Bytesize Legal Update: Automated decision making back in the spotlight
Skip to main content
Select location
  • Insights
  • Bytesize Legal Update: Automated decision making back in the spotlight
Podcast

Bytesize Legal Update: Automated decision making back in the spotlight

James Russell
01/04/2025
Richard Lawne
 
A digital illustration of a globe made up of interconnected blue and pink lines and dots, against a dark background with scattered light dots. The image conveys a futuristic, technological world linked by data networks.

In the recent case C‑203/22 (Dun & Bradstreet Austria), the Court of Justice of the European Union (CJEU) has clarified the transparency requirements for automated decision-making under the GDPR.

Key Aspects of the Ruling

The Court has established that when companies use automated decision-making systems, they must provide meaningful explanations about how these systems work. This ruling provides some clarity on the scope of transparency requirements for automated decision making.

Under Article 15(1)(h) GDPR, the Court determined that controllers must describe the procedure and principles actually applied in order to use the data subject's personal data to obtain a specific result. 

The Court emphasized that the general complexity of automated systems cannot be used as an excuse to avoid providing proper explanations to individuals.

Importantly, the ruling does not require companies to reveal their actual algorithms or source code. Rather, it focuses on providing understandable explanations of the decision-making logic and its consequences for individuals.

The court rightfully stated, that the transparency obligations aims at enabling the data subject effectively to exercise the rights conferred on them by Article 22(3) GDPR, at least the right to obtain human intervention on the part of the controller, to express his or her point of view and to contest the decision.

Don't miss a thing, subscribe today!

Stay up to date by subscribing to the latest Data and Privacy insights from the experts at Fieldfisher.

Subscribe now


Balancing Trade Secrets and Transparency

The CJEU also clarified that trade secrets (e.g. algorithm logic) cannot automatically override data subject rights. When a controller claims that providing information would compromise trade secrets:
• They must disclose the allegedly protected information to the competent supervisory authority or court
• The authority/authority must then balance these competing interests
• National laws that automatically prioritize trade secrets over data access rights are incompatible with the GDPR

Practical Implications for Businesses using automated decision-making systems, this ruling means:
1. You must be prepared to explain how your automated systems work in understandable terms
2. You need to implement processes that allow for human intervention, enable individuals to express their views, and provide ways to contest decisions
3. You should in any case conduct Data Protection Impact Assessments for high-risk automated processing activities (Art. 35 GDPR)
4. You cannot hide behind complexity or trade secrets to avoid transparency obligations

This ruling reinforces that transparency isn’t just a formal checkbox exercise but a important requirement for automated decision making.

You may also be interested in...
Planet earth viewed from space
Technology and Data
Technology and Data
Insight
Satellite and Space Projects Newsletter November 2025
26/11/2025
A close-up of an LED screen displays a financial graph with a cityscape in the background. The screen shows a series of dots forming line patterns, representing data. The scene is illuminated with blue and pink lights, giving it a futuristic feel.
Corporate
Corporate
Insight
Click at Your Own Risk: Antitrust Pitfalls of Online Sales Bans
24/11/2025
A blurred image of numerous people walking across a large, busy, zebra-striped crosswalk. The motion blur captures the hustle and bustle of the crowd, giving a sense of fast-paced urban life. The scene is vibrant with diverse clothing colors and patterns.
Employment & Immigration
Employment & Immigration
Insight
The UK Government's "Fairer Pathway to Settlement": What does this mean for migrants?
24/11/2025
Abstract digital art featuring swirling, luminous lines in shades of blue, purple, and white against a dark background. The intertwining curves create a sense of dynamic movement and depth, forming a visually captivating and intricate pattern.
Corporate
Corporate
Insight
Corporate Law in Bite Size Chunks: Knowledge qualifiers on M&A transactions to limit liability
24/11/2025
Planet earth viewed from space
Technology and Data
Technology and Data
Insight
Satellite and Space Projects Newsletter November 2025
26/11/2025
A close-up of an LED screen displays a financial graph with a cityscape in the background. The screen shows a series of dots forming line patterns, representing data. The scene is illuminated with blue and pink lights, giving it a futuristic feel.
Corporate
Corporate
Insight
Click at Your Own Risk: Antitrust Pitfalls of Online Sales Bans
24/11/2025
A blurred image of numerous people walking across a large, busy, zebra-striped crosswalk. The motion blur captures the hustle and bustle of the crowd, giving a sense of fast-paced urban life. The scene is vibrant with diverse clothing colors and patterns.
Employment & Immigration
Employment & Immigration
Insight
The UK Government's "Fairer Pathway to Settlement": What does this mean for migrants?
24/11/2025
Abstract digital art featuring swirling, luminous lines in shades of blue, purple, and white against a dark background. The intertwining curves create a sense of dynamic movement and depth, forming a visually captivating and intricate pattern.
Corporate
Corporate
Insight
Corporate Law in Bite Size Chunks: Knowledge qualifiers on M&A transactions to limit liability
24/11/2025