French and Quebec Regulators Order Clearview AI to Cease Unlawful Facial Recognition Data Practices

Clearview AI's facial recognition system is an AI system that processes biometric data to identify individuals. The CNIL's order highlights that the system's development and use have directly led to violations of data protection laws and individuals' privacy rights, which are breaches of fundamental rights under applicable law. The collection and use of biometric data without consent and legal basis constitute harm under the framework's category of violations of human rights and legal obligations. The event describes realized harm and regulatory action in response, fitting the definition of an AI Incident rather than a hazard or complementary information.

Clearview AI's facial recognition system is an AI system as it uses algorithms trained on massive datasets to identify individuals. The CNIL's findings indicate that the AI system's use has directly led to violations of data protection laws and individuals' rights, constituting harm under the framework's category of violations of human rights or breach of legal obligations. The formal notice and potential sanctions confirm that harm has materialized, not just a potential risk. Therefore, this event qualifies as an AI Incident due to the direct involvement of an AI system causing legal and rights-based harm through its data processing practices.

Clearview AI explicitly uses AI-powered facial recognition systems that collect and process personal data without consent, violating GDPR rules. The Cnil's enforcement action is a direct response to these unlawful uses of AI systems, which have caused harm by infringing individuals' privacy rights. The event involves the use and misuse of an AI system leading to a breach of legal obligations protecting fundamental rights, fitting the definition of an AI Incident. Although the article focuses on regulatory action, the underlying harm from Clearview AI's AI system use is realized and central to the event.

Clearview AI's facial recognition system is an AI system as it processes biometric data to identify individuals. The event involves the use of this AI system in a manner that violates data protection laws and individuals' rights to access and erase their data, constituting a breach of fundamental rights under applicable law. Although no direct harm such as physical injury or operational disruption is reported, the violation of privacy rights is a recognized harm under the framework. The CNIL's enforcement action and the ongoing investigations indicate the seriousness of the issue. Since the harm is realized (rights violations) and the AI system's use is central to the incident, this qualifies as an AI Incident rather than a hazard or complementary information.

Clearview AI's facial recognition system is an AI system that processes biometric data derived from images collected online. The CNIL's decision highlights that the system's use has directly led to violations of privacy rights and breaches of data protection laws (GDPR), which are legal obligations protecting fundamental rights. The collection and use of biometric data without legal basis and without respecting individuals' rights constitute harm under the framework's definition of AI Incident (violation of human rights and breach of legal obligations). The event describes realized harm, not just potential harm, and involves the AI system's use, thus qualifying as an AI Incident.

Clearview AI's facial recognition system is an AI system that processes biometric data. Its unauthorized collection and use of personal data without consent constitutes a violation of data protection laws and fundamental rights, which is a harm under the framework. The CNIL's order is a response to this harm. Therefore, this event qualifies as an AI Incident due to violations of human rights and legal obligations caused by the AI system's use.

Clearview AI's facial recognition system is an AI system that processes biometric data derived from billions of images scraped from the internet. The CNIL's legal action highlights that the system's use has led to violations of privacy rights and breaches of the GDPR, which are legal obligations protecting fundamental rights. The harm is realized as millions of French individuals' data have been collected and processed without proper consent, constituting a violation of human rights and data protection laws. This fits the definition of an AI Incident because the AI system's use has directly led to a breach of applicable law intended to protect fundamental rights.

Clearview AI's facial recognition system is an AI system that processes biometric data to identify individuals. Its unauthorized scraping and use of billions of images without consent directly violate data protection laws and individuals' privacy rights, which are fundamental human rights. The regulatory sanctions and complaints indicate that harm has occurred due to the AI system's use. Therefore, this event qualifies as an AI Incident because the AI system's use has directly led to violations of human rights and legal obligations protecting privacy and data rights.

Clearview AI uses an AI-powered facial recognition system to collect and process personal images without consent, constituting a violation of privacy rights and GDPR. This is a clear breach of obligations under applicable law intended to protect fundamental rights. The CNIL's enforcement action confirms that harm in terms of rights violations has occurred due to the AI system's use. Therefore, this qualifies as an AI Incident under the framework, as the AI system's use has directly led to a violation of human rights and legal obligations.

Clearview AI's facial recognition software is an AI system that processes biometric data to identify individuals. The company's collection and use of this data without consent or legal basis violates GDPR, constituting a breach of fundamental rights and legal obligations. The CNIL's order to delete data and cease processing is a regulatory response to these violations. Since the AI system's use has directly caused harm in the form of privacy violations and legal breaches, this qualifies as an AI Incident under the framework, specifically under category (c) violations of human rights or breach of legal obligations protecting fundamental rights.

Clearview AI's facial recognition system is an AI system that processes biometric data to identify individuals. The CNIL's decision highlights unlawful data collection and use without legal basis, violating GDPR and individuals' rights. The harm here is a violation of human rights and data protection laws, which fits the definition of an AI Incident. The event involves the use of an AI system leading directly to rights violations and regulatory sanctions, thus qualifying as an AI Incident rather than a hazard or complementary information.

Clearview AI is an AI system used for facial recognition, which involves automated processing of images to identify individuals. The company's unauthorized scraping and use of personal images without consent is a direct violation of privacy rights and data protection laws, which are fundamental rights. The CNIL's formal notice and potential sanctions indicate that harm has occurred or is ongoing due to the AI system's use. Therefore, this event qualifies as an AI Incident because the AI system's use has directly led to violations of human rights and legal obligations under applicable law.

Clearview AI's facial recognition software is an AI system that collects and processes biometric data without legal basis, violating individuals' rights to data access and erasure. The Cnil's formal notice indicates that these violations have occurred due to the AI system's use. This constitutes a breach of obligations under applicable law intended to protect fundamental rights, fitting the definition of an AI Incident. The event is not merely a warning or potential risk but a realized violation, so it is not an AI Hazard. It is not complementary information since the main focus is on the incident itself, nor is it unrelated.

Clearview AI's facial recognition software is an AI system that processes biometric data. The Cnil's action is a regulatory enforcement against the unlawful use of personal data by this AI system. Although no direct harm such as injury or rights violations is explicitly reported as having occurred, the ongoing illegal data collection and use constitute a violation of data protection laws and individuals' rights. This situation represents an AI Incident because the AI system's use has directly led to a breach of legal obligations protecting fundamental rights (privacy and data protection).

Clearview AI's facial recognition system is an AI system as it processes biometric data to identify individuals. The CNIL's findings indicate that the system's use has directly led to violations of data protection laws and individuals' rights, fulfilling the criteria for an AI Incident under the framework. The harm is realized (not potential), involving breaches of fundamental rights and legal obligations. Hence, the event is classified as an AI Incident.

Clearview AI's facial recognition system is an AI system involved in the unlawful collection and processing of biometric data, which constitutes a violation of privacy rights (a breach of obligations under applicable law protecting fundamental rights). However, the article does not report a specific incident of harm caused by the AI system's use, but rather the regulatory authority's enforcement action to stop ongoing illegal processing and ensure compliance. This fits the definition of Complementary Information, as it details governance and societal response to AI-related privacy violations, rather than describing a new AI Incident or AI Hazard.

Clearview AI's facial recognition platform is an AI system that processes biometric data. The Cnil's enforcement action is due to Clearview AI's unlawful data collection and processing practices, which violate privacy and data protection rights, a breach of applicable law protecting fundamental rights. This constitutes an AI Incident because the AI system's use has directly led to violations of rights and harms to individuals' privacy. The event is not merely a hazard or complementary information but a concrete incident of harm and legal enforcement.

Clearview AI's facial recognition system is an AI system that processes biometric data to identify individuals. The company's unauthorized scraping and processing of personal images without consent directly breaches GDPR and infringes on individuals' privacy rights, constituting harm to fundamental rights. The CNIL's formal notice and the described violations confirm that harm has occurred due to the AI system's use. Hence, this event meets the criteria for an AI Incident as the AI system's use has directly led to violations of human rights and legal obligations.

Clearview AI's facial recognition system is an AI system as it processes biometric data to identify individuals. The event describes the use of this AI system in a manner that violates data protection laws (GDPR), infringing on individuals' rights to privacy and data access. This constitutes a breach of obligations intended to protect fundamental rights, fulfilling the criteria for an AI Incident. The CNIL's enforcement action and ongoing investigations confirm the harm has occurred due to the AI system's use.

Clearview AI's facial recognition system is an AI system that collects and processes billions of facial images globally. The CNIL's order to cease collection and delete data is a direct response to violations of privacy and data protection rights caused by the use of this AI system. The event involves the use of AI leading to breaches of fundamental rights and legal obligations, fitting the definition of an AI Incident. The regulatory enforcement action confirms that harm (rights violations) has occurred or is ongoing, not merely a potential risk. Hence, this is not a hazard or complementary information but an AI Incident.

Clearview AI uses an AI system for facial recognition that processes personal data without consent, violating GDPR and fundamental rights. The CNIL's enforcement action is a response to this unlawful use, indicating that harm in terms of rights violations has occurred. The AI system's development and use directly led to this breach, qualifying the event as an AI Incident under the framework's criteria for violations of human rights or legal obligations protecting fundamental rights.

Clearview AI's facial recognition system is an AI system as it processes biometric data to identify individuals. The Commission's decision highlights that Clearview AI's use of images without consent constitutes a violation of privacy rights and applicable law, which fits the definition of an AI Incident under violations of human rights or breach of legal obligations. The event describes realized harm through unauthorized data collection and use, not just potential harm. The involvement of the AI system is direct, as the facial recognition technology is central to the harm. Hence, this is classified as an AI Incident.

Clearview AI is an AI system performing facial recognition by processing biometric data. The CNIL's order highlights Clearview's unlawful data collection and processing practices, violating GDPR provisions protecting fundamental rights to privacy and data protection. These violations constitute harm under the framework's category (c) "Violations of human rights or a breach of obligations under applicable law intended to protect fundamental, labor, and intellectual property rights." The event describes realized harm through illegal data processing and rights violations, not just potential harm. Hence, it meets the criteria for an AI Incident rather than a hazard or complementary information.

Clearview AI is an AI system performing facial recognition by processing biometric data. The CNIL's order is based on Clearview's illegal use of this AI system, violating GDPR provisions protecting fundamental rights. The event documents realized harm in terms of rights violations and unlawful data processing, not just potential harm. Hence, it meets the criteria for an AI Incident as the AI system's use has directly led to breaches of legal and fundamental rights obligations.

Clearview AI's facial recognition system is an AI system that processes biometric data to identify individuals. The CNIL's formal notice is due to Clearview AI's illegal collection and use of personal biometric data without consent, violating GDPR and fundamental rights. This constitutes a violation of human rights and legal obligations (harm category c). The event involves the use of an AI system leading to realized harm (privacy and data protection violations). Therefore, this is an AI Incident. The regulatory action and potential sanctions are responses to this incident, not the primary event itself.

Clearview AI's facial recognition system is an AI system that processes biometric data. The unauthorized collection and use of images without consent constitute a violation of privacy rights and applicable legal frameworks protecting fundamental rights. This situation involves harm in the form of violation of rights (privacy and data protection). Since the event describes an ongoing violation and regulatory enforcement action, it qualifies as an AI Incident due to the direct link between the AI system's use and the breach of rights.

Clearview AI's facial recognition system is an AI system as it processes biometric data to identify individuals. The CNIL's action is based on Clearview AI's non-compliance with data protection laws, which constitutes a violation of fundamental rights (privacy). This fits the definition of an AI Incident because the AI system's use has led to a breach of obligations under applicable law intended to protect fundamental rights. Although the article does not describe physical harm or direct injury, the unauthorized processing of biometric data without consent is a recognized legal and human rights violation. Therefore, this event qualifies as an AI Incident due to the realized violation of rights caused by the AI system's use.

Clearview AI is an AI system performing facial recognition. The regulator's order stems from the use of this AI system without obtaining prior consent, which constitutes a violation of privacy rights, a breach of applicable law protecting fundamental rights. This is a direct harm related to the AI system's use. Therefore, this event qualifies as an AI Incident due to violations of human rights and legal obligations caused by the AI system's use.

Clearview AI is an AI system performing facial recognition by collecting and processing biometric data. The CNIL's order is based on Clearview's unlawful collection and use of personal data without consent, violating data privacy laws and individuals' rights. This is a direct harm related to violations of human rights and legal obligations, fitting the definition of an AI Incident. The event reports an actual breach and regulatory action, not just a potential risk or complementary information.

Clearview AI is an AI system using facial recognition technology to collect and process biometric data. The French regulator's order is based on Clearview's unauthorized collection and use of sensitive personal data, which directly violates GDPR and infringes on individuals' privacy rights. The event describes actual harm in terms of legal breaches and privacy violations caused by the AI system's use, not just potential harm. Hence, it meets the criteria for an AI Incident as the AI system's use has directly led to a breach of fundamental rights under applicable law.

Clearview AI's facial recognition system is an AI system that processes biometric data. The CNIL's findings confirm that Clearview's use of this AI system has directly led to violations of GDPR, which protects fundamental rights to privacy and data protection. The unlawful processing of biometric data without consent or legal basis is a breach of human rights and data protection laws. The regulatory order to delete data and stop processing is a response to this realized harm. Hence, the event meets the criteria for an AI Incident because the AI system's use has directly caused a breach of rights and legal obligations.

Clearview AI is an AI system that uses facial recognition technology to collect and process biometric data. The French regulator's formal demand highlights that Clearview's collection and use of images without consent breaches EU data privacy laws, which protect fundamental rights. This is a direct violation of legal obligations and human rights related to privacy. The involvement of the AI system in causing this harm is explicit, and the harm (privacy violations) has already occurred. Hence, this event meets the criteria for an AI Incident.

Clearview AI is an AI system that uses facial recognition technology to create biometric templates for identification. The event describes the use of this AI system in a way that breaches legal protections of personal data and privacy rights, constituting a violation of fundamental rights under applicable law. The regulator's order to cease illegal processing and delete data is a response to these violations. Since the event describes a breach of rights caused by the AI system's use, it qualifies as an AI Incident under the definition of violations of human rights or breach of obligations under applicable law.

Clearview AI's facial recognition system is an AI system that processes biometric data to identify individuals. The French regulator CNIL's order to delete data is based on violations of GDPR and data access rights, which constitute breaches of fundamental rights. The involvement of the AI system in unlawfully collecting and processing personal data directly leads to harm in terms of privacy violations. Hence, this qualifies as an AI Incident under the category of violations of human rights or breach of applicable law protecting fundamental rights.

Clearview AI is an AI system performing facial recognition by processing biometric data. Its unlawful collection and use of personal images without consent directly breaches GDPR, a legal framework protecting fundamental rights. This constitutes a violation of human rights and data privacy laws, fulfilling the criteria for an AI Incident. The event describes realized harm (privacy violations) caused by the AI system's use, not just potential harm. Therefore, it is classified as an AI Incident rather than a hazard or complementary information.

Clearview AI's facial recognition system is explicitly involved, and the event centers on its data scraping and storage practices violating privacy laws (GDPR). The harm is a violation of fundamental rights (privacy), which is a recognized category of AI Incident harm. The regulatory demand and threat of fines indicate that the harm is material and recognized, not merely potential. Hence, this is an AI Incident rather than a hazard or complementary information. The event is not unrelated as it directly concerns an AI system and its legal and ethical implications.

Clearview AI is an AI system performing facial recognition by collecting and processing biometric data. The CNIL's order highlights that Clearview's use of this AI system directly led to violations of data privacy laws and fundamental rights of individuals in France. The collection and use of sensitive biometric data without consent is a breach of legal obligations protecting human rights. Therefore, this event qualifies as an AI Incident due to the realized harm (privacy violations) caused by the AI system's use.

Clearview AI's facial recognition system is an AI system that processes biometric data. The CNIL's order is a response to Clearview's unlawful collection and use of personal biometric data without legal basis, constituting a violation of data protection laws and privacy rights. This is a direct harm related to human rights and legal obligations. The event describes an AI Incident because the AI system's use has directly led to violations of applicable law protecting fundamental rights. The regulatory order and fines are responses to this harm, not the primary event itself, so this is not merely complementary information. Therefore, the classification is AI Incident.

Clearview AI's facial recognition software is an AI system used by police and commercial entities. Its use without consent and in contravention of privacy laws constitutes a violation of human rights and legal obligations protecting privacy, which is a fundamental right. The privacy commissioners' formal orders and potential fines indicate that harm has occurred or is ongoing due to the AI system's use. Therefore, this qualifies as an AI Incident because the AI system's use has directly or indirectly led to violations of rights and legal breaches.

Clearview AI's facial recognition system processes biometric data derived from scraped images without consent, violating privacy laws such as GDPR and BIPA. The regulatory findings and fines demonstrate that the AI system's use has directly led to breaches of individuals' rights and legal obligations. The harms include violations of privacy and biometric data protection laws, which fall under the definition of harm to human rights and breach of legal obligations. Hence, this event meets the criteria for an AI Incident rather than a hazard or complementary information.

Clearview AI is an AI system performing facial recognition by collecting and processing biometric data. The event involves the use of this AI system in a way that violates privacy laws, constituting a breach of fundamental rights (data privacy). The harm (violation of rights) has already occurred as the company collected data without consent and limited data access rights. Therefore, this qualifies as an AI Incident due to the realized violation of legal and fundamental rights caused by the AI system's use.

Clearview AI's facial recognition technology is an AI system that collects and processes biometric data of individuals without their consent, violating GDPR and privacy rights. The lawsuit and regulatory action are responses to these violations, indicating harm to individuals' rights has occurred. The event involves the use of an AI system leading to a breach of applicable law intended to protect fundamental rights, fitting the definition of an AI Incident. Although no physical injury or direct harm is reported, the violation of privacy and data protection laws is a recognized harm under the framework, justifying classification as an AI Incident.

ClearView AI is an AI system performing facial recognition, which involves biometric data processing. The event describes the firm's unauthorized collection and use of biometric data, violating privacy laws and fundamental rights of Canadian citizens. The authorities' investigation and binding orders confirm that harm has occurred through breaches of privacy and legal protections. The AI system's use directly led to these harms, fulfilling the criteria for an AI Incident under violations of human rights and legal obligations.

Clearview AI's facial recognition system is an AI system as it processes images to identify individuals. The company's collection and use of images without prior consent constitutes a violation of privacy rights and applicable data protection laws, which are fundamental rights. The regulatory order to stop data collection and delete existing data indicates that harm related to rights violations has occurred or is ongoing. Therefore, this event qualifies as an AI Incident due to violations of human rights and legal obligations related to data privacy caused by the AI system's use.

The event involves the use of an AI system (Clearview AI's facial recognition tool) whose deployment by the AFP led to violations of privacy rights, a breach of applicable legal obligations protecting fundamental rights. The harms described are realized (privacy interference and non-compliance with privacy laws). The article focuses on the regulatory findings and required remediation, but the core issue is the AFP's use of an AI system causing harm to individuals' privacy rights. Therefore, this qualifies as an AI Incident due to the direct link between the AI system's use and violations of privacy rights.

Clearview AI is an AI system that uses facial recognition technology to identify individuals by scraping data from public sources. The French regulator's order is based on Clearview's unlawful data collection and processing practices, which infringe on the privacy rights of French citizens under GDPR. This constitutes a violation of human rights and legal obligations protecting those rights. Since the harm (violation of rights) has already occurred and the AI system's use is central to this harm, the event is classified as an AI Incident.

Clearview AI's facial recognition system is an AI system that processes biometric data. The CNIL's findings confirm that Clearview AI's development and use of this AI system have directly led to violations of GDPR, which protects fundamental rights. The unlawful data processing and failure to comply with data subject rights constitute a breach of obligations under applicable law intended to protect fundamental rights, meeting the criteria for an AI Incident. The regulatory order and investigation confirm that harm in the form of rights violations has occurred, not just a potential risk. Hence, this is not merely a hazard or complementary information but an AI Incident.

Clearview AI is an AI system that uses facial recognition technology, which involves AI-based processing of images. The breach of GDPR and the order to delete data indicate that the AI system's use has led to violations of legal obligations protecting fundamental rights, specifically privacy rights. This constitutes a violation of human rights or breach of applicable law due to the AI system's use. Therefore, this event qualifies as an AI Incident because the AI system's use has directly led to a breach of legal protections and harm to individuals' rights.

Clearview AI is an AI system providing facial recognition capabilities by scraping publicly available images and enabling law enforcement to identify individuals. The investigation and orders stem from Clearview's use of AI to collect and process personal data without consent, violating privacy laws and causing harm to individuals' rights. The involvement of AI in the development and use of this facial recognition system directly led to breaches of privacy rights, a form of harm under the framework. The event details actual harm and regulatory responses, not just potential risks or general information, thus qualifying as an AI Incident.

Clearview AI is an AI system performing facial recognition, which is explicitly mentioned. The event describes the use of this AI system in a manner that violates privacy laws, leading to a breach of fundamental rights protected by law. The injunctions and legal actions are responses to these violations. The harm is realized as the unauthorized collection and use of personal images without consent, constituting a violation of rights. Hence, this is an AI Incident, not merely a hazard or complementary information.

Clearview AI is an AI system performing facial recognition by collecting and processing images from public internet sources without consent. The French regulator's order highlights that the system's use has led to violations of privacy rights and data protection laws, which are fundamental rights protected by law. The involvement of the AI system in unauthorized data collection and processing directly breaches legal obligations and human rights, fulfilling the criteria for an AI Incident. The event describes realized harm (privacy violations) and regulatory response, not just potential harm or general AI news, so it is not a hazard or complementary information.

Clearview AI's facial recognition system is an AI system as it processes biometric data to identify individuals. The company's use of this AI system has directly led to violations of privacy rights, constituting harm under the framework's category of violations of human rights or breach of legal obligations. The orders to cease data collection and delete data indicate that harm has occurred. Therefore, this event qualifies as an AI Incident.

The article involves an AI system (Clearview AI's facial recognition technology) and discusses its use and legal scrutiny. However, it does not describe a specific event where the AI system's use directly or indirectly caused harm (such as privacy violations resulting in legal findings or harm to individuals). Instead, it focuses on a government official's request for information and references past legal actions and regulatory penalties. This fits the definition of Complementary Information, as it provides updates on societal and governance responses to AI use and concerns, without reporting a new incident or hazard involving realized or plausible harm.

Clearview AI's facial recognition system is an AI system that processes biometric data. The CNIL's order is based on Clearview's unlawful processing of personal data without consent, violating GDPR and fundamental rights. This constitutes a violation of human rights and legal obligations protecting privacy, which is a harm under the AI Incident definition (c). The event describes realized harm through unlawful data processing and rights violations, not just potential harm. Therefore, this qualifies as an AI Incident.

Clearview AI's facial recognition system is an AI system that processes biometric data to identify individuals. The company's collection and use of images without consent directly violate privacy laws and fundamental rights, as established by multiple privacy commissioners. The event describes realized harm in the form of illegal mass surveillance and privacy violations affecting millions of individuals, including children. The orders to stop and remediate these practices confirm the incident's severity. Hence, this qualifies as an AI Incident due to the direct involvement of an AI system causing violations of rights.

Clearview AI's facial recognition technology is an AI system that was used to collect and process biometric data without consent, constituting a violation of privacy rights and legal obligations. The mass surveillance and potential discriminatory impacts represent harm to communities and breaches of fundamental rights. The orders to stop and delete data are responses to these realized harms. Therefore, this event qualifies as an AI Incident because the AI system's use has directly led to significant harms and legal violations.

Clearview AI is an AI system using automated image scraping and facial recognition technology to build a biometric database without consent, which is a clear violation of data protection laws and fundamental rights. The article documents realized harms through regulatory findings and enforcement actions, confirming that the AI system's use has directly led to breaches of rights and legal obligations. Therefore, this qualifies as an AI Incident rather than a hazard or complementary information, as the harm is ongoing and recognized by authorities.

Clearview AI's facial recognition technology is an AI system that collects and processes biometric data. The company's refusal to comply with privacy authorities' recommendations and the order to cease unauthorized collection and use of images directly relates to violations of privacy rights, a breach of applicable law protecting fundamental rights. This constitutes harm under the framework's category (c) - violations of human rights or breach of legal obligations. Since the misuse and harm are ongoing and have led to official regulatory action, this qualifies as an AI Incident rather than a hazard or complementary information.

Clearview AI's facial recognition technology is an AI system that has been used to collect biometric data without consent, constituting a violation of privacy rights and legal frameworks protecting personal information. The mass surveillance and unauthorized use of images directly harm individuals' rights and privacy, fulfilling the criteria for an AI Incident under violations of human rights and breach of applicable law. The orders to cease these activities and delete data are responses to this harm. Therefore, this event is classified as an AI Incident.

Clearview AI's facial recognition technology is an AI system involved in the collection and processing of biometric data. The privacy watchdogs' findings indicate that the system's use has directly led to violations of privacy rights and mass surveillance, which are breaches of fundamental rights and legal obligations. Therefore, this event qualifies as an AI Incident due to the realized harm caused by the AI system's use without consent.

Clearview AI's facial recognition technology is an AI system involved in the development and use phases. The mass surveillance and unauthorized data collection directly violate privacy rights, a breach of applicable law protecting fundamental rights. Since the harm (privacy violations and mass surveillance) has already occurred and is linked to the AI system's use, this qualifies as an AI Incident.

Clearview AI is an AI system that processes biometric data for facial recognition. The CNIL's finding that Clearview breached GDPR indicates a violation of legal protections for individuals' privacy rights, which falls under violations of human rights or breach of obligations under applicable law. The event involves the use of an AI system leading to harm in the form of unlawful data processing and privacy violations. Therefore, this qualifies as an AI Incident due to the realized harm and legal breach caused by the AI system's use.

Clearview AI's facial recognition system qualifies as an AI system because it builds biometric templates and processes personal data for identification purposes. The event stems from the use of this AI system in a manner that violates privacy laws and individuals' rights, constituting a breach of legal obligations intended to protect fundamental rights. Although no direct physical harm or injury is reported, the unlawful processing of sensitive biometric data and failure to respect data subject rights represent violations of human rights and privacy laws. Since the article focuses on regulatory findings and enforcement actions rather than a new incident of realized harm or a plausible future harm scenario, this event is best classified as Complementary Information, providing important context and updates on AI governance and legal compliance issues.

Clearview AI's facial recognition system is an AI system that collects and processes biometric data without consent and fails to comply with data subject rights under GDPR. The CNIL's findings confirm that the AI system's use has directly led to violations of fundamental rights protected by law. The event involves realized harm (privacy violations) due to the AI system's use, meeting the criteria for an AI Incident rather than a hazard or complementary information. The regulatory action and potential penalties further underscore the seriousness of the incident.