GDPR
The EU General Data Protection Regulation (since 2018), establishing uniform rules for processing personal data by companies and granting individuals comprehensive rights.
Marketing AI often requires personal data for personalization, segmentation, and predictive analytics.
Explanation
GDPR is based on principles like lawfulness, purpose limitation, data minimization, accuracy, storage limitation, and integrity. For AI marketing, especially relevant: profiling provisions (Art. 22), disclosure requirements for automated decisions, right to explanation and objection. The regulation applies to all companies processing EU citizen data.
Marketing Relevance
Marketing AI often requires personal data for personalization, segmentation, and predictive analytics. GDPR determines which data can be used how, when consent is required, and how transparent AI decisions must be.
Example
A travel provider uses AI for price personalization. GDPR-compliant: inform users that prices are individually calculated, document legal basis (legitimate interest or consent), offer objection option.
Common Pitfalls
Consent fatigue leads to invalid consents. Missing documentation of data processing in AI pipelines. Forgotten deletion obligations in trained models (Right to be Forgotten).
Origin & History
GDPR is an established concept in the field of Data & Analytics. The concept has evolved alongside the growing importance of AI and data-driven methods.