GDPR Conflicts with AI/LLM projects and how Claris FileMaker can help

Ben Fletcher • 7 October 2025

The UK’s data protection laws remain broadly aligned with EU GDPR standards following Brexit but have begun to diverge incrementally in 2025 due to recent legislative changes, notably the Data (Use and Access) Act 2025 (DUAA). Artificial Intelligence (AI) and Large Language Models (LLMs) like ChatGPT, Gemini, and Anthropic Claude are rapidly becoming everyday business tools. From drafting emails to analysing customer data, many UK SMEs are exploring AI to improve productivity and insight.

But there’s a problem: AI and GDPR don’t always play nicely together.

Even well-meaning businesses can easily cross compliance lines without realising it — especially when sensitive data finds its way into third-party AI tools.

At DataTherapy, we’ve seen this tension first-hand. As a Claris Platinum Partner with extensive experience in secure FileMaker development and hosting, we help organisations harness AI securely - keeping innovation aligned with GDPR principles.

Here are 10 often-overlooked areas where AI and GDPR can conflict, and how Claris FileMaker can help you stay compliant:

1. Lawful Basis of Processing & Transparency

The Challenge:

Staff may paste personal or client data into AI tools without considering lawful basis or consent.

Why It Matters:

GDPR requires data to be processed only for specific, transparent purposes.

How FileMaker Helps:

FileMaker provides a controlled environment where all data access is logged and purpose-specific. With Claris Connect or other scripted integrations, every AI request can be recorded and monitored, ensuring clear audit trails and demonstrable transparency.

2. International Data Transfers

The Challenge:

Many AI providers host models outside the UK/EU, risking non-compliant data transfers.

Why It Matters:

GDPR restricts international transfers of personal data without safeguards such as SCCs or adequacy decisions.

How FileMaker Helps:

With UK-based FileMaker Server hosting from DataTherapy, your data never leaves UK jurisdiction. AI integrations can be deployed locally or within secure, compliant environments, or anonymised - keeping your data residency under full control.

3. Automated Decision-Making & Profiling

The Challenge:

AI tools can automate customer triage, hiring filters, or credit scoring without human oversight.

Why It Matters:

GDPR Article 22 restricts “solely automated” decisions that affect individuals.

How FileMaker Helps:

By design, FileMaker supports human-in-the-loop workflows. AI-generated insights can be reviewed and approved within FileMaker dashboards, maintaining accountability and avoiding automation bias.

4. Data Minimisation & Purpose Creep

The Challenge:

LLMs often work best with more data, but that can lead to oversharing or reusing data beyond its intended purpose.

Why It Matters:

GDPR demands that only the minimum necessary data be used.

How FileMaker Helps:

FileMaker layouts and scripts can restrict data views, anonymise exports, or apply filters before any information is shared with an AI. That means better data discipline — and fewer compliance headaches.

5. Accuracy Obligations

The Challenge:

AI tools occasionally “hallucinate” or generate incorrect personal information.

Why It Matters:

GDPR requires personal data to be accurate and up to date.

How FileMaker Helps:

FileMaker allows teams to verify AI outputs before saving them back into production data. Paired with validation rules and audit logging, you can ensure all AI-sourced information remains correct and traceable. Built-in FileMaker Semantic Search script steps are a 'low temperature', highly structured usage of AI/LLM services and so are less generate hallucinations than less structured, manual ad hoc prompting.

6. Right to Erasure vs. Model Retention

The Challenge:

Once customer data is used to train or fine-tune an LLM, it can’t easily be deleted.

Why It Matters:

GDPR gives individuals the “right to be forgotten.”

How FileMaker Helps:

Rather than embedding data in AI models, FileMaker can feed AI temporary, contextual data on demand via a structured API request. All personal records remain fully erasable within your database, ensuring GDPR rights remain intact.

7. Employee Monitoring Risks

The Challenge:

AI analytics can unintentionally cross into employee surveillance.

Why It Matters:

GDPR and UK employment law restrict covert or disproportionate monitoring.

How FileMaker Helps:

FileMaker dashboards can present transparent, aggregated views of operational data — allowing fair performance tracking without breaching privacy. You can even include employee consent acknowledgements directly in the system.

8. Shadow AI Use (Bring Your Own AI)

The Challenge:

Employees often use unapproved AI tools that may expose customer data externally.

Why It Matters:

The business remains the data controller — and liable for misuse.

How FileMaker Helps:

By centralising all approved AI access through FileMaker, you can log every interaction with external AI services and enforce authentication. This stops unauthorised “shadow AI” activity and keeps data governance consistent.

9. Explainability & Accountability

The Challenge:

LLMs are black boxes, making it difficult to explain how they reached their conclusions.

Why It Matters:

Individuals have the right to understand decisions made about them.

How FileMaker Helps:

FileMaker can log every AI prompt and response, giving you complete traceability for decision-making. Combine this with a human review process to ensure explanations are always available when needed.

10. Special Category Data Risks

The Challenge:

AI models can infer sensitive personal traits even if not explicitly provided.

Why It Matters:

Processing special category data requires explicit consent.

How FileMaker Helps:

FileMaker enables field-level data classification and consent tracking. You can tag special category data fields, apply warnings, and ensure they’re excluded from AI interactions automatically.

In Summary

AI has enormous potential for UK businesses — but innovation must be balanced with compliance.

Claris FileMaker gives SMEs the data control, transparency, and flexibility needed to experiment safely with AI.

By integrating FileMaker with modern AI tools and hosting your solutions securely with DataTherapy’s UK infrastructure, your organisation can:

✅ Innovate confidently

✅ Maintain full GDPR compliance

✅ Protect both customer trust and operational integrity

About DataTherapy

DataTherapy is a UK-based Claris Platinum Partner specialising in custom FileMaker development, cloud hosting, and integration with APIs and emerging technologies like AI and LLMs.

We help organisations harness the power of intelligent automation—securely, efficiently, and always within GDPR boundaries.

Ready to explore AI safely with FileMaker?

Contact the DataTherapy team to discuss a compliance-aware AI integration strategy for your business.

< Older Post

Case Study: Research Database for St Mark’s Centre for Familial Intestinal Cancer

by Ben Fletcher • 18 September 2025

DataTherapy helped St Mark’s Centre streamline cancer research and patient care by unifying databases into a secure, efficient Claris FileMaker system.

Windows 10 is End Of Life time - Time to update your FileMaker?

by Ben Fletcher • 10 September 2025

Windows 10 support ends Oct 14, 2025. Upgrade to Windows 11 and FileMaker 2024 or FileMaker 2025 to stay secure, supported, and future-ready.

Claris FileMaker and Private AI Part 4: ChatGPT

by Ben Fletcher • 18 August 2025

Want faster, smarter FileMaker apps with AI? We compared gpt-oss, Llama & DeepSeek to find the best local model for Apple hardware. Find out who wins

Case Study: Academic Recruitment Portal for The Francis Crick Institute

by Ben Fletcher • 12 August 2025

Discover how DataTherapy built a secure, cloud-based academic recruitment portal for The Francis Crick Institute using Platopus SaaS and Claris FileMaker. Streamlined applications, advanced reporting, and Okta authentication deliver a faster, more efficient hiring process.

Claris FileMaker 2025 Platform in depth - New features & benefits

by Ben Fletcher • 14 July 2025

While the new AI features of Claris FileMaker 2025 will undoubtedly generate the most headline interest, there are a number of other new under the hood features which are no less important to professional FileMaker developers. Here is a quick overview of some of the new features we will be using immediately to speed and ease our development, as well as improving the real world performance of apps: 1) GetFieldsOnLayout function Returns a list of the fields on a layout as JSON data. Includes only the fields that are accessible to a find.

Claris FileMaker 2025 managed private cloud hosting now available

by Ben Fletcher • 11 July 2025

Upgrade to Claris FileMaker 2025 with secure, scalable UK-managed hosting by DataTherapy. Fast setup, expert support, AWS infrastructure, no long contracts.

The benefits of upgrading to Claris FileMaker 2025 Platform – comparison with previous versions

by Ben Fletcher • 10 July 2025

Claris FileMaker 2025 has launched with a range of new features that will undoubtedly make developing new custom apps both quicker and more powerful, but what are the benefits of upgrading if you are currently using an older version of the FileMaker platform? Using a version older than of FileMaker 19? In that case there are even more good reasons to upgrade - contact our team to find out more about the benefits from upgrading that you have been missing out on! Highlighted below are some of the key differences in features were introduced between FileMaker v19, 2023 (v20), 2024 (v21) and now 2025 (v22) releases:

Planning your upgrade to Claris FileMaker 2025 platform

by Ben Fletcher • 9 July 2025

Claris FileMaker 2025 is the ultimate platform for custom app creation, now with powerful new native features for leveraging Artificial Intelligence by integrating Large Language Models (LLMs) and integrating with Claris Connect and Claris Studio . Given its advanced features and capabilities, it's the platform of choice for SMEs seeking to start fresh building a new custom business app. However, if you're thinking about upgrading from an older Claris FileMaker version, preparation is key, and that's where we come in. This brief guide outlines the major points of consideration when upgrading. However, don't worry if these technicalities overwhelm you - our expert consulting team is just a click away, ready to guide you through any concerns. The Upgrade Process: Claris FileMaker v12-v2024 (.fmp12 format) The good news: versions 12-2024 share the same file format as the 2025 version, making upgrades a breeze. However, certain interface changes might require user adaptation if your app was built prior to FileMaker 16. For example, if your users utilize the footer bar for zoom control, view mode changes, or status bar display, they'll have to adjust to using the upper status bar and application menus. If that's a challenge, our consultants can assist with incorporating zoom control into your interface layouts. One caveat is that while it's possible to use legacy versions of Claris FileMaker Pro to connect to Claris FileMaker Server 2025, we advise against it. Mixing client versions can prevent you from leveraging the full benefits of the Claris FileMaker 2025 feature set. For maximum security and optimal performance, make sure both the server and all users are on the latest software version and patch. Claris have compiled a handy checklist of deprecated features in Claris FileMaker 2025, so make sure to verify if these impact your usage: https://support.claris.com/s/answerview?anum=000048380&language=en_US Revamping Your Legacy Systems: Claris FileMaker v6-11 (.fp7 & .fp5 format) or earlier Older versions of FileMaker are a testament to the platform's longevity. However, they do come with unique challenges, including the impossibility of direct conversion using Claris FileMaker 2025. Don't worry, we're equipped to handle these issues and are ready to bring your vintage database files into the present. We also recommend considering a fresh start. The latest Claris FileMaker boasts myriad features that can significantly boost your business operations. Remember: upgrading isn't merely about maintaining the status quo—it's about embracing innovation and driving your business forward. If you want to do the minimum possible work to convert your files into the v2025 format then look at our previous guide for FileMaker Pro 19: https://www.datatherapy.com/news/2020/6/5/planning-your-upgrade-to-claris-filemaker-19-platform General Upgrade Considerations: Let's Get Practical No matter your current version, our team can assist you through the upgrade process, even if your app involves complex dependencies, such as integrations with legacy software or plugins. Note that most plugins will require updates (sometimes paid) to ensure compatibility with Claris FileMaker 2025. We encourage you to consider the future-proofing benefits of a 'cloud-first' and 'AI-first' mindset. Older systems may not have been built with this in mind, but the modern Claris FileMaker platform has been designed to seamlessly integrate with other cloud solutions and now leading public and private LLMs. Ultimately, we believe that your software should work for you, not the other way around. That's why we're committed to ensuring your upgrade is more than a simple technical exercise—it's a strategic move that aligns with your business' evolution. If you're ready to harness the power of the modern, interconnected, and dynamic Claris FileMaker 2025, get in touch with us today . We're here to help you achieve your business goals.

Claris FileMaker 2025 is now available

by Ben Fletcher • 9 July 2025

What is new in FileMaker 2025?

Wooden blocks with LEARN written on in the style of the game Scrabble.

Why Staying Up-to-Date with Claris FileMaker Certifications Matters

by Ben Fletcher • 1 July 2025

Discover why staying up-to-date with Claris FileMaker certifications ensures secure, future-ready systems built by trusted, certified development experts.

Get in touch