ICO building an AI auditing framework

Share This Post

The ICO have launched a new AI Auditing Framework blog which will provide updates and discussion around their work on developing a framework to give them “a solid methodology to audit AI applications and ensure they are transparent, fair; and to ensure that the necessary measures to assess and manage data protection risks arising from them are in place.” The ICO identified AI as one of their technology priority areas in their strategy for 2018-2021.

In it’s most recent post, Simon McDougall (ICO’s Executive Director Technology Policy and Innovation) sets out that whilst GDPR strengthens individuals’ rights in any technology setting (including the use of AI and machine learning), there are still concerns about the “societal effect of powerful data-processing technology like profiling and automated decision-making.”

The intention of the framework is to give the ICO an approach to allow them to audit AI applications and provide future guidance to support the development of AI technology as well build upon the GDPR’s existing data protection by design and DPIA approaches to identifying and managing risks from the processing.

The ICO are also using the blog to call for input from data scientists, app developers or anyone involved in developing or using AI applications, and they want feedback via the blog on their approaches as they develop, so a chance for you to get involved.

More To Explore


The key message from the ICO regarding the use of AI is not to forget if AI is processing personal data, then you need to

Read More »

Eat. Sleep. GDPR. Repeat.

We live and breathe GDPR and ePrivacy compliance, so you don’t have too. Our GDPR UNLIMITED helpline is all about offering you help and support, whenever you need it most. As well as the unlimited helpline, you get up to 4 hours “hands-on” help each month, which we can configure to help you in anyway you need such as a GDPR review, or acting as your DPO.

As well as the unlimited helpline and hands-on help you get GDPR and privacy updates, access to our GDPR knowledge centre and webinars.

Unlimited email & phone support

Unlimited email and phone support. Email or organise a voice call as often as you need each month.​

Up to 4 hours "hands-on" help per month

We use these "hands-on" hours to do the GDPR work for you, such as reviews, acting as your DPO, checking DPIA, dealing with breaches, training your staff, etc. (Additional hours: £100+VAT per hour)

Online resources

Our Knowledge Centre gives you access to information, guidance, topic related guides and other tools to support your GDPR and PECR compliance

Updates, alerts & briefings

We provide updates and alerts and a monthly compliance briefing. You can either sign into the Knowledge Centre or sign up via email to receive an email every time we add a new update or alert

DPO services

Whether mandated or not we can act as your Data Protection Officer (DPO) and manage your day to day compliance

Webinars, workshops & training

Whether updates on the latest issue, workshops or team training, it's all included in your monthly retainer.

LIKE WHAT YOU'RE READING? join our email list

Sign up for monthly briefings and the occasional emails about our webinars and services

Want to know more about how we use your data? Check out our privacy policy