Italy: Data Protection Authority issued formal objection to OpenAI over alleged breaches of General Data Protection Regulation

On 29 January 2024, the Italian Data Protection Authority (DPA) issued a notice of objection to OpenAI, the operator of the ChatGPT artificial intelligence platform, for potential violations of data protection regulations. This follows a provisional restriction of processing order adopted against OpenAI on 30 March 2023. The DPA has determined, based on the evidence gathered, that some practices may be unlawful under the General Data Protection Regulation. OpenAI has been given 30 days to present its defence against the alleged violations. The DPA will consider the ongoing work of a special task force comprising the EU Data Protection Authorities coordinated by the European Data Protection Board (EDPB) to finalise the proceedings.