Products
Edge AI
AI Training
GPU Cloud
GPU CloudBoost AI/ML training with servers powered by NVIDIA
AI Inference
Inference at the Edge
Inference at the EdgeAccelerate your ML model inference for fast global performance
AI Applications
Image Generator
Image GeneratorCreate realistic and stunning images with ease
Speech-to-Text Translator
Speech-to-Text TranslatorTranslate from English to Luxembourgish seamlessly
Edge Cloud
Compute
Basic VMs
Basic VMsManage workloads on affordable shared virtual servers
Virtual Machines
Virtual MachinesRun apps on customizable dedicated virtual servers
Bare Metal
Bare MetalDeploy apps on powerful dedicated physical servers
Containers
Managed Kubernetes
Managed KubernetesDeploy, manage, and scale Kubernetes clusters easily
Container as a Service
Container as a ServiceRun containerized apps without server provisioning
Container Registry
Container RegistrySecurely store, manage, and deploy container images.
Function as a Service
Function as a ServiceExecute serverless code functions efficiently
Networking
Load Balancer
Load BalancerRoute traffic optimally to improve app performance
5G Network
5G NetworkDeploy apps and securely connect mobile devices via 5G
Virtual Private Cloud
Virtual Private CloudManage resources in a secure isolated private cloud
Hosting
Virtual Servers
Virtual ServersHost on virtual servers with no traffic restrictions
Dedicated Servers
Dedicated ServersHost on physical servers with worldwide availability
Storage
Object Storage
Object StorageStore data in fast and scalable S3-compatible storage
File Shares
File SharesShare files across servers easily using NFS protocol
Databases
Managed PostgreSQL
Managed PostgreSQLProvision fully managed PostgreSQL databases with ease
Monitoring
Managed Logging
Managed LoggingCollect, store, and analyze application logs
About Edge Cloud
Edge Network
Application Performance
CDN
CDNAccelerate dynamic and static content delivery
FastEdge
FastEdgeDeploy serverless apps with low-latency edge computing
Media Delivery
Video Streaming
Video StreamingDeliver high-quality live and on-demand video at scale
DNS
Managed DNS
Managed DNSEnsure application availability with authoritative DNS
Public DNS
Public DNSProtect online privacy with a free DNS resolver
About Edge Network
Edge Security
Network Security
DDoS Protection
DDoS ProtectionProtect your infrastructure from evolving DDoS attacks
Application Security
WAAP
WAAPSecure apps and APIs from DDoS, bots and OWASP attacks
Solutions
By Industry
Gaming
CDN for Gaming
Game Server Protection
Game Development
Retail
CDN for E-commerce
Media & Entertainment
CDN for Video
Metaverse Streaming
TV & Online Broadcasters
Sport Broadcasting
Online Events
Financial Services
Cloud for Financial Services
Technology
Image Optimization
Web Acceleration
Wordpress CDN
Education
Online Education
By Need
Web Acceleration
Web Acceleration
Image Optimization
Wordpress CDN
Security
Game Server Protection
Video Streaming
CDN for Video
Video Hosting
Live Streaming
Availability
Multi-CDN
Cloud
Web Service
Game Development
Online Store
Migration to the Cloud
ERP in the Cloud
Pricing
Resources
Resources
Blog
Case Studies
White Papers
Events
Documentation
Docs
API
Product Roadmap
Help Center
Gcore Status
Tools
Looking Glass
Speed Test
Developer Tools
Partners
Partners
Intel
Intel | New CPU Generation
Intel | Ice Lakes
Hesp
Equinix
InData Labs
Ampere
Unum
Programs
White Label Solutions
Referral Program
Why Gcore
Company
About Gcore
Press
Awards
Careers
Legal Information
Platform
Network
Infrastructure
Internet Peering Points
Compliance
Under attack?Under attack?
en
Contact usContact us
Contact us

Select the Gcore Platform

Recommended
Gcore Edge Solutions Go to Gcore Platform → Go to Gcore Platform →

Products:

  • Edge Delivery (CDN)
  • DNS with failover
  • Virtual Machines
  • Bare Metal
  • Cloud Load Balancers
  • Managed Kubernetes
  • AI Infrastructure
  • Edge Security (DDOS+WAF)
  • FaaS
  • Streaming
  • Object Storage
  • ImageStack (Optimize and Resize)
  • Edge Compute (Coming soon)
Show full list
Gcore Hosting Go to Gcore Hosting →
  1. Home
  2. Insights
  3. AI Regulations are Changing; Sovereign Cloud Helps Businesses Comply

AI Regulations are Changing; Sovereign Cloud Helps Businesses Comply

October 3, 2024 4 min read
AI Regulations are Changing; Sovereign Cloud Helps Businesses Comply

AI has taken the world by storm, moving so fast in recent years that regulators simply couldn’t keep up. Concerns about how training data was being sourced and whether inference data was being stored raised major ethical concerns, with critics sounding concerns about AI becoming the technological Wild West.

Fortunately, regulators weren’t asleep on the job, and in 2024, we’ve seen a flurry of new and updated policies that seek to ensure companies use AI ethically. These regulations, which vary somewhat from one region to another, set new standards for companies that train AI models, or run inference, on sensitive information like personally identifiable and health data. This can be a real headache for companies that started using AI before regulations came into force, or those looking to use AI for the first time and feel roadblocked by the complexities of different regional requirements.

A sovereign cloud approach based on dedicated private data centers or edge computing can solve this compliance requirement by ensuring training data and models are geographically bound. Let’s look at some specific current regional regulations that affect AI and explore how sovereign cloud approaches can help your business comply, no matter where your training and inference take place.

What’s the Current AI Regulation Landscape?

The first iterations of today’s AI regulatory policies only covered traditional databases that stored data as-is. LLMs weren’t affected by these regulations because they technically don’t store their training data, but rather generate a model that’s essentially a very lossy compression of this data. This meant regulators had to update their policies to close the loophole LLMs created. It’s these regulations that dominate the AI landscape today and affect every business that uses AI.

And that goes for training and inference—if you have even one user in a specific region, you need to be aware of that region’s regulations. Likewise, if you train your ML model in one region but deploy it elsewhere, it’s important to take note of the regulations in both the training and deployment locales.

Let’s take brief a look at how the EU, US, China, and India have addressed the LLM loophole and what legislation your business needs to comply with to run AI in these regions.

European Union

In 2018, the EU introduced the General Data Protection Regulation (GDPR), which requires companies to store data on EU citizens inside the borders of an EU member country. With the AI Act of 2024, the EU established new regulations for AI and updated existing ones, like GDPR, to also cover AI models if their training data came from EU citizens.

United States

The US passed the CLOUD Act in 2018, which allows its federal government to force US companies to reveal all their company data, regardless of their global storage location. In 2023, the president published an executive order mandating AI providers to watermark content created from copyrighted material and creators to mark their content as AI-generated.

China

Like the GDPR, China’s Cybersecurity Law of 2017 requires that the most important data be stored on servers in mainland China. The draft for China’s latest AI law also includes the right to know which AI process generated specific data and the right to refuse AI-based decisions in contexts where humans had previously made these decisions.

India

In 2023, India enacted the Digital Personal Data Protection (DPDP) Act, which regulates the use of Indian citizens’ data similarly to the GDPR. However, it doesn’t matter if data storage occurs within India; it has to be applied regardless of the storage location. While India doesn’t have comprehensive AI legislation yet, the government requires significant IT enterprises to seek approval before deploying LLMs to the Indian market.

How Does a Sovereign Cloud Approach Help Ensure Compliance?

Sovereign cloud approaches include dedicated private clouds and edge computing. Let’s look at how each can help your business stay compliant with AI regulations.

Private Cloud

A private cloud is a computing environment dedicated to a single organization. It offers cloud infrastructure hosted either on-premises or by a third party and offers top levels of control, security, and customization.

The private cloud approach ensures compliance by building a dedicated cloud inside a specific jurisdiction that collects, stores, and processes all data related to the country of its deployment.

Figure 1: Private cloud approach

The downside of this approach is the huge upfront costs, as the dedicated data centers must be built and maintained inside a foreign country.

Edge Computing

Edge computing is a distributed computing model that brings processing power and data storage closer to the devices or locations where it’s needed, reducing latency and improving performance for real-time applications. It’s almost always provided by a specialist third party.

This strategy supports compliance by dynamically routing requests of specific jurisdictions to the nearest edge location. An edge location inside the EU will process a request from the EU, so the collection, storage, and processing happen according to the GDPR. Since edge computing is outsourced, your business doesn’t need to worry about processing happening in the right location. Your provider takes care of that so your regulatory compliance occurs behind the scenes.

Figure 2: Edge computing approach

This approach doesn’t have the huge upfront costs of a dedicated private cloud, but the decentralized nature of the edge can require a significant reengineering of existing software.

As AI regulations continue to evolve globally, we predict that more countries will likely follow the US and EU’s lead to protect their residents and help companies use AI responsibly.

In the EU, we will likely see stricter regulations to ensure foreign companies comply with EU rules. However, there is still no unified approach to AI governance across EU member states, meaning AI-related laws may vary within the region until a comprehensive framework is established and ratified.

Meanwhile, the US is taking a more flexible approach, prioritizing the growth of its AI economy. The government appears focused on preserving access to AI technology and the data it generates.

Another emerging trend is the push for better standardization of AI tools and processes. For example, the new ISO/IEC 42001:2023 standard could serve as a benchmark for future regulations, requiring businesses to adhere to these standards to ensure compliance.

New Solutions for New Regulatory Requirements

Most major markets now regulate how and where AI data is stored and processed. These new circumstances require simple and affordable solutions for businesses. Edge computing seems to be a promising option, offering a new approach to sovereign cloud that allows every organization to store and process data in its country of origin without making infrastructure investments.

Gcore Inference at the Edge simplifies AI regulatory compliance by processing data on a network of 180+ strategically distributed points of presence around the world. No matter where you’re training your model or where your customers are located, we can keep you compliant with ever-changing regional regulations so you can focus on your core business. Get in touch for a complimentary consultation.

Simplify your AI regulatory compliance with Gcore

Table of contents

Try Gcore AI Infrastructure

AI Regulations are Changing; Sovereign Cloud Helps Businesses Comply

Related articles

3 Reasons Organizations are Using Kubernetes for AI
3 Reasons Organizations are Using Kubernetes for AI
AI is becoming increasingly ingrained in every facet of business. But how can organizations unlock its full potential? How can they confidently rely on AI for key business operations? Behind the buzz, a range of strong and silent workhorse technologies, such as Kubernetes, operate in the background to secure AI’s […]
October 1, 2024 3 min read
Cybersecurity Without WAAP: The Devastating Reality of Web Attacks
Cybersecurity Without WAAP: The Devastating Reality of Web Attacks
The consequences of not implementing digital security are clear: data theft, downtime, lost revenue, and reputational damage. But what may be less clear at first glance is that the consequences of inadequate security are just as severe. Although organizations may be reluctant to embrace the latest innovations of an already […]
September 23, 2024 3 min read
How to Make Sure You Choose the Right CDN Provider in a Turbulent Marketplace
How to Make Sure You Choose the Right CDN Provider in a Turbulent Marketplace
$300,000+. That’s what it costs 93% of enterprises if their website goes down for just an hour. It could be worse: 48% of enterprises lose over $1 million per hour, and 23% suffer a staggering $5 million+ per hour in downtime costs. And if you work for one of the world’s top […]
September 20, 2024 3 min read
How WAAP Enhances Risk Management
How WAAP Enhances Risk Management
Cyberattacks happen with alarming frequency, with over 2,200 incidents occurring every day—that’s one every 39 seconds. Hackers are increasingly targeting web applications and APIs, as seen in a recent breach involving Twilio. Hackers exploited a flaw in an unsecured API endpoint to access millions of phone numbers from Twilio’s Authy app, exposing […]
September 19, 2024 4 min read
Training in the Sovereign Cloud, Deploying at the Edge: Part 2
Training in the Sovereign Cloud, Deploying at the Edge: Part 2
In part one of this article, we explained the critical importance of training AI models in the sovereign cloud and the two options available for doing so. In this part, we move on to deploying trained models at the edge. What Are the Benefits of Deploying AI Models at the […]
September 11, 2024 4 min read
Training in the Sovereign Cloud, Deploying at the Edge: Part 1
Training in the Sovereign Cloud, Deploying at the Edge: Part 1
New AI regulations in the US and EU, along with data privacy laws like the EU’s GDPR and rulings like Schrems II, are indirectly affecting where AI models can be trained and where inference can occur. These laws dictate how (and whether) AI data can move between jurisdictions, with data […]
September 11, 2024 4 min read
6 Trends and Predictions for AI in Video Streaming
6 Trends and Predictions for AI in Video Streaming
On Gartner, where business trends take shape, the top search term has long been “Magic Quadrant”—the consulting company’s famous ranking system. But in January 2023, that changed, and since then, the most-searched tech trend has been “ChatGPT”. This shift underscores how crucial AI has become across all industries, including video streaming. […]
September 5, 2024 5 min read
Local Data for Global Operations in the Age of AI
Local Data for Global Operations in the Age of AI
The location where customer data is stored and processed has long been a critical consideration for businesses. Traditionally, data location was about optimizing latency and performance—the nearer the data is to the end user, the faster they get it. However, with the introduction of new AI regulations in the US […]
September 3, 2024 3 min read

Subscribe
to our newsletter

Get the latest industry trends, exclusive insights, and Gcore
updates delivered straight to your inbox.
Subscribe