From Awareness to Literacy: Knowledge Orientation in the Regulatory Environment of the GDPR and the AI Act

Tamás Török

doi:10.47272/KIKPhD.2025.3.1

Authors

Tamás Török University of Pécs, Doctoral School of Law https://orcid.org/0009-0006-1065-1730

DOI:

https://doi.org/10.47272/KIKPhD.2025.3.1

Keywords:

GDPR awareness, AI literacy, AI Act, GDPR, Digital literacy, Data subject

Abstract

The comparative analysis of the General Data Protection Regulation and the Artificial Intelligence Act has become one of the most prominent topics in contemporary legal scholarship. This is due to several reasons, one of the most important being that the impact of both instruments extends far beyond the European Union, allowing them to function as de facto global standards. At the same time, both legislative texts are products of the digital age, and consequently their interpretation and the demonstration of compliant behaviour require specific competencies and prior knowledge.

This study analyses the concept of "AI literacy" as defined in the Artificial Intelligence Act, drawing on the notion of "data protection awareness" under the General Data Protection Regulation and on empirical findings from available research data, with a view to mapping potential risks and challenges. Digital literacy, awareness, and literacy more broadly are concepts without which compliant behaviour in the field of technology regulation cannot realistically be expected. Accordingly, experience gained under the GDPR provides important lessons for the development of AI literacy as well.

Downloads

Download data is not yet available.

Author Biography

Tamás Török, University of Pécs, Doctoral School of Law

Phd Student, University of Pécs, Doctoral School of Law

Corresponding address: tamas.drtorok@gmail.com

Statements

Disclosure statement

No potential conflict of interest was reported by the author.

Funding

The author(s) received no financial support for the research, authorship, or publication of this article.

Data deposition and availability

There is no data set associated with the study. No data deposition was required for this study.

Use of Artificial Intelligence

The author acknowledges the use of Perplexity AI for translation assistance. The author has reviewed and edited the AI‑generated translation to ensure accuracy, clarity and appropriate legal terminology, and assumes full responsibility for the final content of this article.

Author contributions (CRediT)

Tamás Török: Conceptualization; Methodology; Investigation; Formal analysis; Resources; Data curation; Writing – Original Draft; Writing – Review & Editing.

References

David Bawden, ‘The distractions of documentation’ (2008) Journal of Documentation https://doi.org/10.1108/jd.2008.27864faa.001

Senad Bećirović, Edda Polz1 and Isabella Tinkel, ‘Exploring students’ AI literacy and its effects on their AI output quality, self-efficacy, and academic performance ' (2025) 12(29) Smart Learning Environments https://doi.org/10.1186/s40561-025-00384-3

Peter Blume, ‘The Data Subject’ (2015) 1(4) European Data Protection Law Review https://doi.org/10.21552/EDPL/2015/4/4

Soenke Ehret, ‘Public preferences for governing AI technology: comparative evidence’ (2022) Journal of European Public Policy https://doi.org/10.1080/13501763.2022.2094988

Luciano Floridi, 'The Ontological Interpretation of Informational Privacy' (2005) 7(4) Ethics and Information Technology 129. https://doi.org/10.1007/s10676-006-0001-7

Francesca Foffano, Teresa Scantamburlo and Atia Cortés, ‘Investing in AI for social good: an analysis of European national strategies' (2022) 38. AI and Society https://doi.org/10.1007/s00146-022-01445-8

High-Level Expert Group on AI, Ethics Guidelines for Trustworthy AI (European Commission 2019).

Balázs Hohmann, ’The Interplay Between User Awareness And Transparency Requirements In The Context Of European Platform Regulation’ (2025) Journal Of Humanities and Social Science (IOSR-JHSS) 30 (8) https://doi.org/10.9790/0837-3008052433

Yueqiao Jin, Roberto Martinez-Maldonado, Dragan Gašević, Lixiang Yan, ‘GLAT: The generative AI literacy assessment test' (2025) Computers and Education: Artificial Intelligence https://doi.org/10.1016/j.caeai.2025.100436

Martin Kandlhofer, Gerald Steinbauer, Sabine Hirschmugl-Gaisch and Petra Huber, ‘Artificial intelligence and computer science in education: From kindergarten to university' (2016) in IEEE Frontiers in Education Conference (FIE) https://doi.org/10.1109/FIE.2016.7757570

Nikitas Kastis and Roberto Carneiro,’ Digital Literacy—The Evolution of the 21st Century Literacies' (2009) https://www.openeducationeuropa.eu/en/paper/digital-literacy-%E2%80%93-evolution-21st-century-literacies

Colin Lankshear and Michele Knobel, ‘Digital Literacies: Concepts, Policies and Practices’ (2008) Peter Lang Publishing

Matthias Carl Laupichler, Alexandra Aster, Nicolas Haverkamp and Tobias Raupach, Development of the “Scale for the assessment of non-experts’ AI literacy” – An exploratory factor analysis' (2023) Computers in Human Behavior Reports https://doi.org/10.1016/j.chbr.2023.100338

Florencia Luna, 'Elucidating the Concept of Vulnerability: Layers not Labels' (2009) 2(1) International Journal of Feminist Approaches to Bioethics https://doi.org/10.3138/ijfab.2.1.121

Florencia Luna, ‘Identifying and evaluating layers of vulnerability – a way forward' (2019) 19(2) Developing World Bioethics https://doi.org/10.1111/dewb.12206

Gianclaudio Malgieri and Jedrzej Niklas, ‘Vulnerable data subjects' (2020) 37(1) Computer Law & Security Review 105482. https://doi.org/10.1016/j.clsr.2020.105415

Davy Tsz Kit Ng, Jac Ka Lok Leung, Samuel Kai Wah Chu and Maggie Shen Qiao, Conceptualizing AI literacy: An exploratory review' (2021) Computers and Education: Artificial Intelligence https://doi.org/10.1016/j.caeai.2021.100041

Luci Pangrazio and Julian Sefton-Green, ‘Digital Rights, Digital Citizenship and Digital Literacy: What’s the Difference?'(2021) 10, Journal of New Approaches in Educational Research https://doi.org/10.7821/naer.2021.1.616

Paul A Pavlou, 'Consumer Acceptance of Electronic Commerce: Integrating Trust and Risk with the Technology Acceptance Model' (2003) 7(3) International Journal of Electronic Commerce 101. https://doi.org/10.1080/10864415.2003.11044275

Maciej Pichlak and Klaudia Gaczoł, ‘Simple and advanced reflexivity in GDPR enforcement: empirical evidence from DPA activity’ (2023) International Data Privacy Law 13(4) https://doi.org/10.1093/idpl/ipad018

Pritika Reddy, Bibhya Sharma and Kaylash Chaudhary, ‘Digital Literacy: A Review of Literature' (2020) 11(2) International Journal of Technoethics (IJT) https://doi.org/10.4018/IJT.20200701.oa1

Razvan Rughiniș and others, ‘From social netizens to data citizens: Variations of GDPR awareness in 28 European countries’ (2021) Computer Law and Security Review. 42, 1-15. https://doi.org/10.1016/j.clsr.2021.105585

Mustafa Suleyman and Michael Bhaskar, A következő hullám: Mesterséges intelligencia, technológia, hatalom és a 21. század legnagyobb kihívása (Magnólia 2023).

Wendell Wallach and Gary Marchant, ‘Toward the Agile and Comprehensive International Governance of AI and Robotics' Proceedings of the IEEE, 107(3), 505–508 https://doi.org/10.1109/JPROC.2019.2899422

Bartosz Wilczek, Sina Thäsler-Kordonouri and Maximilian Eder, Government regulation or industry self-regulation of AI? Investigating the relationships between uncertainty avoidance, people’s AI risk perceptions, and their regulatory preferences in Europe' (2025) 40(5) AI & Society https://doi.org/10.1007/s00146-024-02138-0

From Awareness to Literacy

Knowledge Orientation in the Regulatory Environment of the GDPR and the AI Act

Authors

DOI:

Keywords:

Abstract

Downloads

Author Biography

Tamás Török, University of Pécs, Doctoral School of Law

References

Downloads

Published

How to Cite

Issue

Section

License

Similar Articles

Language

Current Issue

Information

Indexed by