It has been five years since the GDPR came fully into force. We now have a good idea of how data protection will be interpreted and should be applied. We also understand that it's always a moving target with internal organisation changes, external guidance, sanctions, and judgement needing to be understood and addressed.
In this issue, we discuss:
- The AI Act.
- Chat GPT and large language models.
- The implications of the €1.2bn fine for Facebook.
- Certification as an enabler to international transfers.
- DPC guidance on Records of processing activities.
Consulting news
In an era where Artificial Intelligence (AI) is reshaping the insurance landscape, traditional audit methods are facing a new challenge: black box reserving models. These sophisticated systems promise efficiency and precision but present a realm of new complexities. Black box models compute input information to produce outputs – but offer little visibility of their inner workings. These systems are...
Since the start of the year, many Central Bank of Ireland (CBI) articles and speeches have called out the Payments Institutions (PI) and Electronic Money Institutions (EMI) sector as being one of increased risk. One area of focus has been the wind-down plans for relevant institutions, ensuring that these are credible and prioritising minimising any negative impact on consumers.
2024 has seen the appointment of two new commissioners in the Data Protection Commission (DPC). The Digital Services Act is now effective, with several large organisations already being required to comply and establish a new regulator, Comisiún na Meán.
Document
Data protection newsletter - Issue 15