The Spanish data protection authority – AEPD – has published a Model Data Protection Impact Assessment ‘DPIA) Report for the Private Sector. it includes the factors that must be taken into account by the private sector in order to perform a DPIA, including the description of the data processing activity, its purpose and legal basis, as well as risk mitigating measures.
Norway DPA publishes statement on X’s use of data for AI training
X has resumed processing EU/EEA users' posts for AI training, requiring users to opt out to protect their personal data.