FirmAdapt is an AI-powered business diagnostics platform that audits companies to expose operational inefficiencies and broken processes. We then deploy custom AI agents, robotic process automation, and engineered solutions to fix the problems we find. Our diagnostic tools include company audits, website audits, competitive intelligence, and faith-based compliance screening.

Does FirmAdapt have a free API?

Yes, FirmAdapt offers free open API endpoints that require no authentication. AI agents and developers can make up to 10 requests per week without signing up. The API supports company profile lookups, faith-based compliance screening, and stock searches across 12 global markets.

What is faith-based stock screening?

Faith-based stock screening analyzes a company's financial ratios and business activities to determine compliance with religious investment guidelines. FirmAdapt supports 9 frameworks including Shariah (AAOIFI, S&P), Christian (BRI), Catholic (USCCB), Jewish (Halakhic), LDS/Mormon, ESG Religious, and Evangelical standards.

Can AI agents use FirmAdapt?

Yes, FirmAdapt is designed for native AI agent integration. It provides an MCP (Model Context Protocol) server for Claude Desktop, Cursor, and other AI tools. AI agents can access company profiles, run faith-based compliance screens, and search stocks across 12 global markets using free open endpoints with no API key required.

What markets does FirmAdapt support?

FirmAdapt supports 12 global markets: US (NYSE/NASDAQ), UK (London Stock Exchange), Germany (XETRA), France (Euronext Paris), Japan (Tokyo Stock Exchange), India (NSE/BSE), Saudi Arabia (Tadawul), UAE (Dubai/Abu Dhabi), Malaysia (Bursa), Indonesia (IDX), Canada (TSX), and Australia (ASX).

Back to Blog

AI complianceregulatoryprivacydata protectionGDPR

GDPR Right to Be Forgotten and Generative AI: The Article 17 Problem

By Basel IsmailMay 15, 2026

GDPR Right to Be Forgotten and Generative AI: The Article 17 Problem

Article 17 of the GDPR is conceptually straightforward. A data subject requests erasure, and the controller deletes their personal data. The regulation even lists the grounds: the data is no longer necessary for its original purpose, consent is withdrawn, the subject objects under Article 21, the data was unlawfully processed, and so on. Controllers have had since May 2018 to build workflows around this. Most have.

But Article 17 was drafted with databases in mind. Rows in a table. Documents in a file system. Structured and semi-structured data where "deletion" has an intuitive meaning. Generative AI, and specifically the large language models that power it, breaks that intuition completely.

Why Deletion from a Trained Model Is Not Really Deletion

When personal data is used to train a neural network, it gets absorbed into the model's parameters through gradient descent. A model like GPT-4 has hundreds of billions of parameters. The relationship between any individual training data point and the resulting weights is diffuse, nonlinear, and, for practical purposes, irreversible. You cannot go into a trained model and surgically remove the influence of one person's data the way you would delete a row from PostgreSQL.

This creates a genuine compliance problem. If someone submits a valid Article 17 request and their personal data was part of the training corpus, what does "erasure" actually require? The GDPR does not define erasure with technical specificity. The Article 29 Working Party's guidelines on the right to erasure (WP242, adopted in 2014 and later endorsed by the EDPB) focus on making data "no longer available," but they were written before transformer architectures existed.

The Memorization Problem

Research has shown that large language models can and do memorize training data. A 2023 paper from Google DeepMind, "Scalable Extraction of Training Data from (Production) Language Models," demonstrated that GPT-3.5 Turbo could be prompted to regurgitate verbatim training data, including personally identifiable information. The researchers extracted names, phone numbers, email addresses, and physical addresses. This was not a theoretical exercise. It was a practical demonstration that personal data persists inside these models in recoverable form.

If a model can reproduce someone's personal data on demand, the argument that the data has been "erased" through the training process becomes very difficult to sustain before a supervisory authority.

What Regulators Are Saying (and Not Saying)

The Italian Garante's temporary ban on ChatGPT in March 2023 was partly motivated by Article 17 concerns. The Garante explicitly noted the absence of any mechanism for data subjects to exercise erasure rights against the trained model itself. OpenAI was given a set of requirements to resume operations, including implementing age verification and transparency measures, but the deeper question of model-level erasure was left somewhat open.

The EDPB's April 2024 report on ChatGPT, produced by its ChatGPT Taskforce, acknowledged the technical difficulty but did not offer a clean resolution. The Taskforce noted that if a model's output does not reproduce personal data, the compliance posture is different than if it does. This output-focused framing is pragmatic, but it sidesteps the question of whether the data embedded in model weights constitutes "storage" under Article 4(2).

The Hamburg DPA (HmbBfDI) has taken a somewhat more permissive view, suggesting in a 2023 discussion paper that anonymization through the training process could, in some cases, mean that Article 17 obligations are satisfied if the model cannot produce the personal data. But this is a minority position, and it depends heavily on empirical testing of the specific model.

The Retraining Problem

The most technically honest response to an Article 17 request against training data would be to retrain the model from scratch, excluding the data subject's information. For a model that cost tens of millions of dollars to train (Meta reportedly spent over $20 million training LLaMA 2, and frontier models cost significantly more), this is economically absurd for a single erasure request. It also takes weeks or months of compute time.

"Machine unlearning" is an active area of research. Techniques like SISA (Sharded, Isolated, Sliced, and Aggregated training), proposed by Bourtoule et al. in 2021, attempt to partition training data so that only a subset of the model needs retraining when data is removed. But these methods are not yet production-ready for models at the scale of GPT-4 or Claude. They introduce accuracy tradeoffs, and no supervisory authority has formally recognized machine unlearning as sufficient for Article 17 compliance.

Practical Compliance Strategies Right Now

Given the regulatory ambiguity, organizations deploying generative AI in regulated environments should focus on what is actually controllable.

Do not train on personal data without a robust legal basis. Legitimate interest under Article 6(1)(f) is the most commonly cited basis for training data, but the balancing test is genuinely difficult when the data subject has no reasonable expectation that their data will be used this way. Consent under Article 6(1)(a) is cleaner but operationally harder to obtain at scale.
Maintain detailed records of training data provenance. If you cannot identify whose data is in the training set, you cannot respond to erasure requests at all. Article 30 record-keeping obligations apply here, and supervisory authorities will expect documentation.
Implement output-level controls. Even if you cannot remove data from model weights, you can filter outputs to prevent the model from reproducing specific personal data. This is not a complete answer to Article 17, but it addresses the most visible risk and aligns with the EDPB Taskforce's output-focused analysis.
Use retrieval-augmented generation (RAG) instead of fine-tuning where possible. When personal data lives in a retrievable database rather than in model weights, erasure is straightforward. Delete the document from the retrieval index, and the model can no longer access it. This is architecturally the cleanest solution available today.
Separate prompt and context data from training data. Data submitted by users during inference (prompts, uploaded documents) should be handled under clear data processing agreements and should not be fed back into training without explicit consent. OpenAI learned this lesson publicly; you do not need to repeat it.

The Bigger Question

Article 17(3) provides exceptions to the right of erasure, including for reasons of public interest, scientific research, and the exercise of legal claims. Some commentators have argued that training AI models could fall under the scientific research exception in Article 17(3)(d), read together with Article 89. This is a stretch for commercial AI products, but it is not entirely foreclosed for genuine research applications. Expect litigation on this point within the next few years.

The EU AI Act, which entered into force in August 2024, does not directly address the Article 17 problem for training data, though its transparency requirements for general-purpose AI models (Article 53) include obligations to provide summaries of training data. This could indirectly support erasure compliance by forcing better documentation of what went into the model.

For now, the honest assessment is that full Article 17 compliance for data embedded in model weights is technically infeasible at scale. Regulators know this. The question is how long the gap between legal obligation and technical capability persists before either the technology catches up or the regulatory interpretation adapts.

How FirmAdapt Addresses This

FirmAdapt's architecture is built around the principle that personal data should not enter model weights in the first place. The platform uses retrieval-augmented generation and structured data pipelines that keep sensitive information in controllable, deletable storage layers rather than embedding it in model parameters. When an Article 17 request comes in, the relevant data can be identified and removed from the retrieval index without touching the underlying model.

FirmAdapt also maintains audit trails for data provenance across the pipeline, supporting Article 30 compliance and giving legal teams the documentation they need to demonstrate responsive erasure workflows to supervisory authorities. The goal is to make the Article 17 problem a non-issue by avoiding the architectural choices that create it.

Ready to uncover operational inefficiencies and learn how to fix them with AI?

Try FirmAdapt free with 10 analysis credits. No credit card required.

Get Started Free