Abstract
Brazil, despite its recent advances in the regulatory sphere for Privacy and Data Protection, still remains unregulated regarding the use of artificial intelligence. In 2020, two years after the enactment of the General Law on Data Protection (LGPD), a Bill emerged that was the first Brazilian attempt not only to regulate, but also to define, classify, and identify AI-powered tools. However, among confusing meanings and vague typifications, the proposal failed to become the prototype that would generate a regulatory framework that encompasses both preventive compliance methods and possible remedial solutions for eventual disputes. Thus, the need emerges to seek pre-existing solutions in the Brazilian legislation that, although still undefined and precariously implemented, may be consolidated in the future as indispensable tools for the identification of eventual failures. This is where the mandatory implementation of the impact assessment comes in as a potential solution for the detailed analysis of AI-powered systems. Software architectures that are programmed to make automated decisions by means of machine learning techniques, for example, present certain risks, but the level of risk is unknown, precisely because of the lack of transparency about how their internal architectures work. Thus, a continuous and properly documented risk assessment will provide essential analysis both to substantiate a preventive system that survives the wear and tear of time in relation to inexorable technological advancement, and to serve as a broad and precise regulation, which will work as a legal instrument for any legal dispute that may arise in the years to come.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Andrade N (2020) Promoting AI ethics research in Latin America and the Caribbean. [S.l.]: Facebook Research blog
Avanci S (2022) Relatório sobre a inteligência artificial e o projeto de lei 21/20, que visa instituir o marco legal da inteligência artificial no Brasil
Bioni B et al (2018) GDPR matchup: Brazil’s general data protection LAW, IAPP
Clarke R, Greenleaf G (2017) Dataveillance regulation: a research framework. University of New South Wales Law Research Series, Sydney
European Commission homepage, Guidelines on Automated individual decision-making and Profiling for the purposes of Regulation 2016/679, https://ec.europa.eu/newsroom/article29/items/612053. Last Accessed 17 Oct 2022
Frazão A, Cueva R (2022) Compliance e Políticas de Proteção de Dados. Editora Revista dos Tribunais, São Paulo
Haugeland J (1985) Artificial intelligence: the very idea. Bradford Books, Cambridge
Kuner C (2012) The European Commission’s proposed data protection regulation: a copernican revolution in european data protection law. Bloomberg BNA Privacy Secur Law Rep 6
Kranzberg M (1986) Technology and history: “Kranzberg’s laws.” Johns Hopkins Univ Press 27:545
LGPD’s official link, http://www.planalto.gov.br/ccivil_03/_ato2015-2018/2018/lei/l13709.htm. Last Accessed 15 Oct 2022
Mitchell T (1997) Machine learning. McGraw Hill, New York
Mont, C et al (2020) Artificial intelligence for social good in Latin America and the Caribbean: the regional landscape and 12 country snapshots. [S.l.]: Inter-American Development Bank
Weinberger D (2021) Playing with AI fairness. Google’s Pair
Wright D, De Hert P (2012) Privacy impact assessment. Springer, Netherlands, Dordrecht
Funding
The authors of this work would like to thank the foundation for the development of teaching and research in law (FADEP), as well as C4AI-USP and the support from the São Paulo Research Foundation (FAPESP grant #2019/07665-4) and from the IBM Corporation.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2024 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Papp, M., Oliveira, C. (2024). The Alleged (Un)regulation of AI Use in Brazil: The Impact Assessment as a Solution. In: Yang, XS., Sherratt, R.S., Dey, N., Joshi, A. (eds) Proceedings of Eighth International Congress on Information and Communication Technology. ICICT 2023. Lecture Notes in Networks and Systems, vol 696. Springer, Singapore. https://doi.org/10.1007/978-981-99-3236-8_20
Download citation
DOI: https://doi.org/10.1007/978-981-99-3236-8_20
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-99-3235-1
Online ISBN: 978-981-99-3236-8
eBook Packages: EngineeringEngineering (R0)