Spain's AI Image Regulations and EU Code of Practice
Recent regulatory developments highlight the increasing scrutiny surrounding the use of generative AI, particularly in the realm of image processing. On January 13, 2026, the Spanish Data Protection Authority (Spanish DPA) issued a formal notice regarding the legal and privacy risks associated with uploading, transforming, or generating images of individuals using AI tools. This warning serves as a crucial reminder for businesses and individuals alike about the importance of adhering to privacy regulations when utilizing advanced technologies.
Simultaneously, the European Commission has introduced the first draft of its voluntary Code of Practice on Transparency of AI-Generated Content. While compliance with this Code is optional, it aims to assist providers in fulfilling the mandatory transparency obligations outlined in Article 50 of the AI Act, set to take effect in August 2026. These developments underscore the necessity for robust safeguards, internal controls, and clear labeling when deploying generative AI technologies.
As we move forward, the question remains: how will organizations adapt to these evolving regulations while continuing to innovate in the AI space?