Effective Remedies for AI-Induced Harms: Lessons Learned from GDPR Enforcement by Data Protection Authorities

  • Panel
  • Class Room
  • Friday 23.05 — 10:30 - 11:45

Organising Institution

Centre for Democracy and Technology Europe (CDT)

Europe

  • Academic 2
  • Policy 4
Data protection authorities have collectively been at the forefront of assessing the impacts of new technologies on fundamental rights, naturally emerging as strong contenders for the role as Market Surveillance Authorities under the AI Act. With the deadline to appoint Market Surveillance Authorities approaching in August 2025, this panel aims to identify lessons learned from data protection authorities’ experience in ensuring effective remedies for data protection harms which could be applied to the AI Act’s market surveillance framework. The panel will identify the different enforcement needs for AI harms as opposed to solely data protection harms, compare and contrast the governing frameworks for data protection and market surveillance authorities and how these regulators have traditionally fulfilled their roles, and discuss how best civil society and fundamental rights authorities may support and collaborate with them.

Questions to be answered

  1. What do effective remedies look like in data protection, and how should they look like for AI-induced harms?
  2. How do powers held by data protection authorities compare to powers traditionally held by market surveillance authorities?
  3. Is it desirable that MSAs approach AI-related complaints in the same way as DPAs process GDPR-related complaints?
  4. What role can civil society organisations and fundamental rights authorities play in enabling effective remedies for AI-induced harms in this regulatory landscape?

Moderator

Laura Lazaro Cabrera

Centre for Democracy and Technology Europe - Europe

Speaker

Rocco Saverino

LSTS, VUB - Belgium

Speaker

Maria Magierska

Maastricht University - Netherlands