In brief The US Artificial Intelligence Safety Institute (“AISI”), housed within the National Institute of Standards and Technology (“NIST”), announced on 20 November 2024 the release of its first synthetic content guidance report, NIST AI 100-4 Reducing Risks Posed by Synthetic Content: An Overview of Technical Approaches to Digital Content Transparency (“NIST AI 100-4”). “Synthetic content” is defined in President Biden’s Executive Order on Safe, Secure, and Trustworthy AI (“EO 14110”) as “information, such as…
In brief Companies operating in India should note that India’s Digital Personal Data Protection Act (“DPDPA”) is expected to come into effect by the end of 2024. India enacted the DPDPA, its first comprehensive data privacy law on August 11, 2023. The DPDPA largely aligns with the European Union’s General Data Protection Regulation (“GDPR”) and the California’s Consumer Privacy Act (“CCPA”) but includes unique, consumer-friendly features, such as expanded consumer rights and newly established requirement…
In brief On Thursday, November 14, 2024, the U.S. Department of Homeland Security (“DHS”) announced its groundbreaking “Roles and Responsibilities Framework for Artificial Intelligence in Critical Infrastructure” (“Framework”). The Framework is a guide for deploying AI safely and securely in all sixteen sectors of U.S. critical infrastructure, including communications, critical manufacturing, energy, financial services, healthcare, and information technology. It emphasizes the importance of risk-based mitigations to reduce potential harms to critical infrastructure and highlights the…
In brief Financial institutions, financial services providers and companies otherwise subject to the Banking, Financial Services and Insurance laws of New York State should note that on November 1, 2024, the amendments to the New York Department of Financial Services’ (“NYDFS'”) cybersecurity regulations took effect. “Covered entities” under the amendments still include any licensed financial institution company operating in New York regardless of whether it is already regulated by other government agencies. Additionally, the amendments…
In brief In September 2024, Texas’ Attorney General announced a “first-of-its-kind” settlement with a healthcare generative artificial intelligence (“Gen AI”) company over what it said were “false, misleading, or deceptive” Gen AI products that aid physicians and medical staff in drafting clinical notes and charts. Per the Attorney General, the Company’s advertised hallucination rate was “very likely inaccurate” which “may have deceived hospitals about the accuracy and safety of the Company’s products.” The settlement provides…