{"id":6538,"date":"2023-04-18T16:35:19","date_gmt":"2023-04-18T14:35:19","guid":{"rendered":"https:\/\/s8.tgin.eu\/?p=6538"},"modified":"2024-02-22T16:47:58","modified_gmt":"2024-02-22T15:47:58","slug":"chatgpt-with-personal-data-gdpr","status":"publish","type":"post","link":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/","title":{"rendered":"Using ChatGPT with personal data? Think again!"},"content":{"rendered":"\n<p>Recently we see more and more posts popping up on LinkedIn and elsewhere on how to optimize sales pipelines and other business processes using <a href=\"https:\/\/openai.com\/blog\/chatgpt\">ChatGPT<\/a> or some of its siblings. While the proposition is very tempting, there are huge problems for privacy and the protection of personal data, in particular as required under the GDPR.<\/p>\n\n\n\n<p>One of the primary reasons why generative AI is currently not well-suited for handling personal data is that the models are trained on vast amounts of text data, including both public and private sources and the data \u2018fed\u2019 to it in the prompts. This means that any personal or sensitive information that you feed into the model will be remembered and potentially reused in future outputs, putting both the data subject and the data controller (the person using the language model) at risk. Firstly, the data is transmitted to the provider of the AI, where it may be distributed and reused and there is no control over this data, leave alone that a much required Data Processing Agreement is not in place and no sufficient guarantees required for a transfer of data to the US are warranted. Secondly, the data could resurface in an unpredictable manner, when other users prompt the AI for something similar.<\/p>\n\n\n\n<div class=\"wp-block-columns is-layout-flex wp-container-core-columns-is-layout-9d6595d7 wp-block-columns-is-layout-flex\">\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\">\n<p>Using generative AI for example to analyse CVs or personal profiles, constitutes a clear violation of GDPR, the European Union&#8217;s General Data Protection Regulation. This regulation mandates that businesses and organizations protect personal data by limiting its processing and ensuring that it is only used for specific, legitimate purposes. By feeding personal data into a generative AI model, you are essentially using it for a purpose that is outside the scope of the original legal base, which is a clear violation of GDPR.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-layout-flow wp-block-column-is-layout-flow\"><div class=\"wp-block-image is-style-rounded\">\n<figure class=\"aligncenter size-large is-resized\"><img decoding=\"async\" width=\"1024\" height=\"684\" src=\"https:\/\/techgdpr.com\/wp-content\/uploads\/2020\/08\/pexels-panumas-nikhomkhai-1148820-1024x684.jpg\" alt=\"\" class=\"wp-image-2688\" style=\"width:348px;height:auto\" srcset=\"https:\/\/techgdpr.com\/wp-content\/uploads\/2020\/08\/pexels-panumas-nikhomkhai-1148820-1024x684.jpg 1024w, https:\/\/techgdpr.com\/wp-content\/uploads\/2020\/08\/pexels-panumas-nikhomkhai-1148820-300x200.jpg 300w, https:\/\/techgdpr.com\/wp-content\/uploads\/2020\/08\/pexels-panumas-nikhomkhai-1148820-768x513.jpg 768w, https:\/\/techgdpr.com\/wp-content\/uploads\/2020\/08\/pexels-panumas-nikhomkhai-1148820-1920x1282.jpg 1920w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div><\/div>\n<\/div>\n\n\n\n<p>Some data protection authorities (such as the Italian Garante Privacy) have already proceeded to <a href=\"https:\/\/gpdp.it\/home\/docweb\/-\/docweb-display\/docweb\/9874751#english\">ban ChatGPT<\/a> in their countries for privacy concerns, with others, including the <a href=\"https:\/\/netzpolitik.org\/2023\/openai-datenschutzkonferenz-nimmt-chatgpt-unter-die-lupe\/\">German Datenschutzkonferenz<\/a>, the <a href=\"https:\/\/www.reuters.com\/technology\/germany-principle-could-block-chat-gpt-if-needed-data-protection-chief-2023-04-03\/\">French CNIL<\/a>, the <a href=\"https:\/\/www.priv.gc.ca\/en\/opc-news\/news-and-announcements\/2023\/an_230404\/\">Privacy Commissioner of Canada<\/a>&nbsp; and the <a href=\"https:\/\/edpb.europa.eu\/news\/news\/2023\/edpb-resolves-dispute-transfers-meta-and-creates-task-force-chat-gpt_en\">European Data Protection Board having launched investigations<\/a> into it and are expected to take similar measures on short term.<\/p>\n\n\n\n<p><strong>Clearly, if you wilfully feed personal data to a system like ChatGPT, there is not much doubt about you violating the GDPR in multiple ways.<\/strong><\/p>\n\n\n\n<p>Even though <a href=\"https:\/\/www.politico.eu\/article\/chatgpt-italy-lift-ban-garante-privacy-gdpr-openai\/\">ChatGPT may become available in Italy again if certain requirements are met by April 30th<\/a>, it\u2019s unlikely to be a good idea to use it for personal data.<\/p>\n\n\n\n<p>A somewhat adjacent consideration is that generative AI models are often trained using biased data, which can lead to biased outputs. If personal data is fed into the model, the biases inherent in the training data can be amplified, potentially leading to discriminatory or harmful outputs. This is particularly problematic in the context of personal data, where even unintentional discrimination or harm can have serious consequences for the data subject.<\/p>\n\n\n\n<p><em>In short, using generative AI for anything involving personal data is a risky proposition that should be avoided until solid measures to protect this data are in place. There are plenty of business opportunities in this space to prioritize privacy and data protection, such as differential privacy or federated learning. These approaches are designed to protect personal data by limiting its exposure and minimizing the risk of re-identification, while still allowing for meaningful analysis and insights.<\/em> TechGDPR has developed a <a href=\"https:\/\/techgdpr.com\/consultancy\/artificial-intelligence-ethics-and-compliance\/\">support program for ethical and compliant use of Artificial Intelligence<\/a>, which may help remediate issues.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Recently we see more and more posts popping up on LinkedIn and elsewhere on how to optimize sales pipelines and other business processes using ChatGPT or some of its siblings. While the proposition is very tempting, there are huge problems for privacy and the protection of personal data, in particular as required under the GDPR. [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":6539,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[8],"tags":[245,35,58,79],"class_list":["post-6538","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-ai","tag-chatgpt","tag-gdpr","tag-gdpr-compliance","tag-international-transfers"],"acf":[],"featured_image_urls":{"full":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png",1024,1024,false],"thumbnail":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44-150x150.png",150,150,true],"medium":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44-300x300.png",300,300,true],"medium_large":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44-768x768.png",640,640,true],"large":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png",640,640,false],"1536x1536":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png",1024,1024,false],"2048x2048":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png",1024,1024,false],"image-200-200":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44-200x200.png",200,200,true]},"post_excerpt_stackable":"<p>Recently we see more and more posts popping up on LinkedIn and elsewhere on how to optimize sales pipelines and other business processes using ChatGPT or some of its siblings. While the proposition is very tempting, there are huge problems for privacy and the protection of personal data, in particular as required under the GDPR. One of the primary reasons why generative AI is currently not well-suited for handling personal data is that the models are trained on vast amounts of text data, including both public and private sources and the data \u2018fed\u2019 to it in the prompts. This means&hellip;<\/p>\n","category_list":"<a href=\"https:\/\/techgdpr.com\/blog\/category\/ai\/\" rel=\"category tag\">Artificial Intelligence<\/a>","author_info":{"name":"Silvan Jongerius","url":"https:\/\/techgdpr.com\/blog\/author\/silvan\/"},"comments_num":"0 comments","featured_image_urls_v2":{"full":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png",1024,1024,false],"thumbnail":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44-150x150.png",150,150,true],"medium":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44-300x300.png",300,300,true],"medium_large":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44-768x768.png",640,640,true],"large":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png",640,640,false],"1536x1536":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png",1024,1024,false],"2048x2048":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png",1024,1024,false],"image-200-200":["https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44-200x200.png",200,200,true]},"post_excerpt_stackable_v2":"<p>Recently we see more and more posts popping up on LinkedIn and elsewhere on how to optimize sales pipelines and other business processes using ChatGPT or some of its siblings. While the proposition is very tempting, there are huge problems for privacy and the protection of personal data, in particular as required under the GDPR. One of the primary reasons why generative AI is currently not well-suited for handling personal data is that the models are trained on vast amounts of text data, including both public and private sources and the data \u2018fed\u2019 to it in the prompts. This means&hellip;<\/p>\n","category_list_v2":"<a href=\"https:\/\/techgdpr.com\/blog\/category\/ai\/\" rel=\"category tag\">Artificial Intelligence<\/a>","author_info_v2":{"name":"Silvan Jongerius","url":"https:\/\/techgdpr.com\/blog\/author\/silvan\/"},"comments_num_v2":"0 comments","yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Using ChatGPT with personal data? Think again! - TechGDPR<\/title>\n<meta name=\"description\" content=\"ChatGPT for anything involving personal data is risky, and should be avoided until solid measures to protect such data are in place...\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Using ChatGPT with personal data? Think again! - TechGDPR\" \/>\n<meta property=\"og:description\" content=\"ChatGPT for anything involving personal data is risky, and should be avoided until solid measures to protect such data are in place...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/\" \/>\n<meta property=\"og:site_name\" content=\"TechGDPR\" \/>\n<meta property=\"article:published_time\" content=\"2023-04-18T14:35:19+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-02-22T15:47:58+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"1024\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Silvan Jongerius\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@silvanjongerius\" \/>\n<meta name=\"twitter:site\" content=\"@techgdpr\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Silvan Jongerius\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/\"},\"author\":{\"name\":\"Silvan Jongerius\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#\\\/schema\\\/person\\\/34bb17183811103b88ab2bf349c7fe5e\"},\"headline\":\"Using ChatGPT with personal data? Think again!\",\"datePublished\":\"2023-04-18T14:35:19+00:00\",\"dateModified\":\"2024-02-22T15:47:58+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/\"},\"wordCount\":580,\"publisher\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png\",\"keywords\":[\"ChatGPT\",\"GDPR\",\"GDPR Compliance\",\"International transfers\"],\"articleSection\":[\"Artificial Intelligence\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/\",\"name\":\"Using ChatGPT with personal data? Think again! - TechGDPR\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png\",\"datePublished\":\"2023-04-18T14:35:19+00:00\",\"dateModified\":\"2024-02-22T15:47:58+00:00\",\"description\":\"ChatGPT for anything involving personal data is risky, and should be avoided until solid measures to protect such data are in place...\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/#primaryimage\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png\",\"contentUrl\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2023\\\/04\\\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png\",\"width\":1024,\"height\":1024},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/chatgpt-with-personal-data-gdpr\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/techgdpr.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Using ChatGPT with personal data? Think again!\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#website\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/\",\"name\":\"TechGDPR\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/techgdpr.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#organization\",\"name\":\"TechGDPR\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/staging.techgdpr.com\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/TGDPR_logo_500px.png\",\"contentUrl\":\"https:\\\/\\\/staging.techgdpr.com\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/TGDPR_logo_500px.png\",\"width\":501,\"height\":334,\"caption\":\"TechGDPR\"},\"image\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/techgdpr\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/techgdpr\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#\\\/schema\\\/person\\\/34bb17183811103b88ab2bf349c7fe5e\",\"name\":\"Silvan Jongerius\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2024\\\/03\\\/Silvan_OF_3869_700-150x150.jpg\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2024\\\/03\\\/Silvan_OF_3869_700-150x150.jpg\",\"contentUrl\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2024\\\/03\\\/Silvan_OF_3869_700-150x150.jpg\",\"caption\":\"Silvan Jongerius\"},\"description\":\"Silvan Jongerius FIP, CIPT, CIPP\\\/e, is the Managing Partner and Founder of TechGDPR. He leads the team of data protection consultants and engages in key client projects as lead consultant. Silvan has been recognized as Fellow of Information Privacy by the renowed IAPP, and is certified as by the IAPP as Certified Information Privacy Professional (Europe\\\/GDPR), Certified Information Privacy Technologist (CIPT) and T\u00dcV certified Data Protection Officer (Datenschutzbeauftragter).\",\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/in\\\/silvanjongerius\\\/\",\"https:\\\/\\\/x.com\\\/silvanjongerius\"],\"url\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/author\\\/silvan\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Using ChatGPT with personal data? Think again! - TechGDPR","description":"ChatGPT for anything involving personal data is risky, and should be avoided until solid measures to protect such data are in place...","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/","og_locale":"en_US","og_type":"article","og_title":"Using ChatGPT with personal data? Think again! - TechGDPR","og_description":"ChatGPT for anything involving personal data is risky, and should be avoided until solid measures to protect such data are in place...","og_url":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/","og_site_name":"TechGDPR","article_published_time":"2023-04-18T14:35:19+00:00","article_modified_time":"2024-02-22T15:47:58+00:00","og_image":[{"width":1024,"height":1024,"url":"https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png","type":"image\/png"}],"author":"Silvan Jongerius","twitter_card":"summary_large_image","twitter_creator":"@silvanjongerius","twitter_site":"@techgdpr","twitter_misc":{"Written by":"Silvan Jongerius","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/#article","isPartOf":{"@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/"},"author":{"name":"Silvan Jongerius","@id":"https:\/\/techgdpr.com\/#\/schema\/person\/34bb17183811103b88ab2bf349c7fe5e"},"headline":"Using ChatGPT with personal data? Think again!","datePublished":"2023-04-18T14:35:19+00:00","dateModified":"2024-02-22T15:47:58+00:00","mainEntityOfPage":{"@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/"},"wordCount":580,"publisher":{"@id":"https:\/\/techgdpr.com\/#organization"},"image":{"@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/#primaryimage"},"thumbnailUrl":"https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png","keywords":["ChatGPT","GDPR","GDPR Compliance","International transfers"],"articleSection":["Artificial Intelligence"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/","url":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/","name":"Using ChatGPT with personal data? Think again! - TechGDPR","isPartOf":{"@id":"https:\/\/techgdpr.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/#primaryimage"},"image":{"@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/#primaryimage"},"thumbnailUrl":"https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png","datePublished":"2023-04-18T14:35:19+00:00","dateModified":"2024-02-22T15:47:58+00:00","description":"ChatGPT for anything involving personal data is risky, and should be avoided until solid measures to protect such data are in place...","breadcrumb":{"@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/#primaryimage","url":"https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png","contentUrl":"https:\/\/techgdpr.com\/wp-content\/uploads\/2023\/04\/Silvan_privacy_problems_illustration_50cf8ded-07d7-4e8d-9f85-65ab48e95d44.png","width":1024,"height":1024},{"@type":"BreadcrumbList","@id":"https:\/\/techgdpr.com\/blog\/chatgpt-with-personal-data-gdpr\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/techgdpr.com\/"},{"@type":"ListItem","position":2,"name":"Using ChatGPT with personal data? Think again!"}]},{"@type":"WebSite","@id":"https:\/\/techgdpr.com\/#website","url":"https:\/\/techgdpr.com\/","name":"TechGDPR","description":"","publisher":{"@id":"https:\/\/techgdpr.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/techgdpr.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/techgdpr.com\/#organization","name":"TechGDPR","url":"https:\/\/techgdpr.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/techgdpr.com\/#\/schema\/logo\/image\/","url":"https:\/\/staging.techgdpr.com\/wp-content\/uploads\/2018\/04\/TGDPR_logo_500px.png","contentUrl":"https:\/\/staging.techgdpr.com\/wp-content\/uploads\/2018\/04\/TGDPR_logo_500px.png","width":501,"height":334,"caption":"TechGDPR"},"image":{"@id":"https:\/\/techgdpr.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/techgdpr","https:\/\/www.linkedin.com\/company\/techgdpr"]},{"@type":"Person","@id":"https:\/\/techgdpr.com\/#\/schema\/person\/34bb17183811103b88ab2bf349c7fe5e","name":"Silvan Jongerius","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/03\/Silvan_OF_3869_700-150x150.jpg","url":"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/03\/Silvan_OF_3869_700-150x150.jpg","contentUrl":"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/03\/Silvan_OF_3869_700-150x150.jpg","caption":"Silvan Jongerius"},"description":"Silvan Jongerius FIP, CIPT, CIPP\/e, is the Managing Partner and Founder of TechGDPR. He leads the team of data protection consultants and engages in key client projects as lead consultant. Silvan has been recognized as Fellow of Information Privacy by the renowed IAPP, and is certified as by the IAPP as Certified Information Privacy Professional (Europe\/GDPR), Certified Information Privacy Technologist (CIPT) and T\u00dcV certified Data Protection Officer (Datenschutzbeauftragter).","sameAs":["https:\/\/www.linkedin.com\/in\/silvanjongerius\/","https:\/\/x.com\/silvanjongerius"],"url":"https:\/\/techgdpr.com\/blog\/author\/silvan\/"}]}},"_links":{"self":[{"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/posts\/6538","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/comments?post=6538"}],"version-history":[{"count":7,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/posts\/6538\/revisions"}],"predecessor-version":[{"id":8100,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/posts\/6538\/revisions\/8100"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/media\/6539"}],"wp:attachment":[{"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/media?parent=6538"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/categories?post=6538"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/tags?post=6538"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}