Meta’s AI Data Collection Approved by Irish DPC
The Irish Data Protection Commission (DPC) has approved Meta’s plan to collect data from European users for AI training, despite ongoing legal challenges. Meta made several changes to its original proposal, including improvements to transparency and user control, which addressed the DPC’s concerns raised last year. These adjustments include clearer notices, easier objection processes, extended notice periods, and enhanced data protection measures, aligning with the General Data Protection Regulation (GDPR) requirements.
Meta’s updated approach allows users to opt out of having their public posts used for AI training and ensures that this option is more accessible, including via mobile apps. The DPC will monitor Meta’s compliance by requiring a report on the effectiveness of these safeguards, due in October. Meta plans to start training its AI models on European data from May 27.
Despite the DPC’s approval, privacy advocates and some regulatory bodies remain critical. The privacy group None Of Your Business (noyb), led by Max Schrems, has challenged Meta’s legal basis for data collection. Noyb argues that relying on “legitimate interest” to collect data for AI training violates the GDPR, as it requires explicit user consent rather than an opt-out option, a position supported by previous legal rulings against Meta.
Legal actions continue, including a case in Germany seeking to block Meta’s AI training plans. The outcome of this case may influence further steps by privacy advocates and regulators. While the DPC has given the green light, several data protection authorities remain cautious and may take additional measures to protect user data rights under the GDPR.
