Ireland’s Data Protection Commission (DPC) has launched an inquiry into Google Ireland regarding the firm’s Artificial Intelligence (AI) models, the latest case of a national regulator investigating a global Big Tech giant.
The cross-border inquiry will look at whether Google has complied with any obligations that it may have had to undertake an assessment of the development of its Pathways Language Model 2 AI Model.
DPC explained that a Data Protection Impact Assessment is of ‘crucial importance’ to ensure that the fundamental rights and freedoms of individuals are considered and protected when personal data processing could likely result in a high-risk.
Under EU regulations, companies have carried out cross-border processing if personal data has been processed in more than one EU member state or where the processor of said data has a presence in more than one member state. It also applies if the processor’s activity affects or is likely to affect data holders in more than one member country.
As Google is active throughout the EU the DPC is investigating whether it needs to complete the aforementioned assessment, with the inquiry falling under the Data Protection Act 2018.
Big Tech companies have found themselves operating under an increasingly bright regulatory spotlight over the past year, particularly with regards to data protection and AI.
Google is one of the foremost companies in AI development, alongside the likes of Meta and OpenAI, the latter the developer of popular AI chatbot ChatGPT. As a result it is unsurprising that its AI models are getting regulatory attention.
Various governments across Europe are closely monitoring AI development. The potential of AI for businesses has been noted, but so too have its risks. This has led to the passage of the EU AI Act, which created the European AI Office – something mirrored in non-EU European countries, like the UK where an AI Safety Institute has been established.
Meanwhile, some regulators have also been examining how Big Tech firms have access to vast tracts of personal data. This raises concerns not just around data protection but also on whether Big Tech’s data capabilities give these companies a disproportionate advantage over smaller competitors.