This article sheds light on legal implications and challenges surrounding emotion data processing within the EU's legal framework. Despite the sensitive nature of emotion data, the GDPR does not categorize it as special data, resulting in a lack of comprehensive protection. The article also discusses the nuances of different approaches to affective computing and their relevance to the processing of special data under the GDPR. Moreover, it points to potential tensions with data protection principles, such as fairness and accuracy. Our article also highlights some of the consequences, including harm, that processing of emotion data may have for individuals concerned. Additionally, we discuss how the AI Act proposal intends to regulate affective computing. Finally, the article outlines the new obligations and transparency requirements introduced by the DSA for online platforms utilizing emotion data. Our article aims at raising awareness among the affective computing community about the applicable legal requirements when developing AC systems intended for the EU market, or when working with study participants located in the EU. We also stress the importance of protecting the fundamental rights of individuals even when the law struggles to keep up with technological developments that capture sensitive emotion data.

翻译：本文揭示了欧盟法律框架下情绪数据处理所涉及的法律影响与挑战。尽管情绪数据具有敏感性，但《通用数据保护条例》（GDPR）未将其归类为特殊数据，导致其缺乏全面保护。文章还探讨了情感计算不同方法之间的细微差别，及其与GDPR下特殊数据处理的关联性。此外，本文指出情绪数据处理可能与公平性、准确性等数据保护原则产生潜在冲突。我们同时强调了情绪数据处理对相关个体可能造成的若干后果（包括损害）。进一步地，我们讨论了《人工智能法案》提案如何试图规范情感计算。最后，本文概述了《数字服务法案》（DSA）为利用情绪数据的在线平台引入的新义务与透明度要求。本文旨在提升情感计算社群对开发面向欧盟市场的情感计算系统或与位于欧盟的研究参与者合作时需遵守法律要求的认知。我们亦强调，即便法律难以跟上捕获敏感情绪数据的技术发展步伐，保护个体基本权利仍至关重要。