Chinese artificial intelligence startup DeepSeek is encountering escalating regulatory challenges in Europe. The European Data Protection Board (EDPB) has indicated that national authorities may impose additional regulatory actions due to concerns over DeepSeek’s data collection and processing practices.
Italy’s Proactive Measures
Italy’s data protection authority, known as the Garante, has been at the forefront of this scrutiny. The Garante recently ordered the platform to block its chatbot in the country, citing inadequate responses regarding its privacy policy. The authority is investigating the nature and storage of personal data collected by the chatbot, emphasizing the importance of user consent and data security.
Broader European Concerns
Beyond Italy, regulators in France, the Netherlands, Belgium, Luxembourg, and other countries have raised questions about the platform’s data collection practices. The EDPB has expanded a task force, initially focused on OpenAI’s ChatGPT, to include DeepSeek and other urgent AI-related matters. This initiative aims to enhance cooperation and information exchange among data protection authorities across Europe.
Expert Insights
Aleid Wolfsen, chairman of the Dutch Data Protection Authority (AP), expressed serious concerns about DeepSeek’s privacy policies and the use of personal information. He emphasized that personal data of European citizens should only be stored abroad under strict conditions.
DeepSeek’s Response and Future Implications
As of now, DeepSeek has not publicly commented on these regulatory actions. The company’s rapid expansion in the AI sector underscores the importance of robust data protection measures. The outcome of these investigations could set significant precedents for how AI companies operate within jurisdictions that have stringent data privacy laws, such as the European Union’s General Data Protection Regulation (GDPR).