UK privacy regulator launches investigation into X regarding Grok AI’s sexual deepfake content.

The Information Commissioner’s Office (ICO) has officially begun inquiries into both X and xAI, the companies led by Elon Musk, to determine if they have met the requirements of data protection laws. This scrutiny comes in light of disturbing reports regarding the Grok AI tool, which has been utilized to create sexual deepfake images without the explicit consent of the individuals depicted.

According to the ICO, these reports have raised “serious concerns” about compliance with UK data protection legislation. Key questions include whether “appropriate safeguards were incorporated into both the design and the deployment of Grok.”

William Malcolm, the Executive Director of Regulatory Risk and Innovation at the ICO, expressed his alarm regarding the implications of these reports. He stated, “The reports about Grok raise profoundly troubling questions about how individuals’ personal data has been leveraged to produce intimate or sexualized images without their awareness or permission, alongside doubts about whether adequate safeguards were established to forestall such occurrences.”

“When personal data is mismanaged in this manner, it leads to immediate and profound repercussions. This concern is amplified when minors are involved,” he added, emphasizing the severity of the issue.

In a separate communication, Ofcom – the communications regulator – clarified that it is not currently investigating xAI, the company responsible for the Grok application. Ofcom is, however, actively conducting its own investigation into X, the social media platform formerly known as Twitter, which allows users to engage with the Grok AI tool. Ofcom noted that this inquiry is still in its evidence-gathering phase and may stretch over several months.

The regulator mentioned that the company has taken proactive measures to remediate the situation and should be allowed a “full opportunity to respond.” In explaining its decision not to investigate xAI, Ofcom stated, “Upon initiating our investigation into X, we indicated that we would evaluate the necessity of probing xAI, as it provides the independent Grok service.”

“We remain steadfast in demanding clarification from xAI regarding the potential risks it poses. Our examination includes assessing whether there is grounds to initiate an investigation into its adherence to regulations stipulating that services distributing pornographic content must implement highly effective age checks to prevent underage access to such materials,” it further elucidated.

“Due to the specific manner in which the law relates to chatbot operations, we unfortunately find ourselves currently incapable of investigating the generation of unlawful images by the standalone Grok service in this instance,” the statement concluded.