A key principle of the GDPR is that you process personal data securely by means of ‘appropriate technical and organisational measures’ – this is the ‘security principle’. Doing this requires you to consider things like risk analysis, organisational policies, and physical and technical measures. You also have to take into account additional requirements about the security of your processing – and these also apply to data processors.
Meta Faces GDPR Action for Using European Data in AI Training
Noyb and German consumer group challenge Meta's AI training using European data without GDPR-compliant legal basis, demanding immediate halt and […]