Italy's Garante Scrutinizes DeepSeek Over Data Privacy Concerns

Italy's Garante Questions DeepSeek's Data Practices

Italy's data privacy regulator, Garante, has intensified its scrutiny on the Chinese AI enterprise, DeepSeek, over data handling concerns. The authority has formally requested that DeepSeek clarify several aspects of its data operations, notably concerning data collection methods, the origins of its data, intended usage, legal justifications, and storage locales, amidst potential risks to user privacy in Italy.

The Garante's announcement revealed that the information request is directed towards both Hangzhou DeepSeek Artificial Intelligence and Beijing DeepSeek Artificial Intelligence, which provide the DeepSeek chatbot service on various platforms. The regulator emphasized the potential high risk to the personal data of millions in Italy and urged the firms to disclose specifics about the personal data collected, the sources thereof, and whether these are stored on servers within China.

Furthermore, questions about DeepSeek AI’s training methods, web scraping tactics, and user notification practices are part of the inquiry. A detailed response outlining the legal basis and specific purposes of data collection is required from DeepSeek within a 20-day deadline.

This development mirrors a similar situation from April 2023 when Garante temporarily barred ChatGPT for unlawful data collection and lack of age verification protocols for minors. Garante emphasized the risk posed by ChatGPT's unsuitable responses for younger users despite the minimum user age set at 13. Subsequently, OpenAI adhered to regulatory demands, regaining service access in Italy.

As DeepSeek's AI Assistant app ranks among top downloads globally on the Apple App Store, the company now faces another challenge. Recently, DeepSeek announced a suspension of new registrations for its DeepSeek-V3 chat platform due to a significant cyberattack. The firm limited access temporarily, maintaining login capabilities for existing users while acknowledging the attack without disclosing further details. Speculations hint at a massive DDoS attack following increased scrutiny.

In a consequential move, DeepSeek’s application availability was curtailed as both the iPhone App Store and Google Play Store in Italy delisted the app, which had been the most downloaded free app in the region. The reasons for removal remain unspecified but may relate to preventive measures amid ongoing investigations by Italy’s Data Protection Authority.