#regulatory-risk

16 notes.

• AI Gets Personal: CCPA vs. GDPR on Automated Decision-MakingBPM/wiki/sources/2025-okan-btlj-blog-ccpa-vs-gdpr-automated-decision-making
• Article 22 GDPR — Automated individual decision-making, including profiling (regulation text)BPM/wiki/sources/gdpr-article-22-text
• Automated Decision-Making (ADM)BPM/wiki/concepts/automated-decision-making
• Automation BiasBPM/wiki/concepts/automation-bias
• Data Protection Impact Assessment (DPIA)BPM/wiki/concepts/dpia
• DORA — Digital Operational Resilience Act (Reg. EU 2022/2554)BPM/wiki/concepts/dora
• DORA and NIS2: strengthening digital resilience across the EUBPM/wiki/sources/2025-crisk-dora-nis2-overview
• Engineering GDPR compliance in the age of agentic AIBPM/wiki/sources/2025-navaie-iapp-engineering-gdpr-compliance-agentic-ai
• EU AI Act (Regulation 2024/1689)BPM/wiki/concepts/eu-ai-act
• GDPR Accountability Principle (Art. 5(2))BPM/wiki/concepts/gdpr-accountability-principle
• GDPR Article 22 — Automated Individual Decision-MakingBPM/wiki/concepts/gdpr-article-22
• Human Oversight (in ADM and AI Act contexts)BPM/wiki/concepts/human-oversight
• Humans in the GDPR and AIA governance of automated and algorithmic systems. Essential pre-requisites against abdicating responsibilitiesBPM/wiki/sources/2023-lazcoz-dehert-humans-in-gdpr-and-aia-governance
• NIS2 Directive (Directive EU 2022/2555)BPM/wiki/concepts/nis2
• ProfilingBPM/wiki/concepts/profiling
• Synthesis: Legal-risk mapping for AI-driven process automationBPM/wiki/syntheses/legal-risk-mapping-ai-process-automation