← AI Glossary

General Data Protection Regulation

The EU regulation governing the processing of personal data, including provisions relevant to AI such as data protection by design, the right to explanation and restrictions on automated decision-making.

In plain language

Europe's strict privacy law that affects AI by controlling how personal data can be collected, used and stored. If your AI uses people's data, GDPR has a lot to say about how you do it.

Why this matters

GDPR has direct implications for AI governance, particularly around data processing, automated decision-making and individual rights. Organisations processing EU personal data through AI systems must ensure compliance, including documented data processing agreements and explanations of automated decisions.

Relevance

Governance

GDPR compliance is a legal and operational requirement for any AI system handling EU personal data, affecting consent mechanisms, data retention and decision-making logic.

Putting general data protection regulation into practice in your organisation?

Ready to transform your AI strategy?

Partner with Australia's AI strategy and governance specialists. From adoption roadmaps to ISO 42001 audit readiness.