The CNIL has created an artificial intelligence department and is launching a two-year project using artificial intelligence. 

The CNIL of France has created an artificial intelligence department and is launching a two-year project using artificial intelligence. The aim of this venture is to establish a regulatory framework for using AI in Europe. While preparing for the implementation of the European regulation on AI, CNIL is developing an AI service to increase knowledge on AI systems and the hazards they potentially pose to individuals’ privacy. It will also provide preliminary recommendations on learning databases in the following weeks.

CNIL creates an AI Department, meant to collaborate with all its divisions, and provide legal recommendations. 

CNIL’s AI team consists of specialists working on learning databases, predictive analytics and machine learning algorithms. They will be responsible for drafting recommendations aimed at helping companies implement these technologies responsibly and ensure that they comply with French law when using them. The Artificial Intelligence Department (AID) will assist the Legal Support Department, headed by Thomas Dautieu, in several ways, including creating “soft law” (references, recommendations, etc.) and handling requests for government guidance. This division may also consult the AID on projects employing very advanced AI systems, publicly or privately. This new service is meant to collaborate with all CNIL’s divisions because of its interdisciplinary make-up and transversal character. If problems arise due to the implementation of an AI system, the AID will help investigate complaints and implement fixes.

While CNIL is one of the first EU regulators to establish an AI department, the regulator looks forward to collaboration with other EU regulators. 

This change at the CNIL follows the findings of the Council of State report on AI in government agencies published on August 30, 2022. The Council of State has suggested that the CNIL’s resources be increased and its function expanded to become one of the national supervisory authorities in charge of regulating AI systems. It also emphasizes the need for the CNIL to act as a coordination and supervision body by the terms of the forthcoming European law, guaranteeing the interconnection of a wide range of public institutions, from market surveillance agencies to sector regulators. The CNIL is one of the first administrations to invest in an artificial intelligence department. It will be interesting to see how this initiative develops and its impact on European regulation in the coming years. 

Does your company have all of the mandated safeguards in place to ensure the safety of the personal data you collect or process? Aphaia can help. Aphaia also provides both GDPR and Data Protection Act 2018 consultancy services, including data protection impact assessments, and Data Protection Officer outsourcing. We can help your company get on track towards full compliance. Contact us today.