The European Commission plans to revise GDPR, potentially easing requirements for cookie tracking and AI data use. Critics warn these changes could undermine privacy protections, allowing companies to track users by default and broaden AI training with personal data without explicit consent.

The Irish Data Protection Commission has approved Meta's plan to use data from EU citizens for AI training, despite ongoing legal challenges from privacy advocates. Meta has made several adjustments to its data collection practices in response to regulatory feedback, but organizations like None Of Your Business (noyb) are still poised to contest this decision in court. A German lawsuit against Meta may further complicate the situation as it seeks to block the AI training set to begin on May 27.

Privacy NGO Noyb has filed a complaint against dating app Bumble for its AI feature, the "AI Icebreaker," citing concerns over data transfers to OpenAI and lack of transparency regarding user consent. Noyb argues that Bumble's processing of personal data for the AI feature may violate GDPR regulations, particularly in the absence of clear legal justification. Bumble has responded by emphasizing its commitment to user privacy and denying sharing sensitive data with OpenAI.

Data engineers play a crucial role in achieving GDPR compliance by implementing systems that manage personal data responsibly. This guide outlines key concepts such as encryption, hashing, and anonymization, as well as best practices for designing data architectures that ensure privacy and security. It also covers practical considerations for incident response and interview preparation related to GDPR.