AI Act and GDPR: simplification as a maturity test for SMEs
The European Commission has unveiled the Digital Omnibus package — a set of legislative proposals meant to make the AI Act and the GDPR simpler for small and medium-sized businesses. It’s a shift in how the regulator thinks about technology in companies that aren’t operating at corporate scale.
But this isn’t about loosening the rules or about “regulatory relief” in the sense of less accountability. The announced changes are mainly about how the law is applied, not its scope. That’s a subtle but very important distinction, especially for SMEs planning to develop IT systems and data-driven tools.
Why were SMEs drowning in red tape?
A pretty clear picture emerges from the proposed changes: for small and mid-sized companies, the problem isn’t the data itself or even using AI. The real issue is the amount of red tape designed for large organizations and then automatically pushed onto smaller ones. This especially affects documentation, reporting, and the organizational obligations around customer data, employee data, and the data used by IT systems.
Share
You might be interested in
The faceless minister. A political fantasy with AI in the lead role
Would you trust an algorithm if it promised to operate transparently, legally and without bias? Albania just found out that a faceless minister won’t solve the corruption problem.
First step into the future
When should you start teaching your child about how artificial intelligence works?
Unauthorized AI is already operating in your company
How to avoid a million-dollar fine for Shadow AI
Last minute holidays? Your trace is in the system forever
What happens to the data you enter while planning a family trip?
