Elon Musk’s social media outfit X is once more below the regulatory microscope in Europe – this time for allegedly utilizing EU customers’ public posts to coach its Grok AI chatbot, presumably with out the transparency or authorized foundation required below the Basic Knowledge Safety Regulation (GDPR).
The Irish Knowledge Safety Fee (DPC) introduced Friday that it had kicked off an inquiry into X Web Limitless Firm (XIUC) – the newly renamed Irish entity chargeable for Elon Musk’s social media platform. The investigation seeks to find out whether or not XIUC’s processing of publicly accessible posts from EU customers to coach its Grok AI fashions complies with the GDPR.
Notably, XIUC turned the official information controller for EU customers on April 1, following a rebranding from Twitter Worldwide Limitless Firm (TIUC), as a part of the transition from Twitter to X.
Like many social media platforms exploring AI, X makes use of user-generated content material to coach machine studying fashions. Particularly, X shares publicly accessible information – together with posts, profiles, and person interactions – with xAI to develop and refine Grok, the chatbot now embedded within the platform. This follow has raised privateness issues, as customers have been initially opted in by default, resulting in scrutiny over compliance with information safety laws.
The tie-up between X and xAI turned even nearer in March, when xAI acquired the social media platform in an all-stock deal valued at $33 billion. This merger places each the info and the AI engine below the identical Musk-controlled roof.
“This inquiry considers a spread of points regarding using a subset of this information which was managed by XIUC – specifically private information comprised in publicly accessible posts posted on the ‘X’ social media platform by EU/EEA customers,” The DPC mentioned. “The aim of this inquiry is to find out whether or not this private information was lawfully processed with a purpose to practice the Grok LLMs.”
Corporations accountable for LLMs have repeatedly come below scrutiny from EU regulators and member states over their information processing practices. OpenAI, for instance, has confronted GDPR complaints alleging that ChatGPT supplies inaccurate details about people and lacks a technique to right it, doubtlessly violating the appropriate to rectification. In the meantime, the EU has turn out to be the primary jurisdiction to go complete AI laws: the Synthetic Intelligence Act.
X is not any stranger to EU investigations both, with Musk’s private social media platform changing into one of many first firms to face formal proceedings below the EU’s Digital Companies Act. The European Fee launched an inquiry in late 2023 over issues that X could have been falling brief on obligations round threat administration, content material moderation, and algorithmic transparency — necessities it should meet as a chosen Very Giant On-line Platform (VLOP) below the DSA, resulting from its important attain and affect.
The investigation into X comes in opposition to a backdrop of rising transatlantic commerce tensions. The Trump administration’s fluctuating tariff insurance policies have launched important uncertainty into international commerce. In response, the EU has floated potential countermeasures concentrating on US firms, ought to commerce negotiations break down. Whereas the timing of the DPC’s probe into X overlaps with these developments, there isn’t any indication the 2 are immediately linked.
The DPC confirmed to The Register that the investigation has no connection to ongoing commerce tensions and mentioned it has been inspecting the problem since final summer season. We have additionally reached out to X to get its take, however have not heard again. ®
Elon Musk’s social media outfit X is once more below the regulatory microscope in Europe – this time for allegedly utilizing EU customers’ public posts to coach its Grok AI chatbot, presumably with out the transparency or authorized foundation required below the Basic Knowledge Safety Regulation (GDPR).
The Irish Knowledge Safety Fee (DPC) introduced Friday that it had kicked off an inquiry into X Web Limitless Firm (XIUC) – the newly renamed Irish entity chargeable for Elon Musk’s social media platform. The investigation seeks to find out whether or not XIUC’s processing of publicly accessible posts from EU customers to coach its Grok AI fashions complies with the GDPR.
Notably, XIUC turned the official information controller for EU customers on April 1, following a rebranding from Twitter Worldwide Limitless Firm (TIUC), as a part of the transition from Twitter to X.
Like many social media platforms exploring AI, X makes use of user-generated content material to coach machine studying fashions. Particularly, X shares publicly accessible information – together with posts, profiles, and person interactions – with xAI to develop and refine Grok, the chatbot now embedded within the platform. This follow has raised privateness issues, as customers have been initially opted in by default, resulting in scrutiny over compliance with information safety laws.
The tie-up between X and xAI turned even nearer in March, when xAI acquired the social media platform in an all-stock deal valued at $33 billion. This merger places each the info and the AI engine below the identical Musk-controlled roof.
“This inquiry considers a spread of points regarding using a subset of this information which was managed by XIUC – specifically private information comprised in publicly accessible posts posted on the ‘X’ social media platform by EU/EEA customers,” The DPC mentioned. “The aim of this inquiry is to find out whether or not this private information was lawfully processed with a purpose to practice the Grok LLMs.”
Corporations accountable for LLMs have repeatedly come below scrutiny from EU regulators and member states over their information processing practices. OpenAI, for instance, has confronted GDPR complaints alleging that ChatGPT supplies inaccurate details about people and lacks a technique to right it, doubtlessly violating the appropriate to rectification. In the meantime, the EU has turn out to be the primary jurisdiction to go complete AI laws: the Synthetic Intelligence Act.
X is not any stranger to EU investigations both, with Musk’s private social media platform changing into one of many first firms to face formal proceedings below the EU’s Digital Companies Act. The European Fee launched an inquiry in late 2023 over issues that X could have been falling brief on obligations round threat administration, content material moderation, and algorithmic transparency — necessities it should meet as a chosen Very Giant On-line Platform (VLOP) below the DSA, resulting from its important attain and affect.
The investigation into X comes in opposition to a backdrop of rising transatlantic commerce tensions. The Trump administration’s fluctuating tariff insurance policies have launched important uncertainty into international commerce. In response, the EU has floated potential countermeasures concentrating on US firms, ought to commerce negotiations break down. Whereas the timing of the DPC’s probe into X overlaps with these developments, there isn’t any indication the 2 are immediately linked.
The DPC confirmed to The Register that the investigation has no connection to ongoing commerce tensions and mentioned it has been inspecting the problem since final summer season. We have additionally reached out to X to get its take, however have not heard again. ®
