Israeli Privacy Authority Issues Guidelines to Curb AI Agent Privacy Risks
The Israeli Privacy Protection Authority has released a new document outlining rules and recommendations for responsible use of autonomous artificial intelligence (AI) agents, highlighting significant privacy risks these technologies pose. Unlike typical generative AI models, AI agents operate with high autonomy, accessing and analyzing extensive personal data to perform complex tasks such as managing finances, scheduling, or health monitoring. This autonomy can lead to unintended exposure of sensitive information, as agents may access far more data than necessary or share personal details without explicit user consent.
Dr. Alex Belkhman, CTO of the Privacy Authority, explained that AI agents function like a "digital confidant," integrating with users' emails, calendars, and payment systems to execute tasks independently. However, this independence creates risks since AI agents may lack social intuition or ethical understanding aligned with user intentions, potentially resulting in privacy breaches or misuse of personal data. For example, an AI agent tasked with booking a restaurant might disclose dietary restrictions implying health conditions without the user's intention.
The Authority's report includes scenarios illustrating these risks, such as an email sorting agent accessing 15 years of correspondence instead of just recent messages, or a health assistant inferring sensitive medical information and inadvertently sharing it. To mitigate these dangers, the Authority emphasizes the principle of "minimization," recommending that users grant AI agents only the minimum necessary access and permissions, preferably read-only and for limited durations.
Practical advice includes restricting AI agents to specific folders or time frames, avoiding training on personal data, and implementing human approval steps before executing actions like file deletion or sharing. Users are urged to maintain active control, prevent unauthorized data transfers, and regularly back up important information to recover from potential errors or unwanted autonomous actions. The guidelines focus on personal, non-commercial AI use, aiming to balance technological benefits with safeguarding privacy and user control.