DeepSeek: AI Game-Changer or Data Privacy Nightmare?

DeepSeek, the Chinese AI upstart, has been making waves with its large language model. But now, it’s caught the attention of data protection watchdogs. The Italian Data Protection Authority (DPA) has sent its first major request to DeepSeek, raising alarms about the potential risks to millions of Italians’ personal data.

“A rischio i dati di milioni di persone in Italia.” (“The data of millions of Italians is at risk.”)

Italian Data Protection Authority

What’s at Stake?

DeepSeek operates out of China, and its privacy policy states that all collected data is stored there. While the company claims to transfer data in compliance with local laws, Euroconsumers and the Italian DPA aren’t convinced. They’ve filed a complaint demanding clarity on:

• What personal data is collected
• Where it’s sourced from
• How it’s used to train AI systems
• The legal basis for processing
• Details on data storage in China

The GDPR Factor

Under Europe’s General Data Protection Regulation (GDPR), companies must be transparent about data collection and usage. DeepSeek’s vague privacy policy and lack of age verification mechanisms for minors have raised red flags. Euroconsumers, who previously won a case against Grok, are leading the charge for accountability.

“Our framework is solid enough to tackle potential issues if they are here.”

Thomas Regnier, European Commission Spokesperson for Tech Sovereignty

What’s Next?

DeepSeek has 20 days to respond to the Italian DPA’s request. Meanwhile, the European Commission is keeping a close eye on the situation. While no formal investigation has been launched yet, the stakes are high. If DeepSeek fails to comply, it could face hefty fines and a loss of trust in the European market.

Stay tuned as this story unfolds. The battle for data privacy is just heating up, and DeepSeek is at the center of it all.