ML solutions that cut costs and speed up operations

The fourth webinar in the “AI for Business” series.

A practical webinar dedicated to the use of AI, ML models and open-source solutions in product development and product management, taking into account the requirements of the EU AI Act, model and dataset licensing, as well as the basic requirements of the GDPR when working with data and an ML pipeline.

Online | YouTube Broadcast

15:00–16:00
Learn more

Information about the Webinar Series

The webinar is held in Russian and is aimed at an international audience: developers, ML engineers, product managers, technical leads, architects, lawyers and compliance specialists, as well as anyone who already uses or plans to implement AI tools, open-source models and datasets in the development of digital products.

What topics will be covered during the webinar?

Introduction: why ML and OSS are a heightened risk area

15:00 (GMT+3)

ML in the view of regulators (opacity, scale, risk of discrimination). Open-source: responsibility for use lies with the deployer. Examples of cases/fines in an ML context (very brief).

Poll: “Do you use open-source models or datasets in production?

ML under the AI Act: classification and roles

15:04 (GMT+3)

An ML system may be considered high-risk: credit scoring, HR screening, biometrics, critical services, etc. AI provider and deployer.

From the AI Act perspective, what matters in the ML pipeline: training, fine-tuning, inference, monitoring.

Open-source models and data: licences and restrictions

15:10 (GMT+3)

Open-source and who owns the rights to the final result; special AI licences (such as OpenRAIL); custom dataset licences (research-only, prohibition of commercial use, geo-restrictions, etc.).

Distinction: the model licence ≠ the dataset licence. Risks: using data/model outside the licence terms, lack of attribution, use of a “dirty” dataset.

How to work with licences in practice

15:18(GMT+3)

Team tasks: maintain a register of the models/libraries/datasets used; record licences and restrictions; agree problematic licences (GPL, domain restrictions) with lawyers before implementation. The PM’s role: licensing and source checks in the Definition of Done for ML features.

Mini example: what a table may look like — “Model/dataset → licence → permitted use cases → owner”.

GDPR for ML: data, categories and DPIA

15:24 (GMT+3)

What data you use for training and inference: personal, pseudonymised, aggregated, special category (health, biometrics, etc.), restrictions, anonymisation requirements. DPIA as a tool to describe the ML pipeline and assess risks to data subjects’ rights.

ML and OSS documentation as protection: what you need to have

15:30 (GMT+3)

Minimum set: purposes, data, restrictions, prohibited-use areas; a dataset card (origin/provenance, composition, licence, potential bias); a data flow description; a human-in-the-loop description (when mandatory manual review is required).

Q&A and “tomorrow’s steps”

15:36 (GMT+3)

Answers to questions: “Can we fine-tune a model on users’ data without separate consent?”, “What should we do if the dataset licence is unclear?”. Practical steps: 1) compile a list of all ML models and datasets in the company; 2) create a simple licence register; 3) pick one production model and prepare a model card and a data flow indicating where open-source is used

Liudmila Yepikhava

Liudmila Yepikhava

Liudmila Yepikhava

Lawyer, IT & IP Practice, REVERA law group

Liudmila provides comprehensive legal support to international and Belarusian IT companies on compliance, personal data protection, and the legal regulation of AI.

She supports the processes of collecting, storing and transferring personal data in accordance with the GDPR and Belarusian legislation, advises on the lawfulness of processing grounds, and on interaction with data subjects.

Her experience includes developing internal data protection policies and procedures, supporting contracts with processors, conducting compliance and security audits, and providing legal support for projects involving new technologies, including AI risk assessment and automated processing.

In addition, Liudmila advises IT companies on intellectual property matters and operations within special legal regimes.

As part of the webinar, we will cover ML and OSS risks, the roles of provider and deployer under the AI Act, licensing of models and data, GDPR and DPIA for ML systems, as well as practical approaches to documentation and risk management when implementing AI.

Registration

Event completed 23.04.2026