UK and Europe take steps to clamp down on non-consensual deepfake images

22/01/2026 | IAPP

While the newscycle has moved on to other events, the UK has enacted Section 138 under the Data (Use and Access) Act 2025 (DUA Act), making it an offence to create or request the creation of non-consensual sexual images.

In enacting the provision, the UK government has fulfilled a commitment made by Liz Kendall, the Secretary of State for Science, Innovation, and Technology, last week in response to the ongoing outrage over AI-generated sexualised deepfakes on X. Kendal said the UK would be "bringing in to force powers to criminalise the creation of intimate images without consent."

The change comes into force on 6 February 2026.

In Europe, the European Commission is also exploring a ban on AI-powered apps and tools that allow users to generate fake intimate images of individuals without consent. In comments given to Politico, Irish MEP Michael McNamara noted that AI-nudification apps are not currently included in the list of banned practices under the Artificial Intelligence Act (AI Act). While the problem wasn't previously envisaged, this should change as: "It’s clearly a harm that was envisaged to be banned under the prohibited practices," he said.

Meanwhile, the European Parliament Committee on the Internal Market and Consumer Protection (IMCO) has invited TikTok and X to a meeting on 27 January 2026, to discuss the risks posed to children by sexualised AI-generated content.

The news comes as research reveals Grok generated approximately 3 million sexualised images in less than two weeks, including 23,000 images that appear to depict children.

Training Announcement: The BCS Foundation Certificate in AI examines the challenges and risks associated with AI projects, such as those related to privacy, transparency and potential biases in algorithms that could lead to unintended consequences. Explore the role of data, effective risk management strategies, compliance requirements, and ongoing governance of the AI lifecycle and become a certified AI Governance professional. Find out more.

Read Full Story

Digital Platforms & Services Government Browsers, Websites & Apps UK Europe AI Technology, Big Data & AI Governance Privacy & Data Law Children's Privacy & Safety Online Safety Data law violation or breach

Back to news

What is this page?

You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.

The Privacy Newsfeed monitors over 300 global publications, of which more than 6,250 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.