from personal injury or financial loss during trading.
Brazilian regulators suspended x on August 30 due to Elon Musk’s refusal to designate a legal representative for the company in Brazil. On September 2, the Brazilian Supreme Court maintained the order in a unanimous decision by five justices.
In July, a British regulator imposed a $4.5 million sanction on Coinbase’s United Kingdom arm for violating a voluntary agreement regarding user onboarding.
The Financial Supervisory Service (FSS), South Korea’s financial regulator, is reportedly inspecting virtual asset exchanges to identify suspicious or illicit transactions.
This inspection is expected to take place earlier this month. The regulator aims to guarantee that crypto exchanges and associated organizations adhere to the regulations.
Operating an unlicensed virtual asset trading platform in Hong Kong became a criminal offense on June 1. The city’s regulator has granted interim approvals to certain applicants; however, they have not yet been granted full licensing.
