←back to thread

Meta says it won't sign Europe AI agreement

(www.cnbc.com)
328 points rntn | 3 comments | 18 Jul 25 17:56 UTC | HN request time: 0.626s | source
Show context
ankit219 ◴[18 Jul 25 19:13 UTC] No.44608660[source]
Not just Meta, 40 EU companies urged EU to postpone roll out of the ai act by two years due to it's unclear nature. This code of practice is voluntary and goes beyond what is in the act itself. EU published it in a way to say that there would be less scrutiny if you voluntarily sign up for this code of practice. Meta would anyway face scrutiny on all ends, so does not seem to a plausible case to sign something voluntary.

One of the key aspects of the act is how a model provider is responsible if the downstream partners misuse it in any way. For open source, it's a very hard requirement[1].

> GPAI model providers need to establish reasonable copyright measures to mitigate the risk that a downstream system or application into which a model is integrated generates copyright-infringing outputs, including through avoiding overfitting of their GPAI model. Where a GPAI model is provided to another entity, providers are encouraged to make the conclusion or validity of the contractual provision of the model dependent upon a promise of that entity to take appropriate measures to avoid the repeated generation of output that is identical or recognisably similar to protected works.

[1] https://www.lw.com/en/insights/2024/11/european-commission-r...

replies(8): >>44610592 #>>44610641 #>>44610669 #>>44611112 #>>44612330 #>>44613357 #>>44617228 #>>44620292 #
t0mas88 ◴[18 Jul 25 22:48 UTC] No.44610641[source]
Sounds like a reasonable guideline to me. Even for open source models, you can add a license term that requires users of the open source model to take "appropriate measures to avoid the repeated generation of output that is identical or recognisably similar to protected works"

This is European law, not US. Reasonable means reasonable and judges here are expected to weigh each side's interests and come to a conclusion. Not just a literal interpretation of the law.

replies(4): >>44613578 #>>44614324 #>>44614949 #>>44615016 #
deanc ◴[19 Jul 25 08:15 UTC] No.44613578[source]
Except that it’s seemingly impossible to prevent against prompt injection. The cat is out the bag. Much like a lot of other legislation (eg cookie law, being responsible for user generated content when you have millions of it posted per day) it’s entirely impractical albeit well-meaning.
replies(1): >>44613667 #
lcnielsen ◴[19 Jul 25 08:36 UTC] No.44613667[source]
I don't think the cookie law is that impractical? It's easy to comply with by just not storing non-essential user information. It would have been completely nondisruptive if platforms agreed to respect users' defaults via browser settings, and then converged on a common config interface.

It was made impractical by ad platforms and others who decided to use dark patterns, FUD and malicious compliance to deceive users into agreeing to be tracked.

replies(3): >>44613785 #>>44613896 #>>44613989 #
mgraczyk ◴[19 Jul 25 09:42 UTC] No.44613989[source]
Even EU government websites have horrible intrusive cookie banners. You can't blame ad companies, there are no ads on most sites
replies(2): >>44614216 #>>44619769 #
1. cultureswitch ◴[19 Jul 25 21:52 UTC] No.44619769[source]
You don't need cookie banners if you don't use invasive telemetry.

A website that sticks to being a website does not need cookie banners.

replies(1): >>44619790 #
2. mgraczyk ◴[19 Jul 25 21:56 UTC] No.44619790[source]
Then why does the EU commission believe they need one for their pages that explain these rules? What invasive telemetry are they using?

Are there any websites that don't require these banners?

If you allow users to set font size or language you need a banner btw

replies(1): >>44622867 #
3. cess11 ◴[20 Jul 25 07:55 UTC] No.44622867[source]
They create profiles of visitors that allow them to, e.g. through polls.

It's usually a click or two to "reject all" or similar with serious organisations. Some german corporations are nasty and conflate paywall and data collection and processing consent.