By John Weaver
For some time now—in response to the California Online Privacy Protection Act, Canada’s Personal Information Protection and Electronic Documents Act, and similar statutes and regulations from other jurisdictions—any company with any web presence to speak of has provided a public-facing privacy policy on its website, explaining what it does with each user’s information, how it complies with the relevant laws, what rights users have to access their information, etc. These policies have become much more prominent in 2018, as the EU’s General Data Protection Regulation became effective and thousands of companies notified their contact lists that their privacy policies had been updated.
Although artificial intelligence is not nearly as well regulated as data privacy and is, in fact, hardly regulated at all, there are some requirements, expectations, and norms that are emerging from a combination of expert opinion, pending legislation, and the limited black-letter law. In response, we have begun advising clients about AI policies. These are public-facing policies that state certain information about how companies use AI in their business operations.
Read more here.
Privacy & Data Security Blog 