Changeflow GovPing Data Privacy Dutch Data Protection Authority Warns of AI Age...
Priority review Notice Added Final

Dutch Data Protection Authority Warns of AI Agent Security Risks

Favicon for www.autoriteitpersoonsgegevens.nl Dutch DPA News
Published February 12th, 2026
Detected March 6th, 2026
Email

Summary

The Dutch Data Protection Authority (AP) has issued a warning regarding the significant security risks associated with AI agents like OpenClaw. The AP advises users and organizations against using these experimental systems, particularly with sensitive data, due to potential data breaches and account takeovers.

View original document View source feed page

What changed

The Autoriteit Persoonsgegevens (AP), the Dutch data protection authority, has issued a warning concerning the security risks posed by experimental AI agents such as OpenClaw. The AP highlights that these open-source systems often lack basic security requirements, leading to major risks of data breaches and account takeovers. The warning specifically addresses the autonomous nature of these AI assistants, which are granted extensive access to user systems and data, making them attractive targets for abuse. Security experts have identified malware in plugins designed to steal credentials and vulnerabilities allowing for account takeovers and remote system takeovers.

Users and organizations are strongly advised by the AP not to use OpenClaw or similar AI agents on systems containing privacy-sensitive or confidential data, including access codes, financial information, employee data, and personal documents. The AP also urges parents to check children's devices for such installations. Recommended precautions include caution with external plug-ins, strict access controls, and renewing login details and API keys if exposure is suspected. The AP emphasizes that organizations and individuals remain responsible for GDPR compliance, and innovation does not excuse the failure to limit risks. Furthermore, the AP calls for clarification that autonomous AI agents fall under the scope of the EU AI Act to ensure product safety requirements are met.

What to do next

  1. Do not use OpenClaw or similar AI agents on systems with privacy-sensitive or confidential data.
  2. Review children's devices for installations of such AI systems.
  3. Exercise caution with external plug-ins, apply strict access controls, and renew login details/API keys if risk of exposure exists.

Source document (simplified)

AP warns of major security risks with AI agents like OpenClaw

12 February 2026 Themes: EU AI Act AI & algorithmic risks: developments in the Netherlands The Autoriteit Persoonsgegevens (AP), the Dutch data protection authority, warns users and organisations against the use of OpenClaw and similar experimental systems. The reason for this warning is the rapid pace at which OpenClaw has gained popularity. This type of open-source systems typically do not meet basic security requirements. The use of such systems poses major risks of data breaches and account takeovers.

OpenClaw provides users with an AI assistant which can execute tasks autonomously. To enable this, users give full access to their computer and programs, including email, files and online services. As a result, the AI assistant can perform specific tasks without explicit prior consent of the user. According to the AP, the cybersecurity community regards this type of autonomous AI agent as a ‘Trojan Horse’, as it is an attractive target for abuse.

Security experts worldwide signal, amongst others, that a significant proportion of the available plugins contain malware aimed at stealing login credentials or crypto credits. In addition, the platform is vulnerable to hidden commands in websites, emails and instant messages. This can lead to account takeovers, scraping personal data, and access codes. Critical vulnerabilities have also been found that allow attackers to remotely take over systems.

Call to users and organisations

The AP calls on users and organisations not to use OpenClaw and similar AI agents on systems with privacy-sensitive or confidential data. Examples of such data are access codes, financial administrations, employee data, private documents or identity documents. The AP also calls for parents to check whether their kids have installed such a system on their devices at home. Furthermore, the regulator advises being cautious with external plug-ins, applying strict access controls and renewing login details and API keys in case of risk of exposure.

Organisations and individual users remain responsible for compliance with the General Data Protection Regulation (GDPR). Innovation and open source do not discharge the obligation to limit risks in advance, according to the AP.

European legislation

At the European level, the AP calls for clarification that autonomous AI agents like OpenClaw are in scope of the AI Act. The AI Act sets product requirements for the safety of these types of systems so that unsafe applications can be excluded from the market.

Security risks of OpenClaw

OpenClaw runs locally on the user's computer. This does not automatically mean that the system is secure. Without proper security and risk management, its use can lead to serious security incidents, data breaches and unauthorised access to personal data.

Based on recent findings by security researchers, the AP points to the following risks, among others:

  • Users can provide OpenClaw with additional features by installing so-called plug-ins. About one-fifth of those plugins appear to contain malware, which, for example, can steal login credentials or crypto credits from the user.
  • OpenClaw's platform is vulnerable to hidden commands (indirect prompt injection), which can be hidden in seemingly normal websites, emails or instant messages. The AI system could then, for example:
    • Acquire accounts from linked services (such as Google, Facebook, and Apple ID). The hacker basically gets a master key from the user to a lot of (personal) data and access to other linked services.
    • Read emails, view calendars and use local files, such as personal documents.
    • Steal API keys from AI models, which can take over the use of the AI service.
  • Critical security vulnerabilities. An attacker (hacker) can execute malicious commands or code remotely, without physical access to the computer in question. For example, the attacker can take full control via OpenClaw (or a similar AI system), steal data or install malware.
  • Data breaches. Also, OpenClaw allows a user to install or set up incorrect configurations, allowing personal data to be publicly visible.

Also view

Related changes

Favicon for www.gov.uk Export Licence Transmission Issue Resolved
Routine Mar 14, 2026 ECJU Notices to Exporters Trade & Export
Favicon for www.gov.uk Humanitarian Assistance Exception Notification for Petroleum Products
Priority review Mar 13, 2026 OFSI All Publications Trade & Export
Favicon for www.apra.gov.au APRA Releases Quarterly ADI Statistics for December 2025
Routine Mar 13, 2026 news-and-publications Government
Favicon for www.priv.gc.ca Privacy Commissioner concludes Loblaw loyalty program investigation
Priority review Mar 13, 2026 Canada OPC News & Actions Government
Favicon for www.priv.gc.ca Global Data Protection Authorities Statement on AI Imagery Privacy
Priority review Mar 13, 2026 Canada OPC News & Actions Government
Favicon for www.priv.gc.ca Privacy Commissioner Recommends Bill C-4 Amendments for Political Party Privacy
Priority review Mar 13, 2026 Canada OPC News & Actions Government

Source

Favicon for www.autoriteitpersoonsgegevens.nl
Dutch DPA News autoriteitpersoonsgegevens.nl/en/news
Data Privacy
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
Various
Published
February 12th, 2026
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Substantive

Who this affects

Applies to
Employers Technology companies Consumers
Geographic scope
Netherlands

Taxonomy

Primary area
Data Privacy
Operational domain
Compliance
Topics
AI Regulation Cybersecurity

Browse Categories

Federal Courts 26 State Courts 91 Securities Regulation 6 Financial Regulation 43 Consumer Protection 5 Drug Safety 45 Data Protection 21 Competition 2 Attorneys General 3 Insurance Regulation 5 Trade & Export 36 Legislation 42 Energy Regulation 13 Environment 3 Labor & Employment 2 Tax 1

Get Data Privacy alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when Dutch DPA News publishes new changes.

Free. Unsubscribe anytime.