← Back to glossary
Glossary

GDPR Compliance (AI)

Reviewed 9 April 2026 Canonical definition

GDPR compliance for AI agents requires that agents handling personal data of EU residents operate within the regulation's principles: lawful basis for processing, data minimisation, purpose limitation, accuracy, storage limits, and the rights of data subjects to access, correct, or erase their data. AI agents that make automated decisions affecting individuals must provide explainability and a human review pathway.

Related articles

Security AI Model Watermarking for Enterprise Security MCP Best Practices for MCP Audit Compliance Agent Identity AI Agent Identity Audits: Reporting Standards

Related terms

Foundation ModelFundamental Rights Impact AssessmentGDPR (General Data Protection Regulation)Generative AIGitOps (Agent)Goal Misgeneralisation