A collection of AI resources from CNIL were published in an effort to aid professionals in maintaining compliance.
With the developments in the use of AI systems over the years, new challenges in terms of data protection have presented. As part of its missions of information and protection of rights, the CNIL has offered a set of content devoted to AI, to aid professionals, as well as specialists and the public in general, in this regard. These resources form part of a larger European strategy, which is aimed at encouraging excellence in the field of artificial intelligence. This strategy includes rules intended to guarantee the reliability of these AI technologies. More particularly, it is about developing a solid regulatory framework for AI based on human rights and fundamental values, building the trust of European citizens.
In addition to helping professionals maintain compliance, the AI resources from CNIL are also aimed at specialists in the field, and would prove helpful to the general public as well.
The resources are aimed at three main audiences: AI professionals which consist of data controllers or subcontractors, specialists (AI researchers, data science experts, machine learning engineers, etc.), and the public at large. These resources can be very helpful to members of the general public who are interested in the operation of AI systems and their implications in our daily lives or those who wish to test their operation. Specialists who handle artificial intelligence on a daily basis, and who are curious about the challenges that artificial intelligence poses to data protection will also find these resources very helpful. The resources are however, mainly tailored to professionals who process personal data based on AI systems, or who wish to do so and who want to know how to ensure their compliance with the GDPR.
The AI resources from CNIL include two extensive guides for professionals empowering them to take greater responsibility for remaining in compliance with the use of their AI systems.
The CNIL provides two main resources which would prove helpful to AI professionals, a detailed guide for GDPR compliance, as well as a self assessment guide for organizations to assess their AI systems with regard to GDPR compliance. The guide for GDPR compliance should prove helpful at every stage of the lifespan of AI systems; the learning stages, as well as the stages of production. It encourages continuous improvement as well as continuous assessment, to ensure that once the system is deployed, it meets the operational needs for which it was designed. This guide takes into account the known challenges presented by AI systems and aims to deal with them preemptively, and on a consistent basis throughout their use. The self assessment guide provided by CNIL is to be used in conjunction with the GDPR compliance guide, and helps AI professionals to assess the maturity of their AI systems with regard to the GDPR. It aims to empower these professionals with instructional tools which help promote transparency and user rights, prevent breaches, and maintain compliance, and best practices.