ChatGPT: Italy says OpenAI's chatbot breaches data protection rules


ChatGPT, the artificial intelligence-powered chatbot, breaches rules on data protection, an Italian watchdog says.

An inquiry by Italy's Data Protection Authority (DPA) found data privacy violations, which the BBC understands are related to collecting personal data and age protections.

The chatbot relies on being fed large amounts of data from the internet.

ChatGPT's maker OpenAI has 30 days to respond with its defence. The BBC has contacted OpenAI for comment.

Italy has taken a firm stance on data protection when it comes to ChatGPT.

It was the first Western country to block the product in March 2023, citing privacy concerns.

ChatGPT was reinstated around four weeks later, after stating it had successfully "addressed or clarified" the issues raised by the DPA.

Italy's DPA launched a "fact-finding activity" at the time, which it says has now found data privacy violations.

In a statement, the DPA said it "concluded that the available evidence pointed to the existence of breaches of the provisions contained in the EU GDPR [General Data Protection Regulation]".

They are related to mass collection of users' data which is then used to train the algorithm.

The regulator is also concerned that younger users may be exposed to inappropriate content generated by the chatbot.

Under the EU's GDPR law, firms which break the rules can be fined up to 4% of the company's global turnover.

Italy's DPA works alongside the European Union's European Data Protection Board - which set up a special task force to monitor ChatGPT in April 2023.