General Data Protection Regulation (GDPR)
EU-GDPR-2016 · EU
Foundational EU personal-data protection regulation. Most-cited European instrument PW catalogues at the AI-governance boundary — every CNIL / Garante / AEPD / BfDI / DPC enforcement action against an AI system (Clearview, ChatGPT, Replika, automated-hiring complaints) invokes GDPR Arts. 5/6/9/22/35. Art. 22 (automated individual decision-making + profiling) is the load-bearing provision that interacts with EU AIA Art. 26(11) deployer use of AI-system output for decisions concerning natural persons. Art. 35 (DPIA) partially overlaps EU AIA Art. 27 FRIA; the EDPB is finalising a joint EDPB-AI-Office guideline on the AIA-FRIA / GDPR-DPIA interplay through 2026. Art. 9 (special-category processing) interacts with EU AIA Art. 5(1)(c)(d)(g) prohibitions on social scoring + emotion recognition in workplace + untargeted facial-image scraping. Enforced by national Data Protection Authorities; the European Data Protection Board (EDPB, formerly Art. 29 Working Party) coordinates one-stop-shop + Article 65 binding-decision procedures across DPAs. Currency (2026-06-21): GDPR remains in force and unamended; Regulation (EU) 2025/2518 (adopted 26 Nov 2025, OJ 12 Dec 2025, applies 2 April 2027) supplements it with harmonised cross-border enforcement procedural rules for DPAs/EDPB, and the Commission's Digital Omnibus (proposed 19 Nov 2025, in trilogue) would, if adopted ~mid-2026, amend Arts. 5(1)(b)/13/22, breach-reporting, and add new Art. 88c on ML-model training (EUR-Lex OJ:L_202502518).
Data-subject rights baseline plus extraterritorial scope; Art. 22 automated-decision protections anchor most AI-fairness enforcement actions across EU DPAs.
“The data subject shall have the right not to be subject to a decision based solely on automated processing (Art. 22(1)).”
art:22(1) · Primary source
Background & scope
General Data Protection Regulation (GDPR) addresses 4 contested AI-governance topics explicitly.
Provisions & coverage
- governsBiometric IdentificationArt. 9 special-category processing (biometric data for unique identification); Art. 22 ADM with safeguards[8]
- governsTransparency ObligationsArts. 12-14 (information to data subjects); Art. 13(2)(f) + 14(2)(g) meaningful information about ADM logic; Art. 22(3) suitable safeguards[8]
- governsIndividual RedressArt. 77 DPA complaint; Art. 79 effective judicial remedy; Art. 80 collective representation by NGOs; Art. 82 right to compensation; Art. 83 administrative fines[8]
- governsTraining-Data RightsArt. 5(1)(b) purpose limitation; Art. 6 lawful basis; Art. 9 special-category overlay for sensitive training data; Art. 5(1)(c) data minimisation[8]
Operative mechanics
Regulation (EU) 2016/679 (GDPR, OJ L 119, 4.5.2016, p. 1; CELEX 32016R0679; applicable from 25 May 2018) is a directly applicable Regulation, not a transposed Directive, so its obligations bind controllers and processors uniformly across Member States. Its operative core is a layered duty structure. Art. 5(1)(a)-(f) fixes six processing principles — lawfulness/fairness/transparency, purpose limitation, data minimisation, accuracy, storage limitation, and integrity/confidentiality — and Art. 5(2) adds the freestanding accountability principle (the controller must be able to *demonstrate* compliance, not merely achieve it). Any processing requires a lawful basis from the closed list in Art. 6(1)(a)-(f); for AI-adjacent uses the contested bases are consent (6(1)(a)) and legitimate interests (6(1)(f), subject to a balancing test). Art. 9(1) prohibits processing of special-category data (racial/ethnic origin, political opinions, health, biometric data for unique identification, sex life) unless an Art. 9(2) exception applies — a constraint that bites hardest where models are trained on scraped web data, since such corpora unavoidably ingest sensitive attributes and leave "only a limited amount" of lawful headroom 1. The provision most load-bearing for AI is Art. 22(1): the data subject has the right *not to be subject to a decision based solely on automated processing, including profiling*, that produces legal or similarly significant effects; Art. 22(2) carves out contract necessity, authorising law, and explicit consent, while Art. 22(3) mandates safeguards including human intervention and the ability to contest — safeguards whose practical efficacy is contested, since legally mandated human oversight often degrades into rubber-stamping absent explicit effectiveness conditions 2. Art. 35(1) requires a Data Protection Impact Assessment where processing using new technologies is likely to result in high risk; Art. 35(3) enumerates the cases where a DPIA is mandatory (systematic and extensive automated evaluation/profiling on which legally significant decisions are based, large-scale processing of special-category or criminal-offence data, and systematic large-scale monitoring of a publicly accessible area), while the minimum content is set by Art. 35(7). Territorial reach is set by Art. 3: the Regulation applies to EU-established controllers (Art. 3(1)) and, extraterritorially, to non-EU controllers offering goods/services to or monitoring the behaviour of EU data subjects (Art. 3(2)). Enforcement teeth come from Art. 83's two-tier administrative fines — up to EUR 10m or 2% of worldwide annual turnover (Art. 83(4)) and up to EUR 20m or 4% (Art. 83(5)) for the gravest breaches — with cross-DPA disputes resolved by binding EDPB decision under Art. 65.
Cross-jurisdiction position
GDPR is the global reference point against which most peer regimes are read, a dynamic Bradford (2020) theorised as the "Brussels Effect": the de facto export of EU standards through market access and compliance economies of scale (Anu Bradford, *The Brussels Effect*, OUP 2020). Its closest structural sibling is the EU AI Act (Regulation (EU) 2024/1689), which is deliberately layered *on top of* GDPR rather than replacing it: AIA Art. 5(1)(c)-(d) prohibitions on social scoring and untargeted facial-image scraping presuppose GDPR Art. 9 special-category protections, and AIA Art. 26(11) deployer obligations for AI-assisted decisions interlock with GDPR Art. 22 ADM rights, while the AIA Art. 27 FRIA partially overlaps the GDPR Art. 35 DPIA (the EDPB and AI Office are coordinating joint guidance on this interplay through 2026). This stacking leaves genuine gaps: a systematic mapping of how the AI Act, liability regimes, GDPR, copyright and cybersecurity rules apply to generative AI finds the overlay incomplete and in need of targeted refinement rather than seamless 3. Against the United States, the contrast is sharpest: the US has no omnibus federal privacy statute, relying instead on sectoral law and state regimes such as the California Consumer Privacy Act (CCPA, as amended by the CPRA), which is consumer/opt-out oriented and lacks GDPR's lawful-basis precondition and rights-based architecture. China's Personal Information Protection Law (PIPL, effective 1 Nov 2021) is textually GDPR-influenced — extraterritorial scope, data-subject rights, large fines — but is grounded in cyber-sovereignty and state-security objectives rather than fundamental-rights protection, and several scholars characterise its lineage as a "gravity assist" rather than pure replication 4. The Council of Europe's Convention 108+ provides a binding, lower-intensity baseline open to non-EU states, positioning GDPR as the high-water mark in a tiered international landscape.
Key fault lines and critiques
The signature scholarly fault line concerns the much-claimed "right to explanation" for automated decisions. Wachter, Mittelstadt & Floridi argued that no such right exists in the GDPR's operative articles — Art. 22(3) and the transparency provisions (Arts. 13-15) yield only a *right to be informed* about the logic involved and the significance/envisaged consequences, not a right to a case-specific ex-post explanation 5. Selbst & Powles contested this reading, arguing that the "meaningful information about the logic involved" in Arts. 13-15 does ground a functional right to explanation 6. Wachter and Mittelstadt, now joined by Chris Russell, later proposed *counterfactual explanations* as a route compatible with the text without opening the black box (Wachter, Mittelstadt & Russell, "Counterfactual Explanations Without Opening the Black Box," *Harvard Journal of Law & Technology* 31(2):841-887, 2018) (SSRN 3063289). A parallel critique targets Art. 22(3)'s contest safeguard itself: empirical work on what decision subjects actually need shows that an abstract right to contest is hollow unless remedy and appeal mechanisms are designed for *meaningful* contestability 7. The CJEU has progressively tightened the regime: in *SCHUFA Holding* (C-634/21, 7 Dec 2023) the Court held that automated credit-scoring is itself an Art. 22(1) "decision" where a third party draws strongly on it, materially widening the provision's reach; and in *Dun & Bradstreet Austria* (C-203/22, 27 Feb 2025) it held that controllers must provide a *meaningful*, intelligible explanation of the procedure and principles — not a mere mathematical formula — and that trade-secret claims are resolved by disclosure to a court/DPA rather than a blanket exemption. Practitioner critiques target the one-stop-shop's enforcement bottleneck — the Irish DPC's lead-authority role over US Big Tech has been criticised as slow, prompting the Art. 65 EDPB binding-decision mechanism to override it (as in the EUR 1.2bn Meta SCC decision, 2023). A further structural debate concerns whether Art. 6(1)(f) legitimate interest can lawfully ground large-scale model training — a question DPAs answered inconsistently before the 2025 reform wave.
Implementation and trajectory
GDPR has been in force since 25 May 2018 and remains, as of mid-2026, unamended in its consolidated text, but enforcement and reform are both intensifying. Cumulative fines since 2018 reached roughly EUR 5.88bn by January 2025, with about EUR 1.2bn issued in 2024 alone; Ireland's DPC dominates as lead authority (~EUR 3.5bn since 2018), reflecting Big Tech establishment there (DLA Piper GDPR Fines and Data Breach Survey, January 2025) (DLA Piper 2025). The single largest penalty remains the EUR 1.2bn imposed on Meta in 2023 for unlawful EU-US data transfers via SCCs, following an EDPB binding decision of 13 April 2023 (edpb.europa.eu); 2024 brought two further headline DPC penalties — EUR 310m against LinkedIn (dataprotection.ie, 24 Oct 2024) for an unlawful behavioural-advertising basis, and EUR 251m against Meta (dataprotection.ie, 17 Dec 2024) over the 2018 Facebook token-exposure breach. Two reform tracks now shape the trajectory. First, Regulation (EU) 2025/2518 (published OJ 12 Dec 2025; applicable 2 April 2027) supplies harmonised procedural rules for cross-border DPA cooperation and EDPB dispute resolution — a direct response to one-stop-shop delay critiques. Second, the Commission's Digital Omnibus (proposed 19 Nov 2025, in trilogue) would amend the GDPR to ease AI development: a new Art. 88c would permit machine-learning training on the Art. 6(1)(f) legitimate-interest basis subject to a documented assessment and an unconditional right to object, plus a new Art. 9 exemption for "residual" special-category data in AI development (IAPP, "EU Digital Omnibus amendments to GDPR to facilitate AI training miss the mark," 2025). That Art. 9 move is precisely the pressure point scholars flag: because web-scale training corpora unavoidably ingest sensitive data and leave only a narrow lawful path, relaxing the special-category bar is the load-bearing change rather than a technicality 1, and broader analysis of how EU law applies to generative AI suggests such fixes must be targeted to avoid leaving fresh gaps 3. Civil-society and academic commentators warn the package risks diluting core safeguards, framing the live question for 2026-2027 as whether GDPR's rights baseline can be reconciled with the EU's competitiveness-driven AI agenda.
Enforcement & impact
Cross-jurisdiction comparison
How peer instruments treat the topics General Data Protection Regulation (GDPR) governs.
| Topic | EU-AIA-2024 | US-EO-14110 | US-EO-14179 | UK-WHITEPAPER-2023 | CN-GENAI-2023 | G7-HIROSHIMA | OECD-AI-PRIN | COE-AI-CONV | UN-RES-2024 | NIST-AI-RMF | BLETCHLEY-2023 | SEOUL-2024 | NIST-AI-RMF-GENAI | CA-SB-1047 | IN-DPDP-2023 | BR-AIBILL-2024 | ASEAN-AI-GUIDE-2024 | AU-AI-STRATEGY-2024 | ANTHROPIC-RSP-2024° | OPENAI-PREPAREDNESS-2023° | DEEPMIND-FSF-2024° | META-FRONTIER-2024° | UK-US-AISI-MOU-2024 | WH-VOLUNTARY-2023 | SG-MODEL-AI-2024 | JP-METI-AI-2024 | EU-GPAI-COP-2025 | OMB-M-24-10 | GSA-AI-GUIDE-2024 | DOD-RAI-2022 | FEDRAMP-AI-2024 | DFARS-252-204 | CA-SB-53 | CA-SB-243 | CA-SB-942 | EU-PLD-2024 | UNESCO-AI-ETHICS-2021 | EU-PWD-2024 | CN-DEEPSYN-2022 | NY-RAISE-2025 | US-TAKEITDOWN-2025 | IT-AILAW-2025 | JP-AIPROMO-2025 | UN-GDC-2024 |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Biometric Identification | governs | implicit | silent | implicit | silent | silent | silent | implicit | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | silent | implicit | governs | governs | silent | silent | silent | silent | silent |
| Transparency Obligations | governs | implicit | silent | implicit | conflicts | governs | governs | governs | implicit | governs | implicit | governs | governs | implicit | implicit | governs | governs | silent | governs | implicit | implicit | governs | implicit | governs | governs | governs | governs | governs | governs | governs | governs | silent | governs | governs | governs | implicit | governs | governs | governs | governs | silent | governs | governs | governs |
| Individual Redress | governs | silent | silent | implicit | governs | silent | governs | governs | silent | implicit | silent | silent | implicit | implicit | governs | governs | silent | silent | silent | silent | silent | silent | silent | silent | implicit | implicit | silent | governs | implicit | implicit | implicit | silent | implicit | governs | silent | governs | governs | governs | governs | silent | implicit | implicit | implicit | implicit |
| Training-Data Rights | implicit | silent | silent | silent | governs | silent | silent | implicit | silent | implicit | silent | silent | governs | silent | governs | implicit | silent | implicit | silent | silent | silent | implicit | silent | silent | silent | implicit | governs | silent | implicit | silent | implicit | governs | silent | silent | silent | silent | governs | silent | governs | silent | silent | governs | implicit | implicit |
°= industry self-imposed voluntary framework. Comparing a voluntary code's "governs" tint with a binding regulation's "governs" tint flattens the legal-force distinction; use the instrument-page banner for the operative status of each.
See also
Per-audience views
- Provisions →Article-by-article obligation breakdown for procurement + RFP authors.
- Disclosure form →Vendor-disclosure questionnaire derived from this instrument's operative obligations.
- Harm narratives →Documented harms relevant to this instrument's topics, for civil-society advocacy.
- Briefing pack →Journalist-ready summary with quotes + dates + primary-source links.
Article tools — track changes, suggest an edit
View history — every captured revision of this article · What links here
Further reading
70 academic & grey-literature sources on the topics this instrument addresses (not commentary on the instrument itself) — catalogued metadata with a primary link; one-line findings are ✦ AI-generated summaries, labeled as such (charter §7.9). Browse the full literature index.
- Facial recognition technology in law enforcement: a scoping review of existing empirical studies Peer-reviewed✦ AIScoping review mapping the empirical evidence base on law-enforcement FRT, identifying gaps in research on real-world identification use and its governance.
- Open Foundation Models and TDM Exceptions to Copyright – Building Blocks for an AI Ecosystem Peer-reviewed✦ AIArgues Art. 3 CDSM Directive's scientific-research TDM exception 'does not grant rightsholders any control' and can be a 'safe harbor' for training openly released foundation models without licensing data.
- Global perspectives on regulating facial recognition technology utilization for criminal justice arrests Peer-reviewed✦ AIComparative study of facial-recognition regulation for arrests across democracies finds frameworks are inconsistent and unclear, raising privacy and civil-liberties risks.
- Identifying Algorithmic Decision Subjects' Needs for Meaningful Contestability Peer-reviewed✦ AIEmpirically elicits what decision subjects need for contestation to be 'meaningful', informing the design of effective remedies and appeal mechanisms for ADM.
- Two Means to an End Goal: Connecting Explainability and Contestability in the Regulation of Public Sector AI Preprint✦ AIInterview study with 14 regulation experts distinguishes judicial vs non-judicial and individual vs collective contestation channels for public-sector AI remedies.
- Copyright and AI in the UK: Opting-In or Opting-Out? Peer-reviewed✦ AIContends the UK opt-in/opt-out framing is a 'missed opportunity'; a broadened research exception plus market-entry transparency and creator remuneration would better serve both innovation and rightsholders.
- Technical Challenges of Rightsholders' Opt-out From Gen AI Training after Robert Kneschke v. LAION Peer-reviewed✦ AIExamines post-LAION practical obstacles to the EU TDM opt-out (robots.txt, machine-readability, memorisation): 'While the TDM exceptions may seem workable in theory, implementing them in practice presents a variety of practical…
- Generative AI in EU law: Liability, privacy, intellectual property, and cybersecurity Peer-reviewed✦ AIExamines how the EU AI Act, liability regimes, GDPR, copyright and cybersecurity rules apply to generative AI, identifying gaps and proposing targeted regulatory refinements.
- A large-scale audit of dataset licensing and attribution in AI Peer-reviewed✦ AIAudit of 1,800+ AI training datasets finds "licence omission rates of more than 70% and error rates of more than 50%" on popular hosting sites.
- Facial Recognition Technology in Policing and Security—Case Studies in Regulation Peer-reviewed✦ AIThrough regulatory case studies, argues facial recognition in policing requires a tailored governance framework grounded in necessity and proportionality rather than ad hoc deployment.
- Facial recognition technology: regulations, rights and the rule of law Peer-reviewed✦ AIArgues states have an "international obligation...to domestically regulate" facial recognition as an unacceptable-risk AI system to protect human rights and the rule of law.
- Police Use of Retrospective Facial Recognition Technology: A Step Change in Surveillance Capability Necessitating an Evolution of the Human Rights Law Framework Peer-reviewed✦ AIArgues retrospective facial recognition is a step change in police surveillance whose chilling effects and weak legal basis demand an evolved human-rights framework.
+ 58 more across this instrument's topics — see the literature index.
References
Sources cited inline in the analysis (linked from the superscript markers), then the primary instrument sources behind the classifications.
- Taner Kuru (2024) Lawfulness of the mass processing of publicly accessible online data to train large language models, International Data Privacy Law. 10.1093/idpl/ipae013 — Argues LLM training on scraped web data should be assessed under Art. 9 GDPR (sensitive data), and that consent and the 'manifestly made public' route leave only a 'limited amount of personal data' lawfully usable. ↩
- Sarah Sterz, Kevin Baum, Sebastian Biewer, Holger Hermanns, Anne Lauber-Rönsberg, Philip Meinel, Markus Langer (2024) On the Quest for Effectiveness in Human Oversight: Interdisciplinary Perspectives, Proceedings of the 2024 ACM Conference on Fairness, Accounta. 10.1145/3630106.3659051 — Synthesises interdisciplinary evidence to argue that legally mandated human oversight of AI is often ineffective ('rubber-stamp') unless effectiveness conditions are explicitly designed for. ↩
- Novelli, Casolari, Hacker, Spedicato & Floridi (2024) Generative AI in EU law: Liability, privacy, intellectual property, and cybersecurity, Computer Law & Security Review. 10.1016/j.clsr.2024.106066 — Examines how the EU AI Act, liability regimes, GDPR, copyright and cybersecurity rules apply to generative AI, identifying gaps and proposing targeted regulatory refinements. ↩
- arXiv:2312.08237 ↩
- Wachter, Mittelstadt & Floridi (2017) Why a Right to Explanation of Automated Decision-Making Does Not Exist in the General Data Protection Regulation, International Data Privacy Law. 10.1093/idpl/ipx005 — Argues the GDPR mandates only "meaningful, but properly limited, information" about automated decisions — a right to be informed, not a right to explanation of specific decisions. ↩
- 10.1093/idpl/ipx022 ↩
- Mireia Yurrita, Himanshu Verma, Agathe Balayn, Kars Alfrink, Ujwal Gadiraju, and Alessandro Bozzon (2025) Identifying Algorithmic Decision Subjects' Needs for Meaningful Contestability, Proceedings of the ACM on Human-Computer Interaction (CSCW). 10.1145/3757415 — Empirically elicits what decision subjects need for contestation to be 'meaningful', informing the design of effective remedies and appeal mechanisms for ADM. ↩
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), OJ L 119, 4.5.2016, p. 1-88 (CELEX:32016R0679; ELI:http://data.europa.eu/eli/reg/2016/679/oj); applied from 25 May 2018.
- Art. 9 special-category processing (biometric data for unique identification); Art. 22 ADM with safeguards
- Arts. 12-14 (information to data subjects); Art. 13(2)(f) + 14(2)(g) meaningful information about ADM logic; Art. 22(3) suitable safeguards
- Art. 77 DPA complaint; Art. 79 effective judicial remedy; Art. 80 collective representation by NGOs; Art. 82 right to compensation; Art. 83 administrative fines
- Art. 5(1)(b) purpose limitation; Art. 6 lawful basis; Art. 9 special-category overlay for sensitive training data; Art. 5(1)(c) data minimisation
How to cite this article
Cite this article 8 formats · BibTeX, RIS, APA, Chicago, … · 1-click copy
Persistent identifier: https://policywindow.org/wiki/gdpr — committed-stable URL with content-versioning via ?asOf= (rollout pending per methodology §7). DOIs via Zenodo are on the roadmap.
Reviewed by Editorial board (in formation) (Policy Window) · · Editorial board
Does this instrument’s approach work? — the social-science evidence
Aggregated over the 4 topics this instrument governs: whether each harm is empirically real, and whether the peer-reviewed evidence shows governance reduces it. The badge is the epistemic status of the evidence— “thin”/“absent” efficacy evidence is itself a finding (the “second silence”). Each epistemic-status label is Policy Window's editorial assessment of the cited evidence base (a structured classification), not a verdict any single source issues.
Of the 4 governed topics with a social-science evidence review, evidence that governance reduces the harm is established for 0, contested for 0, thin for 1, and absent for 3 — for most, no replicated study yet shows this instrument's approach works (the "second silence").
Biometric Identification
Demographic accuracy disparities in facial recognition are robust and replicated. NIST's Face Recognition Vendor Test (189 algorithms, 18.27M images) found one-to-one false-positive rates for Asian and African-American faces elevated 10-100x over white males, with the highest one-to-many false positives for African-American women; Buolamwini & Gebru's Gender Shades found commercial gender-classification error up to 34.7% for darker-skinned women vs 0.8% for lighter-skinned men. Documented downstream harm includes at least 8-15 US wrongful arrests, nearly all of Black people. Honest caveat: magnitude is highly algorithm-dependent — the most accurate algorithms show small or statistically undetectable differentials — so the harm is real but not uniform across systems.
Sources: Grother, Ngan & Hanaoka 2019 (NISTIR 8280, FRVT Part 3: Demographic Effects); Buolamwini & Gebru 2018 (Gender Shades, PMLR 81); Hill 2020 / Williams v. City of Detroit (ACLU 2021)
Rigorous evidence that GOVERNANCE of biometric ID reduces the documented harms is sparse. The one quantitative impact evaluation of police facial-recognition policy (Johnson et al. 2024, difference-in-differences across 268 US cities) studies effects on violent crime — a crime-control outcome, not misidentification harm — from a single research group, and does not establish that any safeguard regime curbs wrongful identification. Direct evidence on procedural safeguards points the other way: in the known wrongful-arrest cases police are reported to have bypassed required corroboration/probable-cause standards, and the strongest documented enforcement levers are private-sector biometric-privacy laws — Illinois BIPA (e.g. Meta's $650M settlement) and the separate Texas CUBI law (a $1.4B Meta settlement) — which govern private actors, not the law-enforcement context where the arrests occur. No replicated study shows a specific regulatory regime measurably reduces demographic misidentification harm.
Sources: Johnson et al. 2024 (Cities, 'Police facial recognition applications and violent crime control in U.S. cities'); Harwell & Schaffer 2025 (Washington Post, 'Arrested by AI'); Illinois BIPA (Rosenbach v. Six Flags 2019; Meta $650M settlement 2021); Texas CUBI (Meta $1.4B settlement 2024)
Individual Redress
The premise behind redress — that affected people lack meaningful recourse against automated decisions — is real, but the flagship instrument is weaker than commonly assumed. Wachter, Mittelstadt & Floridi (2017) show GDPR creates only a limited 'right to be informed,' not a binding 'right to explanation' of specific decisions; and controlled work finds the explanations actually delivered do not measurably improve lay decision accuracy over showing the bare AI prediction (Alufaisan et al. 2021; and a 2022 meta-analysis by Schemmer et al. — screening 393 articles down to 9 in the final analysis — reports 'no effect of explanations on users' performance compared to sole AI predictions,' even though XAI overall had a positive effect). Honest caveat: the legitimacy/dignity value of being heard is empirically well established in the procedural-justice tradition even where outcome accuracy is unchanged, so 'redress fails' depends on which aim is measured.
Sources: Wachter, Mittelstadt & Floridi 2017 (International Data Privacy Law 7(2):76); Alufaisan, Marusich, Bakdash, Zhou & Kantarcioglu 2021 (Proceedings of the AAAI Conference on AI 35(8):6618); Schemmer, Hemmer, Nitsche, Kühl & Vössing 2022 (AAAI/ACM AIES '22, meta-analysis)
There is no rigorous impact evaluation showing that mandated redress mechanisms (right-to-explanation, appeal, human-in-the-loop review) actually reduce erroneous or unfair automated decisions — the evidence that the rule works is itself missing. The closest experimental analogues are discouraging: explanations increase humans' acceptance of AI recommendations regardless of correctness (Bansal et al. 2021), and algorithm-in-the-loop oversight can introduce racial disparities and exhibit automation bias rather than reliably catching model errors (Green & Chen 2019). The procedural-justice literature (Tyler 1990; Lind & Tyler 1988) robustly supports a legitimacy and compliance benefit of fair process, but it measures perceived fairness, not reduction of the substantive decision harm redress is meant to cure.
Sources: Bansal, Wu, Zhou, Fok, Nushi, Kamar, Ribeiro & Weld 2021 (CHI '21); Green & Chen 2019 (Disparate Interactions, ACM FAT* '19); Tyler 1990 (Why People Obey the Law, Yale Univ. Press); Lind & Tyler 1988 (The Social Psychology of Procedural Justice, Plenum Press)
Training-Data Rights
That foundation models ingest copyrighted and personal works without consent is undisputed; whether that ingestion produces legally cognizable reproduction harm is genuinely contested. The CS evidence that models can memorize and emit verbatim training text is robust and replicated — Carlini et al. (2021) extracted hundreds of verbatim sequences (including PII) from GPT-2, and follow-up work (Carlini et al., Quantifying Memorization, ICLR 2023) showed extraction scales log-linearly with model size and with example duplication. Honest caveat: verbatim reproduction is the exception, not the norm — the UK High Court held that Stable Diffusion's model weights never stored copies of the training images (defeating the secondary-infringement theory), and Getty abandoned its primary training-infringement claim at trial for lack of evidence, so whether the empirical phenomenon amounts to actionable harm (rather than transient, non-expressive use) remains the open question driving NYT v. OpenAI and parallel regimes.
Sources: Carlini, Tramèr, Wallace, Jagielski, Herbert-Voss, Lee, Roberts, Brown, Song, Erlingsson, Oprea & Raffel 2021 (Extracting Training Data from Large Language Models, 30th USENIX Security Symposium); Carlini, Ippolito, Jagielski, Lee, Tramèr & Zhang 2023 (Quantifying Memorization Across Neural Language Models, ICLR 2023; arXiv:2202.07646); Getty Images (US) Inc & ors v Stability AI Ltd [2025] EWHC 2863 (Ch) (UK High Court, 4 Nov 2025 — no secondary infringement; primary training claim abandoned at trial); The New York Times Co. v. Microsoft Corp. & OpenAI (S.D.N.Y., No. 1:23-cv-11195; consolidated In re OpenAI Copyright Infringement Litigation, Apr. 2025; ongoing 2025-2026)
There is no impact evaluation showing that the CDSM Directive Article 4 TDM exception plus its Article 4(3) opt-out reservation regime actually reduces unlicensed ingestion or channels compensation to rightsholders — the evidence that the rule works as designed is itself missing. The only available evidence is early case law and doctrinal scholarship, which document the mechanism's contested operation rather than its success: in Kneschke v. LAION the Hamburg Higher Regional Court (on appeal, 10 Dec 2025) held that a rights reservation in natural language did NOT satisfy Article 4(3)'s machine-readability requirement, invalidating the opt-out (note: the first-instance Regional Court had left the Article 4 question largely open and the case ultimately turned on the Article 3 scientific-research exception, so this machine-readability holding is appellate and not yet settled — a further appeal to the Federal Court of Justice was permitted). Legal scholars characterize the Article 4 opt-out as practically difficult and unharmonized, with no observed market in TDM licences or systematic enforcement to evaluate.
Sources: Kneschke v. LAION (Hamburg Regional Court, 27 Sept 2024, 310 O 227/23; on appeal Hamburg Higher Regional Court, 10 Dec 2025, 5 U 104/24 — opt-out held not machine-readable; further appeal to BGH permitted); Margoni & Kretschmer 2022 (A Deeper Look into the EU Text and Data Mining Exceptions, GRUR International 71(8):685-701); Quintais 2025 (Generative AI, Copyright and the AI Act, Computer Law & Security Review 56:106107)
Transparency Obligations
Documentation artifacts (model cards, datasheets) are well-specified as proposals and are genuinely adopted, but the empirical premise that mandated disclosure produces meaningful transparency is contested. Selbst & Barocas (2018) argue inscrutability and non-intuitiveness are distinct problems and that disclosing rules does not resolve the latter, and large-scale audits find documentation is sparsely and unevenly completed: a systematic analysis of 32,111 Hugging Face model cards (Liang et al. 2024) found environmental-impact, limitations and evaluation sections least often filled, and Bhat et al. (2023, 45 practitioners) found a substantial gap between the documentation proposal and actual practice. Honest caveat: the documentation frameworks themselves are real and adopted, so the dispute is about whether disclosure conveys decision-relevant information, not whether the artifacts exist.
Sources: Selbst & Barocas 2018 (Fordham Law Review 87:1085-1139); Liang et al. 2024 (Nature Machine Intelligence, s42256-024-00857-z, 'Systematic analysis of 32,111 AI model cards'); Bhat et al. 2023 (CHI '23, 'Aspirations and Practice of ML Model Documentation', DOI 10.1145/3544548.3581518); Mitchell et al. 2019 (FAccT, Model Cards for Model Reporting); Gebru et al. 2021 (CACM 64(12):86-92, Datasheets for Datasets)
There is no rigorous impact evaluation showing that AI transparency mandates (model cards, training-data summaries) measurably reduce bias, misuse or accidents — the central regulatory assumption is empirically untested, partly because flagship mandates like EU AI Act Art. 53(1)(d) GPAI training-data summaries are only subject to AI Office enforcement/verification from 2 August 2026 (the obligation itself began 2 August 2025 for new models). The closest analogue, mandated consumer disclosure, shows small and context-dependent effects: Bollinger, Leslie & Sorensen (2011) found mandatory calorie posting cut average calories per transaction by about 6%, while Loewenstein, Sunstein & Golman (2014) review evidence that disclosure effects are frequently diminished or even reversed by limited attention and often change provider rather than recipient behavior. These are analogues, not AI studies; no study demonstrates that AI transparency disclosure achieves its stated downstream safety aims.
Sources: Bollinger, Leslie & Sorensen 2011 (AEJ: Economic Policy 3(1):91-128); Loewenstein, Sunstein & Golman 2014 (Annual Review of Economics 6:391-419, 'Disclosure: Psychology Changes Everything'); EU AI Act Art. 53(1)(d) GPAI training-data summary (obligation from 2 Aug 2025; AI Office enforcement from 2 Aug 2026)