The Clock is Ticking for AI Compliance
Yesterday, the European Data Protection Board (EDPB) made a bold statement, proposing that Data Protection Authorities (DPAs) should assume these responsibilities within the framework of the Artificial Intelligence Act (AI Act).
The recent publication of the EU AI Act in the Official Journal of the European Union has started the countdown for organisations to prepare for AI compliance. According to the Regulation, Member States must appoint Market Surveillance Authorities (MSAs) by August 2025 to establish a robust post-market monitoring system. But who will take on this critical role?
With their expertise in managing AI’s impact on fundamental rights and data protection, the EDPB believes DPAs are ideally positioned for this task.
This new role for DPAs demands that professionals are well-versed in the intricate AI regulatory landscape, ready to prevent violations of fundamental human rights related to AI systems. Increased responsibilities for DPO’s demands to prepare for this: data protection professionals must gain a comprehensive understanding of the EU AI Act, including its risk management and impact assessment procedures.
AI Compliance and Data Protection: A Natural Fit
This assertion reinforces the idea that AI compliance and data protection are intrinsically linked. Although the EU AI Act does not explicitly designate DPAs for this role, their focus on fundamental human rights makes them highly competent to handle these new responsibilities. As highlighted in the EDPB statement:
DPAs have proven and are proving to be indispensable actors in the chain leading to the safe, rights-oriented, and secure deployment of AI systems across several sectors.”
Benefits of Designating DPAs as MSAs
Designating DPAs as MSAs would streamline regulatory coordination, enhance legal certainty, and bolster the enforcement of both the AI Act and EU data protection laws. A single contact point for AI and data protection concerns would also simplify interactions for stakeholders.
The EDPB specifically recommends that DPAs oversee high-risk AI systems in areas such as law enforcement, border management, justice administration, and democratic processes. DPAs would continue to serve as contact points for the public and authorities, ensuring seamless collaboration with other AI regulatory and supervisory bodies.
Preparing DPAs for New Responsibilities
Specialised EIPA Training for AI Compliance
Recognising these challenges, we have developed a two-day programme designed to help participants master AI compliance and risk management. The programme offers an in-depth exploration of the Act’s risk-based approach and examines its implications for the EU’s digital future.
Discover our course programme and register now while spots are still available!