US Regulatory Update - changes in the AI & privacy landscape

[Metrix1010]

What?

Summarize the current state of privacy laws in the US
No Federal Law + 18 states with different laws == patchwork paralysis
https://epic.org/vermont-passes-landmark-data-privacy-bill/

1. who enforces the law? FTC? State agencies?
2. private right of action
3. Pre-emption - floor or ceiling?

Is your research related to a problem?

How does a company get started on the road to compliance?

1. Check for PI in your AI
2. Need for DPIA. Bias assessments, vendor due diligence, conclusions made from AI
3. Sectors that are regulated have issued papers which can be folded into your systems. See NIST AI risk standards frameworks.

Additional Context

Industry approaches to avoid business disruption:
Meta's Pay or Okay in Europe - a skew towards individual agency
California's loyalty approach - the value you get from AI is reasonable to the value you give wrt to the monetization of your data.
When are these solutions not okay?
https://docs.google.com/document/d/1AAZKHGE0dLFCb_d0TaecL2zyvlhxkAUuRWN9Vwmrenw/edit

[anushatomar13]

Hi @Metrix1010 ,
Could you assign this issue to me? I would like to work on it.
Also, could you provide a bit more information about the format you want the summary in?

[anushatomar13]

https://docs.google.com/document/d/1LeWqgrGJzPdurH6bur1nWhlshc7zn6niK9ABWleofMM/edit?usp=sharing

@Metrix1010 Please let me know if any changes are required.