"How AI Requires Rebuilding Data Protection Law" with Professor Ignacio Cofone
- Date: Friday 13 February 2026, 14:00 – 15:00
- Location: Liberty Building (Moot Court) LT (1.28)
- Cost: Free
Join us for the Centre for Business Law and Practice Annual Lecture, delivered by Professor Ignacio Cofone: “How AI Requires Rebuilding Data Protection Law.”
Synopsis
AI has broken the central premises of data protection law. Today’s systems create value from inferences rather than disclosed data, operate on relational patterns rather than individual records, and concentrate power in institutions that decide how people are classified and acted upon. Frameworks built on consent and individual control regulate what people give, not what is inferred; they treat data as individually controlled, not jointly produced, and they assume individuals can anticipate consequences that are opaque and context dependent. Data protection should instead constrain the power to create and operationalise harmful inferences. This premise provides two paths. The first reframes accountability around exploitation and non-material harms, shifting attention from formal compliance to what data practices do to people and social relations. The second introduces a new way to think about personal data: plausible information as any claim about a person or group that is credible enough to be acted upon. The result of both paths is a model of regulation aimed at preventing exploitation in the information economy without relying on the fiction of individual control or the trope of regulation versus innovation.
About the Speaker
Ignacio Cofone is Professor of Law and Regulation of AI at Oxford's Faculty of Law and Institute for Ethics in AI. He is also an affiliated fellow of the Yale Information Society Project. Ignacio’s research examines how law and regulation should respond to social and economic changes driven by AI; in particular harms produced by machine inferences. His recent book, The Privacy Fallacy: Harm and Power in the Information Economy (CUP 2023), argues that AI requires restructuring privacy and data protection law based on duties of non-exploitation because basing these bodies of law on individual control has become ineffective. His current research examines how to remedy nonmaterial and relational AI harms and uses comparative analysis to design regulatory frameworks that promote accountable AI.
This is a free event. Please register to attend via Tickettailor.