KG LEGAL \ INFO
BLOG

Blog home > KG LEGAL NEWS > KIEŁTYKA GŁADKOWSKI KG LEGAL TAKES PART IN THE WEBINAR Managing the Interplay Between the AI Act and GDPR ORGANIZED ON JANUARY 22, 2025 BY SYPHER

KIEŁTYKA GŁADKOWSKI KG LEGAL TAKES PART IN THE WEBINAR Managing the Interplay Between the AI Act and GDPR ORGANIZED ON JANUARY 22, 2025 BY SYPHER

Publication date: January 22, 2025

Sypher is a technology company that creates privacy and compliance management software, headquartered in Bucharest, Romania. Sypher’s founders have over 40 years of combined experience in designing and implementing projects requiring data security and protection compliance in the e-commerce, banking and insurance industries.

KIELTYKA  GLADKOWSKI KG LEGAL takes part in their webinar “Managing the Interplay Between the AI Act and GDPR” on 22 January 2025.

Main topics that will be covered:

  • How can a data protection/privacy program be used to meet the requirements of the AI Act?
  • What are the differences and similarities between GDPR and the Artificial Intelligence Act?
  • How does the Artificial Intelligence Act impact organizations’ compliance with GDPR?
  • Will organizations need to modify their ROPA templates, DPIAs, LIAs, etc. to comply with the AI Act?
  • Practical scenarios and examples.

The webinar was primarily dedicated to the upcoming changes in EU law.

A significant difference between artificial intelligence and a regular system is the fact that AI learns on its own through so-called prompts. It can infer, analyze, and independently deduce from various types of data, whereas a regular system can only work with the data entered by the user. The process of AI work is somewhat automated because it learns from data and analyzes it.

The speakers distinguished several phases in the development of artificial intelligence. In the 1950s, when the first computers were being created, systems were based on symbols. In the 1980s, computer systems worked with statistical data. In the 2000s, with the emergence of the first internet search engines, another milestone was reached in the development of artificial intelligence. Currently, since around 2020, we are in the well-known era of ChatGPT.

Despite the long time EU lawmakers have spent working on it, the AI Act will require implementation into national legal systems and will need to be continuously updated in order to remain a timeless act capable of encompassing the flexible nature of artificial intelligence. The speakers emphasized that the definition of artificial intelligence is complicated, and to understand it, one must analyze key words such as: machine system, adaptation, reasoning based on received results, and influencing the physical or virtual environment. AI creates programs like Google Maps, which uses our location and works as a GPS, thus interacting with our sensitive data. It is also worth mentioning that Google’s product analyzes traffic and adjusts to road conditions, showing the most optimal route. AI can protect our data through anonymization because it can track the data access procedure and create an additional protection system. This type of AI is referred to in Article 8 of the directive as a high-risk system. The EU legislator requires additional restrictions for such systems, ensuring they are functional enough to protect data while also recording events that could lead to significant changes. The speakers also reminded the audience of Article 34 of the GDPR, which obliges data controllers to notify individuals whose data has been breached. In such cases, an AI-based data protection system could immediately inform about the incident.

The speakers will be:

Mihai GHIȚĂ – Co-Founder of Sypher who has over 20 years of experience developing online sales software for insurance brokers and insurance companies and working in the insurance industry. He specializes in web user experience, software product management and architecture.

Petruta Pirvan, lawyer with over 16 years of experience in data protection and AI legislation, AIGP certified and is the author of Module 8 in the IAPP AIGP Training Guide and a member of the GPAI Code of Practice Working Group at the European Commission; has worked as an in-house privacy advisor at Oracle and Accenture, and led the Global Data Privacy Compliance Program at AP Moller-Maersk, establishing data protection practices, guidelines and policies within the group. As the founder and managing partner of EU Digital Partners, she focuses on promoting ethical leadership and responsible governance in data protection and AI regulation.

Other members of Sypher

Cristian BADEA Management Board
– Co-founder
Cristian Badea has a comprehensive knowledge of the software industry, being a software engineer. Co-founder of ePayment and Avangate payment systems, his expertise covers technical, financial, security and business areas. He leads the development of the Sypher platform, dealing with the functionality of the solution, innovation, scalability, security and efficient resource planning.

Vlad SARCA – Board Member
Vlad Sarca is an entrepreneur and investor who sold two of his previous businesses and expanded one of them to over 10 European countries and the Middle East. He combines over 15 years of practical experience in international expansion, strategy development and execution, human resources, finance and marketing with solid academic knowledge.

Advisory Board
Carmen SEBE
Hi-tech executive with extensive international operational and senior management experience. She has overseen the development of companies from early stages to the implementation of hundreds of millions of euros in online transactions, as well as to the final strategic exit. She has significant international experience in developing locations and processes in the US, Europe and APAC region.

Marian ȘEITAN
Marian Seitan is the founder and CEO of Mediapost Hit Mail Group, the largest direct marketing group in Romania (turnover 23 million euros in 2018). He is also an investor in 5 companies; his expertise combines logistics, marketing and IT.

UP