We have all been talking about GDPR and it has been effective for roughly half a year. Howveer, as Risto Siilasmaa points out, it is becoming outdated. Not only due to challenges in the political process and slowness of setting up legislation. The larger need comes from the speed of technological change. Especially AI is enabling so many new ways to utilise the data so that were not considered and are thus causing needs to update the regulations.
Speaking at an AI event in Finland, Risto Siilasmaa warned that the EU’s General Data Protection Regulation (GDPR) was “largely designed before anyone in Brussels had heard the term machine learning”. “We need to regularly update the rules and make sure they are cutting-edge and respond to these new needs,” he said. “I was talking to a large number of commissioners and director generals about machine learning last autumn, and I gave them a lesson in how machine learning works. I told them: ‘You need to update GDPR’ and they were a bit shocked, they said: ‘We haven’t even launched it yet and now you’re saying we need to update it’. That was not a very popular statement but I believed it then and I believe it now,” he said.