Italian Privacy

When in Rome—Make Your AI Do As the Regulators Do

By Liisa Thomas & Kathryn Smith on November 18, 2025

Posted in Artificial Intelligence, EU Privacy, Italian Privacy

Italy became the first EU country to enact a comprehensive national AI law when its AI law (Law No. 132/2025) took effect last month. The law is intended to work with the existing EU AI Act, but with more details and specific obligations. In fact, it mirrors many of the themes that are being implemented in US AI laws (like those in Texas, Virginia (vetoed), and Colorado). This may be one of many similar laws we see coming out of Europe this year, and the potential for a fragmented AI regulatory patchwork in the EU.Continue Reading When in Rome—Make Your AI Do As the Regulators Do

Don’t Forget the EU: Italy Issued First GenAI Fine of €15 Million Alleging GDPR Violations

By Liisa Thomas, Kathryn Smith & James O'Reilly* on January 28, 2025

Posted in Artificial Intelligence, EU Privacy, GDPR, Generative AI, Italian Privacy

At the end of 2024 the Italian Data Protection Authority issued a 15 million euro fine in the first generative AI-related case brought under GDPR. According to Garante (the Italian authority), OpenAI trained ChatGPT with users’ personal data without first identifying a proper legal basis for the activity, as required under GDPR. The Order also alleges that OpenAI failed to notify Garante about a data breach the company experienced in March 2023. Additionally, the Order states that OpenAI did not provide proper age verification mechanisms for users under age 13. Continue Reading Don’t Forget the EU: Italy Issued First GenAI Fine of €15 Million Alleging GDPR Violations

Eye On Privacy

Italian Privacy

When in Rome—Make Your AI Do As the Regulators Do

Eye On Privacy

About The Firm