References

“A New Dawn for Public Employment Services. OECD.” 2024. June 12. https://www.oecd.org/en/publications/2024/06/a-new-dawn-for-public-employment-services_25e1e70e.html.

Agencia Española de Protección de Datos. 2021. Risk Management and Impact Assessment in the Processing of Personal Data. Agencia Española de Protección de Datos (AEPD). https://www.aepd.es/guides/risk-management-and-impact-assessment-in-processing-personal-data.pdf.

Ahmad, Tazeem, Mohd Adnan, Saima Rafi, Muhammad Azeem Akbar, and Ayesha Anwar. 2024. “MLOps-Enabled Security Strategies for Next-Generation Operational Technologies.” Proceedings of the 28th International Conference on Evaluation and Assessment in Software Engineering, 662–67.

Aliferis, Constantin, and Gyorgy Simon. 2024. “Artificial Intelligence (AI) and Machine Learning (ML) for Healthcare and Health Sciences: The Need for Best Practices Enabling Trust in AI and ML.” In Artificial Intelligence and Machine Learning in Health Care and Medical Sciences: Best Practices and Pitfalls, edited by Gyorgy J. Simon and Constantin Aliferis. Springer International Publishing. https://doi.org/10.1007/978-3-031-39355-6_1.

Almada, Marco, and Nicolas Petit. 2023. The EU AI Act: A Medley of Product Safety and Fundamental Rights? No. 4308072. Rochester, NY. https://doi.org/10.2139/ssrn.4308072.

Barberá, Isabel. 2023a. AI Possible Risks & Mitigations – Named Entity Recognition. European Data Protection Board. https://www.edpb.europa.eu/system/files/2024-07/ai-risks_d1named-entity-recognition_edpb-spe-programme_en.pdf.

Barberá, Isabel. 2023b. AI Possible Risks & Mitigations – Optical Character Recognition. European Data Protection Board. https://www.edpb.europa.eu/system/files/2024-06/ai-risks_d2optical-character-recognition_edpb-spe-programme_en_2.pdf.

Breaux, Travis. 2020. An Introduction to Privacy for Technology Professionals. International Association of Privacy Professionals.

Carlini, Nicholas, Florian Tramer, Eric Wallace, et al. 2021. “Extracting Training Data from Large Language Models.” 30th USENIX Security Symposium (USENIX Security 21), 2633–50.

Chang, J Morris, Di Zhuang, G Samaraweera, and G Dumindu Samaraweera. 2023. Privacy-Preserving Machine Learning. Simon; Schuster.

Commission, European. 2024. Regulatory Framework on Artificial Intelligence. https://digital-strategy.ec.europa.eu/en/policies/regulatory-framework-ai.

Desai, Anokhy. 2023. 5 Things to Know about AI Model Cards. https://iapp.org/news/a/5-things-to-know-about-ai-model-cards.

Engelfriet, Arnoud. 2024. The Annotated AI Act. ICTRecht B.V. https://ictrecht.nl.

European Data Protection Board (EDPB). 2024. Opinion 28/2024 on Certain Data Protection Aspects Related to the Processing of Personal Data in the Context of AI Models. https://www.edpb.europa.eu/system/files/2024-12/edpb_opinion_202428_ai-models_en.pdf.

European Data Protection Supervisor. 2024. TechSonar Report 2025. European Data Protection Supervisor. https://www.edps.europa.eu/system/files/2024-11/24-11-15_techsonar_2025_en.pdf.

Floridi, Luciano. 2023. The Ethics of Artificial Intelligence: Principles, Challenges, and Opportunities.

Fujdiak, Radek, Petr Mlynek, Pavel Mrnustik, et al. 2019. “Managing the Secure Software Development.” 2019 10th IFIP International Conference on New Technologies, Mobility and Security (NTMS), 1–4.

Gal, Michal S, and Orla Lynskey. 2023. “Synthetic Data: Legal Implications of the Data-Generation Revolution.” Iowa L. Rev. 109: 1087.

Garrido, Gonzalo Munilla, Johannes Sedlmeir, Ömer Uludağ, Ilias Soto Alaoui, Andre Luckow, and Florian Matthes. 2022. “Revealing the Landscape of Privacy-Enhancing Technologies in the Context of Data Markets for the IoT: A Systematic Literature Review.” Journal of Network and Computer Applications 207: 103465.

Gichoya, Judy Wawira, Kaesha Thomas, Leo Anthony Celi, et al. 2023. “AI Pitfalls and What Not to Do: Mitigating Bias in AI.” The British Journal of Radiology 96 (1150): 20230023.

Goldblum, Micah, Dimitris Tsipras, Chulin Xie, et al. 2022. “Dataset Security for Machine Learning: Data Poisoning, Backdoor Attacks, and Defenses.” IEEE Transactions on Pattern Analysis and Machine Intelligence 45 (2): 1563–80.

Hermanns, Holger, Anne Lauber-Rönsberg, Philip Meinel, Sarah Sterz, and Hanwei Zhang. 2024. “AI Act for the Working Programmer.” arXiv Preprint arXiv:2408.01449.

Hinder, Fabian, Valerie Vaquet, and Barbara Hammer. 2024. “One or Two Things We Know about Concept Drift—a Survey on Monitoring in Evolving Environments. Part a: Detecting Concept Drift.” Frontiers in Artificial Intelligence 7: 1330257.

Hou, Xinyi, Yanjie Zhao, Shenao Wang, and Haoyu Wang. 2025. “Model Context Protocol (MCP): Landscape, Security Threats, and Future Research Directions.” arXiv Preprint arXiv:2503.23278.

Huyen, Chip. 2022. Designing Machine Learning Systems. " O’Reilly Media, Inc.".

International Organization for Standardization. 2022a. Framework for Artificial Intelligence (AI) Systems Using Machine Learning (ML) (ISO Standard No. 23053:2022). International Organization for Standardization. https://www.iso.org/standard/74438.html.

International Organization for Standardization. 2022b. Information Technology — Artificial Intelligence — Artificial Intelligence Concepts and Terminology (ISO/IEC Standard No. 22989:2022). International Organization for Standardization. https://www.iso.org/standard/74296.html.

International Organization for Standardization. 2023. Information Technology — Security Techniques — Guidelines for Privacy Impact Assessment (ISO/IEC Standard No. 29134:2023). International Organization for Standardization. https://www.iso.org/standard/86012.html.

Jarmul, Katharine. 2023. Practical Data Privacy. " O’Reilly Media, Inc.".

Ji, Jiaming, Tianyi Qiu, Boyuan Chen, et al. 2023. “Ai Alignment: A Comprehensive Survey.” arXiv Preprint arXiv:2310.19852.

Kaplan, Guy, Uri Katz, and Avi Lumelsky. 2024. ShellTorch Explained: Multiple Vulnerabilities in PyTorch Model Server (TorchServe) (CVSS 9.9, CVSS 9.8) Walkthrough. https://www.oligo.security/blog/shelltorch-explained-multiple-vulnerabilities-in-pytorch-model-server.

Kore, Ali, Elyar Abbasi Bavil, Vallijah Subasri, et al. 2024. “Empirical Data Drift Detection Experiments on Real-World Medical Imaging Data.” Nature Communications 15 (1): 1887.

Kreuzberger, Dominik, Niklas Kühl, and Sebastian Hirschl. 2023. “Machine Learning Operations (MLOps): Overview, Definition, and Architecture.” IEEE Access 11: 31866–79. https://doi.org/10.1109/ACCESS.2023.3262138.

Lee, Hao-Ping (Hank), Yu-Ju Yang, Thomas Serban Von Davier, Jodi Forlizzi, and Sauvik Das. 2024. “Deepfakes, Phrenology, Surveillance, and More! A Taxonomy of AI Privacy Risks.” Proceedings of the 2024 CHI Conference on Human Factors in Computing Systems (New York, NY, USA), CHI ’24. https://doi.org/10.1145/3613904.3642116.

Leslie, David, Carina Rincón, Michael Briggs, et al. 2024. AI Explainability in Practice. The Alan Turing Institute.

MacCoun, Robert, and Saul Perlmutter. 2015. “Blind Analysis: Hide Results to Seek the Truth.” Nature 526 (7572): 187–89.

Mitchell, Margaret, Simone Wu, Andrew Zaldivar, et al. 2019. “Model Cards for Model Reporting.” Proceedings of the Conference on Fairness, Accountability, and Transparency, 220–29.

Morris, Kief. 2025. Infrastructure as Code. " O’Reilly Media, Inc.".

Near, Joseph P., and Chiké Abuah. 2021. Programming Differential Privacy. Vol. 1. https://programming-dp.com/.

OECD. 2024. Explanatory Memorandum on the Updated OECD Definition of an AI System. No. 8. OECD Publishing. https://doi.org/10.1787/623da898-en.

OWASP. 2024. “AI Exchange.” https://owaspai.org/.

OWASP AI Exchange Community. 2025. OWASP AI Exchange. https://owaspai.org.

Ramasesh, Vinay Venkatesh, Aitor Lewkowycz, and Ethan Dyer. 2022. “Effect of Scale on Catastrophic Forgetting in Neural Networks.” International Conference on Learning Representations.

Raschka, Sebastian. 2024. Machine Learning q and AI: 30 Essential Questions and Answers on Machine Learning and AI. No Starch Press.

Rocher, Luc, Julien M Hendrickx, and Yves-Alexandre De Montjoye. 2019. “Estimating the Success of Re-Identifications in Incomplete Datasets Using Generative Models.” Nature Communications 10 (1): 3069.

Schwartz, Roy, Jesse Dodge, Noah A Smith, and Oren Etzioni. 2020. “Green Ai.” Communications of the ACM 63 (12): 54–63.

Shumailov, Ilia, Zakhar Shumaylov, Yiren Zhao, Nicolas Papernot, Ross Anderson, and Yarin Gal. 2024. “AI Models Collapse When Trained on Recursively Generated Data.” Nature 631 (8022): 755–59.

Slattery, Peter, Alexander K Saeri, Emily AC Grundy, et al. 2024. “The AI Risk Repository: A Comprehensive Meta-Review, Database, and Taxonomy of Risks from Artificial Intelligence.” arXiv Preprint arXiv:2408.12622.

Solove, Daniel J. 2005. “A Taxonomy of Privacy.” U. Pa. L. Rev. 154: 477.

Solove, Daniel J., and Woodrow Hartzog. 2025. “The Great Scrape: The Clash Between Scraping and Privacy.” California Law Review, ahead of print. https://doi.org/10.2139/ssrn.4884485.

Stark, Luke, and Jevan Hutson. 2021. “Physiognomic Artificial Intelligence.” Fordham Intell. Prop. Media & Ent. LJ 32: 922.

Tanaka, Fabio Henrique Kiyoiti Dos Santos, and Claus Aranha. 2019. “Data Augmentation Using GANs.” arXiv Preprint arXiv:1904.09135.

The Hamburg Commissioner for Data Protection and Freedom of Information. 2024. Discussion Paper: Large Language Models and Personal Data. https://datenschutzhamburg.de/fileadmin/user_upload/HmbBfDI/Datenschutz/Informationen/240715_Discussion_Paper_Hamburg_DPA_KI_Models.pdf.

Tsamados, Andreas, Nikita Aggarwal, Josh Cowls, et al. 2021. “The Ethics of Algorithms: Key Problems and Solutions.” In Ethics, Governance, and Policies in Artificial Intelligence, edited by Luciano Floridi. Springer International Publishing. https://doi.org/10.1007/978-3-030-81907-1_8.

Vallet, Félicien. 2022. Petite Taxonomie Des Attaques Des Systèmes d’IA, Translated as "Small Taxonomy of Attacks on AI Systems". https://linc.cnil.fr/sites/linc/files/atoms/files/linc_cnil_dossier-securite-systemes-ia.pdf.

VanHoudnos, Nathan, Carol Smith, Matthew Churilla, Shing-Hon Lau, Lauren McIlvenny, and Greg Touhill. 2024. Counter AI: What Is It and What Can You Do about It?

Véliz, Carissa. 2020. Data Privacy and the Individual. https://philpapers.org/archive/VLIPM.pdf.

Wang, Zhibo, Jingjing Ma, Xue Wang, Jiahui Hu, Zhan Qin, and Kui Ren. 2022. “Threats to Training: A Survey of Poisoning Attacks and Defenses on Machine Learning Systems.” ACM Computing Surveys 55 (7): 1–36.

Wehrli, Samuel, Corinna Hertweck, Mohammadreza Amirian, Stefan Glüge, and Thilo Stadelmann. 2022. “Bias, Awareness, and Ignorance in Deep-Learning-Based Face Recognition.” AI and Ethics 2 (3): 509–22.

Wu, Tong, Ashwinee Panda, Jiachen T Wang, and Prateek Mittal. 2023. “Privacy-Preserving in-Context Learning for Large Language Models.” arXiv Preprint arXiv:2305.01639.

Zaman, ANK, Charlie Obimbo, and Rozita A Dara. 2017. “An Improved Differential Privacy Algorithm to Protect Re-Identification of Data.” 2017 IEEE Canada International Humanitarian Technology Conference (IHTC), 133–38.

Zeng, Shenglai, Jiankun Zhang, Pengfei He, et al. 2024. “The Good and the Bad: Exploring Privacy Issues in Retrieval-Augmented Generation (Rag).” arXiv Preprint arXiv:2402.16893.

Zhang, Haibo, Toru Nakamura, Takamasa Isohara, and Kouichi Sakurai. 2023. “A Review on Machine Unlearning.” SN Computer Science 4 (4): 337.

Zhang, Xinrui, and Jason Jaskolka. 2022. “Conceptualizing the Secure Machine Learning Operations (SecMLOps) Paradigm.” 2022 IEEE 22nd International Conference on Software Quality, Reliability and Security (QRS), 127–38. https://doi.org/10.1109/QRS57517.2022.00023.