07. Mar 2024

Are we losing control of our data through artificial intelligence (AI)?

Are we losing control of our information? The key point in information security and data protection is data ownership and control over data, as well as the authorization to process data securely and responsibly in accordance with the respective specifications. The issue of loss of control is becoming increasingly important in the AI era.

In 2023, 126 zettabytes of digital data were generated worldwide (source: Statista). This figure will most likely double by 2027. Thanks to ChatGPT and the like, it has never been so easy to analyze, generate and replicate content at the touch of a button.

 

The role of AI in the flood of data: opportunities and challenges

The exponentially growing flood of data poses major challenges for information security. On the one hand, training AI models requires large amounts of data to ensure adequate performance and accuracy. Companies and organizations therefore often collect huge amounts of data to train their AI systems. On the other hand, AI applications also continuously generate data during their operation - be it through sensors, interactions with users or automated processes.

Paradoxically, AI, which itself makes a significant contribution to the flood of data, can also offer solutions. AI can help to create order in this sea of data in order to identify important or irrelevant information more quickly and process, aggregate or delete it accordingly. Overall, AI can improve the efficiency of data processing and management and enable preventative measures to prevent data overload.

 

Data Ownership, AI Act, ISO 27001 and DSGVO

The international information security standard ISO 27001 sets out guidelines to ensure that organizations establish clear responsibilities for managing and protecting their data. It also defines processes for identifying data owners, establishing their rights and obligations and ensuring that data is appropriately protected and managed.

With regard to the privacy of personal data, data ownership refers to the concept that individuals have the right to exercise control over the information that relates to them as a person, that is transmitted or that is collected about them.

In a digitized world where data plays a crucial role, the question of data ownership is of increasing importance. While some people argue that data - similar to physical goods - should be considered a form of property, there are also voices that emphasize that data should rather be treated as a resource that can be used by society as a whole. The debate on data ownership raises complex issues - such as data protection, security, access rights and economic impact.

The AI Act is a European legislative initiative aimed at regulating and controlling the use of AI in the EU. The aim of the AI Act is to strike a balance between promoting innovation and ensuring safety and trust in AI systems.

The AI Act does not lay down any specific provisions on the subject of data ownership or the flood of data. However, the AI Act does indirectly address aspects of data ownership and data flooding through its regulation of AI. As AI is often based on large amounts of data, the AI Act sets out requirements for transparency, accountability and data protection of AI systems. This may implicitly impact data ownership by requiring organizations to clearly define who is responsible for the data and how it is protected and used.

Click here for part two of the article - The future of data ownership, solutions for the responsible use of AI and a conclusion.

News & Events

The basis for long-term success!

12. Nov 2024

CIS awards first ISO 42001 certificate to Austrian company

26. Sep 2024

World Quantum Readiness Day

The first world day of this kind

Learn more
19. Aug 2024

Global Threat Report 2024: Current situation

Newest trends in cybercrime

Learn more
06. Aug 2024

Lateral entry as an IT security auditor – a field report

06. Aug 2024

TISAX®: Information security in the automotive industry

06. Aug 2024

TISAX® deep dive: the three assessment levels

06. Aug 2024

TISAX® deep dive: the 12 test objectives (labels)

10. Oct 2024

Event:CIS Compliance Summit 2024

Austrian platform for experts, professionals and desicion makers in the security industry. Be part of it - save the date: October 10th, 2024

Learn more
11. Jun 2024

Aspects of climate change included in the standards for management systems

New features and what happens next

Learn more
17. Apr 2024

CIS joins the Austrian Data Centre Association (ADCA)

New cooperation

Learn more
17. Apr 2024

Smart compliance for data centres

NISG and EN 50600

Learn more
28. Mar 2024

ISO 42001 – the new standard for artificial intelligence

World's first standard for AI

Learn more
+43 1 532 98 90