CNIL published recommendations on AI compliance with GDPR, emphasizing transparency and individual rights. Key aspects include providing timely, clear information at data collection, guidelines for handling data subject rights requests, and clarifying which AI models fall under GDPR. Organizations should ensure compliance while developing AI systems, focusing on flexibility in purpose limitation and data minimization, and implementing safeguards for personal data retention. Recommendations aim to balance legal obligations with innovation in AI.
https://natlawreview.com/article/cnil-publishes-recommendations-ai-and-gdp