Grok Chatbot Violates Canadian Privacy Laws with Sexualized Deepfakes

The Office of the Privacy Commissioner of Canada (OPC) found that X Corp. and xAI's Grok AI-powered image generation tool violated federal privacy laws by enabling the creation of millions of non-consensual sexualized deepfake images, including those of children. The investigation revealed that Grok generated over 6,000 sexualized images per hour and shared 1.8 million such images since December 29, 2025. Despite some remedial actions taken by the companies, including implementing safeguards, the OPC emphasized that these measures were insufficient and called for stronger federal privacy legislation. The investigation, initiated in January 2026, highlighted the need for updated privacy laws to grant the OPC enforcement powers. The findings were released following the government's announcement of a new national AI strategy.

Key Points: • Grok's AI tool allowed the creation of millions of non-consensual sexualized deepfakes. • The OPC found X Corp. and xAI in violation of Canada's privacy laws, prompting calls for stronger legislation. • Despite implemented safeguards, the OPC deemed the companies' actions insufficient to protect privacy.