The Irish Data Protection Commission (DPC) has opened an investigation into X Internet Unlimited Company (XIUC) under Section 110 of the Data Protection Act 2018, concerning the alleged creation and publication of potentially harmful, non-consensual intimate and/or sexualised images on the X platform, which involves the processing of personal data of EU/EEA data subjects, including children, using generative AI associated with Grok AI. XIUC was notified of this inquiry on 16 February 2026, and the investigation will assess XIUC’s compliance with the General Data Protection Regulation (GDPR) regarding processing principles, lawfulness of processing, data protection by design and by default, and the necessity of conducting a data protection impact assessment.
Click here for the official article/release
Disclaimer
The Legal Wire takes all necessary precautions to ensure that the materials, information, and documents on its website, including but not limited to articles, newsletters, reports, and blogs (“Materials”), are accurate and complete. Nevertheless, these Materials are intended solely for general informational purposes and do not constitute legal advice. They may not necessarily reflect the current laws or regulations. The Materials should not be interpreted as legal advice on any specific matter. Furthermore, the content and interpretation of the Materials and the laws discussed within are subject to change.
