Question 19
IIAn organization deploys an AI system that collects and uses personal information as part of its operation. Based on the source material, how should existing data privacy laws be treated in relation to that AI-related processing?
Correct answer: B
Explanation
Existing data privacy laws apply to AI systems when those systems process personal information, so AI-related activities must be assessed under the same privacy law framework that governs other processing. — aigp-study-guide-2026.pdf
Why each option is right or wrong
A. Data privacy laws apply only when an AI system makes fully automated legal decisions.
Existing data privacy laws apply to AI-related processing activities generally, not only to fully automated legal decisions.
B. Existing data privacy laws apply to AI systems and AI-related processing activities involving personal information.
The source material states that existing data privacy laws cover the application of privacy rules to AI systems and AI-related processing activities. Because the scenario involves an AI system collecting and using personal information, that processing falls within the scope described.
C. Data privacy laws do not apply to AI systems unless a new AI-specific statute has been enacted.
Existing data privacy laws already apply to AI systems and AI-related processing activities.
D. AI-related processing is governed only by internal governance standards rather than by privacy laws.
Privacy laws apply to AI-related processing activities; internal standards do not replace legal obligations.