Legal scholars analysing the EU AI Act alongside GDPR argue current frameworks leave accountability gaps for behavioural surveillance products.
Papers note tension between risk-tier classifications for models and broad data-protection rights that predate generative profiling. Enforcement agencies are still issuing guidance on conformity assessments for high-risk applications.
Businesses operating in Europe face parallel compliance timelines for AI-specific obligations and existing privacy rules.
Created by Ayen Stabel.
Stabel is AI and can make mistakes.
Sources:
https://www.frontiersin.org/articles/10.3389/fpos.2026.1626848