AI how-to sheets

The CNIL provides concrete answers for the creation of databases used to train artificial intelligence (AI) systems, which involve personal data.

The CNIL can help you determine the legal regime applicable to the processing of personal data during the development phase.

The CNIL can help you define the purpose(s), taking into account the specificities of developing AI systems.

Data controller, joint controller or processor: the CNIL is helping suppliers of AI systems to determine their status.

The CNIL helps you determine your obligations based on your responsibility and the means of collecting or reusing the data.

The CNIL helps you determine your obligations, depending on the means of collecting the data and its source.

Creating a dataset for the training of an AI system can lead to high risks to people’s rights and freedoms. In this case, a data protection impact assessment is mandatory. The CNIL explains how, and in which cases, it should be realised.

To ensure that the development of an AI system respects data protection, it is necessary to carry out a prior reflection when designing it.

 The CNIL details how data protection principles relate to training data management.