According to Cointelegraph, the Italian Data Protection Authority fined OpenAI $15.7 million and required it to conduct a six-month public awareness campaign.
The investigation found that OpenAI did not notify the authority about the data breach incident in March 2023 and processed user data without providing a legitimate basis, violating the principle of transparency.
Additionally, OpenAI did not provide an age verification mechanism, which could lead to minors under the age of 13 being exposed to content that is not suitable for their development.
OpenAI will conduct public awareness campaigns through broadcasting, television, newspapers, and the internet to enhance understanding of ChatGPT's features.
During the investigation, OpenAI moved its European headquarters to Ireland, and the Irish Data Protection Authority became the primary regulatory body.