Title page
Contents
Foreword 2
Acronyms and abbreviations 6
Abstract 7
Abrégé 8
Executive summary 9
Résumé 11
Introduction 13
1. Generative AI: a catalyst for collaboration on AI and privacy 19
The opportunities and risks of generative AI for privacy 19
Privacy concerns emerging from generative AI: Privacy Enforcement Authorities step in 22
Generative AI enhances the urgency to work on the interplay between AI and privacy regulations 24
2. Mapping existing OECD principles on privacy and on AI: key policy considerations 26
The five values-based principles in the OECD AI Recommendation 27
Key policy considerations from mapping AI and privacy principles 27
Overview of possible commonalities and divergences in AI and privacy principles 29
3. National and regional developments on AI and privacy 42
International responses by Privacy Enforcement Authorities 42
Guidance provided by Privacy Enforcement Authorities on the application of privacy laws to AI 42
PEA enforcement actions in AI, including generative AI 44
4. Conclusion 46
References 47
Notes 55
Table 1. The OECD AI Principles, revised 2024 26
Table 2. Overview of similarities and relevant areas of coordination between AI and privacy policy communities 27
Table 3. Key concepts with different meanings between AI and privacy policy communities 28
Boxes
Box 1.1. Real and potential risks associated with AI systems 22