Professionals and AI: Risks, Rules, and Responsibilities

Artificial intelligence has entered the workflows of architects, lawyers, consultants, accountants, and designers. It automates documents, analyzes data, writes texts, and generates images. But behind this apparent efficiency lies a real risk: using these tools without understanding the rules of the game.

Anyone working with sensitive data, confidential information, or protected content must know that using AI without awareness can mean breaking the law, exposing clients and partners, and jeopardizing their professional reputation.

The Hidden Risks of Artificial Intelligence

When data is pasted into a generative AI interface (like ChatGPT, Copilot, or similar tools), that content does not remain “private.” It is transmitted, processed, and sometimes stored by third-party companies, often located outside the EU.

This can lead to:

• Violation of the GDPR due to unlawful processing of personal data.

• Loss of control over confidential information (clients, cases, projects).

• AI errors or hallucinations producing incorrect or misleading content.

• Undesired profiling or algorithmic discrimination.

• Unintentional sharing of documents protected by NDAs or professional secrecy.

These are not theoretical risks: companies like Samsung and JPMorgan have already banned public chatbots for employees after incidents of internal data leaks.

The New European AI Regulation

Starting in 2025, the AI Act, the European regulation governing the development and use of artificial intelligence, will come into full effect. Every system will be classified by its level of risk.

Some systems will be banned (such as emotional manipulation, social scoring, real-time biometric surveillance), while high-risk systems — like AI used for recruitment, legal advice, or credit scoring — must comply with strict requirements:

• Mandatory human oversight.

• Transparency and explainability of decisions.

• Technical documentation and traceability.

• Cybersecurity and data protection.

Non-compliant systems may face penalties of up to 7% of global annual turnover.

Responsibilities for AI Users in Professional Settings

Even those who don’t develop AI but simply use it are fully accountable — both under privacy laws (like the GDPR) and in professional terms. This means:

• Each firm or professional is responsible for the data they input into AI platforms.

• Personal data must be handled in compliance with European regulations.

• Every AI-generated output must be reviewed and validated before use with clients or in official documents.

• Clear internal policies must define which tools can be used, with what limitations, and in which contexts.

Ignoring these factors can lead to ethical violations, financial damage, loss of clients, and — in some cases — legal proceedings or sanctions by regulatory authorities.

What to Do Immediately

1. Prohibit the insertion of confidential data into public AI tools.

2. Choose secure AI tools, preferably European or offering strong data control options.

3. Implement an internal AI usage policy in your firm or company.

4. Train employees and collaborators on proper and responsible AI usage.

5. Continuously monitor AI usage: it’s not “plug and play,” it requires governance.

AI is a powerful tool, but not rule-free. Every professional should know the rules well before blindly trusting an algorithm.

For additional tools and resources on digital innovation for professionals, visit romanojryan.com for international content or romanojryan.it for Italian resources. Don’t miss our updates: subscribe to our newsletter to stay updated on the latest AI trends in business.