AI Regulation ReferenceDoes Federal Law on the Protection of Personal Data (LFPDPPP) — 2025 AI Provisions require Human Oversight?
Mexico • enforcing
Yes — 1 provision
Requirements at a glance
This regulation imposes 4 specific requirements for Human Oversight across 1 provision:
- Human-in-the-loop — Mandatory human oversight for automated decision-making processes, especially high-risk cases
- Right to object — Individuals have an explicit right to object to processing via automated decision-making systems
- Impact assessments — High-risk ADM systems require impact assessments evaluating effects on rights, identifying safeguards, and implementing mitigations
- Internal safeguards — Controllers must establish internal oversight mechanisms for agentic or semi-autonomous systems to prevent harms including discrimination
Human Oversight in Automated Decisions #
The revised LFPDPPP mandates human-in-the-loop processes for automated decision-making, particularly in high-risk scenarios. Combined with the right to object to ADM, this creates a dual obligation: deploy human oversight AND honor opt-out requests. Secondary regulations (pending) may further define high-risk thresholds.
Requirements
| Requirement | Details |
|---|---|
| Human-in-the-loop | Mandatory human oversight for automated decision-making processes, especially high-risk cases |
| Right to object | Individuals have an explicit right to object to processing via automated decision-making systems |
| Impact assessments | High-risk ADM systems require impact assessments evaluating effects on rights, identifying safeguards, and implementing mitigations |
| Internal safeguards | Controllers must establish internal oversight mechanisms for agentic or semi-autonomous systems to prevent harms including discrimination |
Penalties
| Violation | Fine |
|---|---|
| Administrative violations | 100–320,000 UMA (~$1,200–$3.9M USD) |