GDPR and AI ACT: what are the similarities?

The GDPR (General Data Protection Regulation) and the AI ACT (Artificial Intelligence Act) are two separate regulatory frameworks that have similar objectives with regard to data protection and the ethical use of Artificial Intelligence (AI). Here's a look at the similarities between these two regulations:

1. Protection of personal data: Both regulations aim to protect individuals' personal data by establishing strict rules on its collection, processing and use. They also require that companies respect the rights of individuals over their personal data, such as the right of access, the right of rectification and the right to erasure provided for by the GDPR.

2. Transparency: GDPR and AI ACT emphasize transparency in AI systems. They require companies to be able to explain how their AI systems make decisions and what data is used to power them. This allows individuals to understand how their data is used and challenge any automated decisions that affect them.

3. Data minimization: Both regulations encourage data minimization, i.e. the collection and processing of only data necessary for specific purposes. This reduces the risk of excessive or irrelevant collection of personal data and helps protect the privacy of individuals.

4. Accountability and data governance: GDPR and AI ACT impose increased responsibility on businesses for data protection and require data security measures to be in place. This includes, for example, carrying out data protection impact assessments (PIAs) for high-risk projects and implementing appropriate security measures to protect data used in AI systems.

5. Protection of fundamental rights: Both regulations aim to protect the fundamental rights of individuals, such as the right to privacy, non-discrimination and freedom of expression. They seek to ensure that AI systems do not infringe on these rights and are used ethically and responsibly.

In conclusion, although GDPR and AI ACT are two separate regulations, they share important similarities when it comes to data protection and the ethical use of AI. By meeting the requirements of these regulations, businesses can realize the benefits of AI while protecting the rights and privacy of individuals.