惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Cisco Talos Blog
Cisco Talos Blog
V
V2EX
C
Check Point Blog
GbyAI
GbyAI
D
Docker
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
B
Blog RSS Feed
H
Hackread – Cybersecurity News, Data Breaches, AI and More
N
Netflix TechBlog - Medium
T
Troy Hunt's Blog
博客园 - Franky
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Microsoft Security Blog
Microsoft Security Blog
P
Privacy & Cybersecurity Law Blog
WordPress大学
WordPress大学
The Cloudflare Blog
S
SegmentFault 最新的问题
Latest news
Latest news
Microsoft Azure Blog
Microsoft Azure Blog
P
Proofpoint News Feed
I
InfoQ
博客园 - 【当耐特】
NISL@THU
NISL@THU
A
About on SuperTechFans
T
Tailwind CSS Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
The Hacker News
The Hacker News
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Scott Helme
Scott Helme
雷峰网
雷峰网
C
CXSECURITY Database RSS Feed - CXSecurity.com
Security Latest
Security Latest
V
Vulnerabilities – Threatpost
Security Archives - TechRepublic
Security Archives - TechRepublic
A
Arctic Wolf
Hacker News: Ask HN
Hacker News: Ask HN
N
News and Events Feed by Topic
IT之家
IT之家
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
aimingoo的专栏
aimingoo的专栏
T
Threat Research - Cisco Blogs
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
阮一峰的网络日志
阮一峰的网络日志
SecWiki News
SecWiki News
大猫的无限游戏
大猫的无限游戏
S
Security Affairs
The Register - Security
The Register - Security
www.infosecurity-magazine.com
www.infosecurity-magazine.com
L
LINUX DO - 热门话题
T
Tor Project blog

MEDIANAMA

India in talks with US, Anthropic for Mythos access; no Indian firms in Project Glasswing yet Including OTTs in TRAI’s spam protection draft rules a ‘regulatory overreach’: IAMAI Eternal Q4FY26: All Users Pay Higher Platform Fee, Only Some Get Discounts Amazon, Meta to challenge PhonePe-Google Pay dominance as UPI cap delayed since 2020 Meta failed to protect the safety of under-13s: European Commission If markets and regulators are ready for network slicing, we are ready: JIO Why defining ‘news’ won’t fix the free speech problems of draft IT Rules? #NAMA Eternal Q4FY26: Goyal Dismisses AI Disruption Risk as Zomato Quietly Builds Agentic Commerce Infrastructure Karnataka files appeal challenging the bike taxi ban lift in the Supreme Court How did WhatsApp turn 17 govt. flags into 9,400 digital arrest scam bans? Google Wallet integrates Aadhaar as digital ID, expands India’s mobile identity ecosystem Kerala HC issues notice on MediaOne’s Facebook page block in India MeitY warns VPN providers against enabling access to blocked betting platforms Shreya Singhal targeted private censorship. Today’s threat is the State #NAMA Amazon scales its quick delivery service ‘Amazon Now’ in 100 cities Can MeitY issue binding rules via advisories? Experts raise alarm over draft IT Rules #NAMA How 2019 election code of ethics became India’s three-hour content takedown mandate #NAMA Australia proposes new levy on big tech to fund news, opens draft law for consultation ‘judge, jury, executioner’: experts warn of Inter-Departmental Committee (IDC) overreach under New draft IT Rules Lowdown: TRAI flags low deployment under PM-WANI in public Wi-Fi consultation paper Why the NBFC licence matters for MobiKwik China blocks Meta-Manus deal, asserts origin-country jurisdiction: what this means for India ‘No transparency’: experts warn of expanding powers to block online speech in India #NAMA X launches standalone iOS messaging app XChat with encryption in India How India’s content takedown framework was built and where It has gone wrong #NAMA Claude Mythos puts India on alert: CERT-In, telcos, banks assess unprecedented cyber risks Explained: why did the RBI cancel Paytm’s banking licence? Meta now instantly blocks content in India Govt. asks ZEE5 to halt ‘Lawrence of Punjab’ web series release Online Gaming Rules notified, to be in effect from May 1, what are the major changes? RBI mandates additional factor authentication for e-mandates No notice, no explanation, no recourse: how content creators experience censorship in India #NAMA Telangana Police invokes UAPA to demand TeluguScribe’s user data from X Lowdown: RBI releases draft PPI rules covering capital requirements, wallet limits & escrow norms MeitY tightens AI label rules, mandates continuous disclosure Watch Live: IT Rules and the Future of Online Speech in India, Delhi April 23, #NAMA Govt. defends 4 PM YouTube ban, cites foreign influence and ‘digital lobbying’ in Delhi HC Anthropic’s Mythos AI accessed without approval via third-party vendor route: Report YouTube expands AI likeness detection tool to celebrities amid deepfake surge ECI orders 3-hour takedown rule for AI and fake content in elections Final Call: IT Rules and the Future of Online Speech in India, Delhi April 23, #NAMA Announcing Speakers: Victims of Censorship | IT Rules and the Future of Online Speech in India, Delhi April 23, #NAMA Apple withholds financial data as India App Store antitrust case heads to final hearing Sony rolls out age checks in Playstation in the UK, users to prove age to access chat Vercel confirms hack via third-party AI tool, says sensitive data safe Karnataka High Court stays blocking orders against Proton Mail J&K DMs impose sweeping 60-day social media curbs; IFF calls them “illegal, overbroad” Flipkart plans ticketing entry, food delivery pilot in May ahead of IPO EU’s “safe by design” age-verification app cracked in minutes, raising data security fears Molitics’ Instagram suspended days after Facebook ban Speaker Announcement: IT Rules and the Future of Online Speech in India, April 23, 2026, Delhi X has only responded to 13 out of 94 takedown notices since 2024: Centre tells Gujarat HC Jio Financial Services Q4FY26 profit declines 14% to Rs 272 crore Bombay HC cracks down on fake ‘NSE’ social media handles amid rising impersonation fraud Government drops proposal to mandate Aadhaar app on smartphones Ola’s Krutrim quietly shuts down its agentic AI assistant ‘Kruti’ Anthropic taps Peter Thiel-backed Persona for Claude ID checks, raising DPDP concerns YouTube rolls out option to turn off Shorts, expands time controls Amnesty calls for ‘immediate withdrawal’ of India’s 2026 IT Amendment Rules, cites threat to free speech and privacy Lowdown: Insurers have to comply with DPDP as IRDAI updates Cyber Security Guidelines European Commission proposes Google have to share search data with rivals under the DMA AIGEG: MeitY’s new AI governance body excludes regulators recommended by its own AI guidelines Amazon acquires Globalstar for $11.57 Billion: What it means for India European Commission rolls out privacy-focused age verification app for child safety Reading List: IT Rules and the future of online speech in India, April 23, Delhi #NAMA Digital rule, colonial echo – India’s IT Rules 2021 amendments Agenda: IT Rules and the future of online speech in India, Delhi, April 23 #NAMA Motorola gets court order to block YouTube videos critical of its phones in India Apple and Google promote ‘nudify’ apps despite policy bans, report finds National security could be used to mandate registration of online games HBO Max enters India via JioHotstar partnership Andhra Pradesh police detain stand-up comedian Anudeep Katikala over YouTube video jokes Aptoide sues Google for app store monopoly, alleges ‘anticompetitive chokehold’ HBO Pushes X to Unmask User Behind Euphoria Season 3 Spoilers Delhi HC directs DoT, MeitY to take action against Tucows for failing to take down infringing URLs in Premier League case Claude users say accounts suspended after being incorrectly flagged as minors MeitY may let users, intermediaries join content-blocking hearings Sucheta Dalal challenges Delhi Court order using ‘Right to Be Forgotten’ in Sterling Biotech case Govt launches Rs 10,000 Cr Startup India Fund of Funds 2.0 to bridge early-stage funding gap in deep tech Advisories as Law? Panelists Debate Legal Sanctity Under Draft IT Rules Amendments Independent journalists in Punjab allege censorship by ruling AAP using copyright strikes, IT act Supreme Court Issues Notice on PIL Seeking Biometric Verification of Voters Fact-check: MP Nishikant Dubey’s claim on X community notes & Australian tax is false “No scientific evidence”: 438 scientists call for pause on age-based controls until benefits and risks understood Developer partially bypasses Google’s AI watermark, undermining detection India’s deepfake rules rely on Event Announcement: IT Rules and the Future of Online Speech in India, April 23, #NAMA UK plans jail risk for tech executives over failure to remove intimate images Press bodies demand ‘unconditional withdrawal’ of draft amendment to IT Rules, warns of free speech threat Zoho revenue crosses Rs 12,000 crore in FY25, but profit slips 3% YouTube’s AI avatar tool for Shorts raises questions around India’s deepfake rules, personality rights Instagram expands safety settings on teen accounts with 13+ content ratings Digi Yatra is eyeing international travel roll-out with passport-based enrolment Meta’s new AI model Muse Spark is coming to WhatsApp. Here is what that means for Indian users Andhra Pradesh explores DigiLocker age tokens for social media curbs on children aged 13-16 Kunal Kamra tells Bombay HC police sent “thousands” of takedown notices via Sahyog portal Extra safeguard for the elderly: RBI suggests trusted person approval for high-value digital payments Delhi court orders Google to remove Sterling Biotech case links, cites ‘right to be forgotten’ RBI Proposes 1-hour delay, customer controls for digital payments as frauds surge Should only MIB-authorised apps be allowed to stream free TV on Smart TVs? TRAI Seeks Inputs OpenAI releases child safety policy framework recommendations to combat AI-enabled CSAM
ANI v OpenAI: Not Everything an LLM Does is Copyright Infringement
Guest Author · 2026-04-21 · via MEDIANAMA

By Vishno Sudheendra

With judgment now reserved in ANI v OpenAI, India stands at the cusp of what might be its first major judicial reckoning with the copyright implications of generative AI. The case raises foundational questions on whether AI systems merely process information in new ways or unlawfully appropriate protected expression. Vishno Sudheendra examines two of the most contested issues from the final hearings: chatbot web search functionality and memorization. Vishno is a fourth-year B.A., LL.B (Hons) student at the National Law School of India University, Bangalore, with a keen interest in various aspects of IPR and technology law.

The judgment in ANI v OpenAI [CS(COMM) 1028/2024] has been reserved, with the last hearing culminating on 27th March, 2026 [order]. This litigation is the first (and, so far, the only) Copyright and AI training-related litigation in India. The DPIIT Working Paper had also left the question of whether AI training infringes copyright open, noting that it “does not attempt to resolve these questions or offer definitive conclusions” on this issue. Thus, the verdict in this case will shape the legal course of copyright and AI training-related issues in India. [Readers can view previous updates and analysis by Bharathwaj here]

In this post, I seek to discuss two interesting issues raised in the last two hearings- web search functionality of AI chatbots and memorization. The search functionality of AI chatbots allows them to access real-time information from the web using Retrieval Augmented Generation (“RAG”) – essentially, this complements their training data, which is updated periodically. ANI argued that this functionality is infringing and also drives down web traffic to their website, reducing readership. The second issue is that of memorization – this is a phenomenon where LLMs regurgitate their training data verbatim. GEMA v OpenAI (2025), a ruling of a Munich regional court, was also cited, where OpenAI was held liable for ChatGPT reproducing the lyrics of a song. 

I argue that the search functionality of AI chatbots is still essentially non-expressive use, no different from the training process, and the regurgitation caused due memorization happens in most cases due to adversarial prompting, thus the user may be held liable in case they publish it (if not private/personal use exception might apply), and the AI developers are not liable, given that they have employed guardrails which are being circumvented by users. I further argue that secondary liability must also not be attributed to AI developers since these chatbots have substantial non-infringing uses and were not designed with an intent to infringe (barring situations where there is a lack of adequate guardrails, absent adversarial prompts). 

The Web Search Functionality & RAG:

The training data of LLMs are updated periodically, which creates an information/knowledge gap in the interval periods. This problem is optimized by extracting information from real-time web searches (indexed in its knowledge base) using Retrieval-Augmented Generation (“RAG”). It enables referencing “an authoritative knowledge base outside of its training data sources before generating a response”. This helps optimize common LLM problems like generating false information when it lacks a coherent answer, generalised/vague outputs, using non-authoritative sources etc (read more here and here). Here is an example (where you can see ChatGPT referencing various websites) :

ChatGPT has a web search functionality, and it also provides the website links (URLs) of the sites it has accessed in the process of generating its response (as shown above). ANI, in its submissions against OpenAI on 20th March 2026, argued that this drives down its web traffic and causes loss of readership/revenue. OpenAI restricted the applicability of this functionality on ANI websites during the course of this litigation, when ChatGPT is prompted to provide updates only using ANI as a source, it is unable to and provides the following disclaimer:

But before examining ANI’s claims that it drives down web traffic, readership and revenue, let’s take a step back and ask if it is a copyright issue? The way information extracted via RAG is processed, is no different from the regular training process as regards its non-expressive character. The first step of RAG which goes beyond training data and accessing an external knowledge base, involves the following:

RAG systems use a process called embedding to transform data into numerical representations called vectors. The embedding model vectorizes the data in a multidimensional mathematical space, arranging the data points by similarity. Data points judged to be closer in relevance to each other are placed closely together.” [IBM]

Such a process is nothing but a non-expressive use, where the protectable elements of a copyrighted work are not copied/reproduced, but only unprotectable elements, like the statistical relationship between words, are noted. [to read more on non-expressive use and how general AI training is non-infringing, see Shivam Kaushik (Part 1 and Part 2) and Akshat Agrawal, and this illustrative article]

Therefore, given the non-expressive use embodied in RAG and web search functionality, where unprotectable elements of a copyrighted work are used, it is not copyright infringement leading to alleged loss of revenue/readership/web traffic but legitimate competition! Copyright is not a right that guarantees readership, revenue, web traffic, or monopoly against legitimate competition [there is no copyright beyond what is provided in the Copyright Act – Section 16]. Thus, the moot question is whether any of the Section 14 rights have been infringed, and there exist extremely compelling arguments against any such infringement taking place [See, Shivam Kaushik (Part 1 and Part 2) and Akshat Agrawal]

Another interesting argument in the specific context of this case was advanced by Amicus Prof. Arul Scaria, who noted that the merger doctrine may apply here, since news or facts can often be expressed in only a limited number of ways (the merger doctrine holds that when an idea can be expressed in very few ways, the expression is deemed to have “merged” with the idea and is therefore not protectable). Prof. Edward Lee, in the context of 4th fair use factor – market harm – notes that “As long as the summary or output of an AI generator does not copy original expression from online news sources, but copies merely facts, the dissemination of such facts does not produce a cognizable harm under Factor 4 of fair use in “the protected aspect” of the underlying work” [Edward Lee]

Memorization:

Memorization in AI refers to a model’s tendency to store and reproduce specific pieces of information from its training data, rather than learning generalizable patterns. Lots of studies have shown how memorization occurs [see Carlini et al., Nasr et al., Cooper et al.]. In most instances of memorization leading to verbatim regurgitation of copyrighted works does not occur automatically, extractive prompts designed to circumvent guardrails employed by these chatbots are used to attain such verbatim reproduction (known as adversarial prompts). In rare cases, however, simple prompts like ‘provide the lyrics of xyz song’ may also lead to verbatim reproduction, as seen in the case of GEMA v OpenAI

This problem is compounded as, in copyright law, apart from verbatim reproduction of copyrighted material, even substantial reproduction of the same is also considered infringing [R.G. Anand v. M/S. Delux Films]

So should AI developers be held liable for such reproduction? My answer for this is qualified, in cases where there exist sufficient guardrails that are being circumvented by users using adversarial prompts, the liability must not lie with the AI developers but with the users (as, apart from AI chatbots having substantial non-infringing uses, akin to intermediaries, AI developers have done their due diligence and it is the users deliberately circumventing it). In cases where chatbots reproduce copyrighted material verbatim [or those bearing substantial similarity to copyrighted works] for simple prompts (without extractive techniques employed by the users) the liability should vest with the AI developer. 

Essentially, the nature of liability here would be indirect or contributory liability, as AI developers can argue that there was no volitional conduct on their part and they had employed sufficient guardrails – “Lack of foreseeability or reasonable copyright safety measures effectively breaks the chain of causation required for volitional conduct” [Matthew Sag]. 

Note: In the context of ANI v OpenAI, Amicus Adv. Adarsh Ramanujan pointed out that ANI does not seem to have made a case for memorization from what has been presented. I agree with Mr. Ramanujan that demonstrating memorization would require isolating the model from external sources, such as by disabling web search functionality, to assess whether the LLM reproduces ANI’s copyrighted works from its training data, either verbatim or in a substantially similar form.

Contributory Infringement for Memorized Infringing Outputs?

It may be argued that AI developers have contributory liability for enabling the generation of infringing outputs (material contribution) and that they have knowledge of their product’s ability to be used for copyright infringement. However, this liability should be qualified: where adequate safeguards are deliberately circumvented through adversarial prompting, responsibility ought to lie with the user; conversely, where infringing outputs are generated in response to simple prompts, liability should vest with the developer.

Matthew Sag argues that AI developers might find recourse in the observation of SCOTUS in Sony Corp. of America v. Universal City Studios, Inc (“Betamax case”). where it was observed that general knowledge about the product’s ability to infringe copyright is not sufficient to constitute contributory liability. The SCOTUS, in the Betamax case, famously observed that “the sale of copying equipment, like the sale of other articles of commerce, does not constitute contributory infringement if the product is widely used for legitimate, unobjectionable purposes. Indeed, it need merely be capable of substantial noninfringing uses.”

Similarly, AI chatbots are widely used for legitimate and unobjectionable purposes, while being capable of substantial noninfringing uses. 

In India, Section 51(a)(ii) of the Copyright Act may be used against AI developers which states that copyright is deemed to be infringed if any person without a license “permits for profit any place to be used for the communication of the work to the public where such communication constitutes an infringement of the copyright in the work, unless he was not aware and had no reasonable ground for believing that such communication to the public would be an infringement of copyright”.

The latter part of the provision provides a defence based on lack of knowledge or reasonable grounds of belief. Interpreting this provision, the Division Bench of the Delhi High Court in MySpace v. Super Cassettes clarified that “knowledge” requires actual consciousness or awareness, and not mere possibility or suspicion of something likely. Mere suspicion or apprehension is not enough. “Knowledge is to be therefore placed in pragmatically in the context of someone’s awareness (i.e a human agency); a modification on the technical side by use of software would per se not constitute knowledge” [MySpace Paras 35-37]

Applied to generative AI systems, the MySpace standard suggests that platform-level awareness of theoretical infringement risks does not equate to legal “knowledge” under Section 51(a)(ii). Thus, contributory infringement may be ruled out on this front as well. However, as mentioned earlier, this defence would be available only if the output has been generated using adversarial prompts circumventing guardrails employed by the developers, if AI developers had in the first place employed no/flimsy guardrails, this defence might not be available due to the foreseeability of infringement. 

What About the Users?

Users who undertake adversarial prompting to make the chatbots regurgitate verbatim copyrighted outputs may claim the exception under Section 52(a)(i) which allows “fair dealing with any work, not being a computer programme, for the purposes of— (i) private or personal use, including research”. Authors and publishers would counter this by arguing that such use must nevertheless involve “lawful” access. But here is the conceptual problem: if every enumerated exception required lawful access irrespective of statutory wording, what would be the point of specifying exceptions at all?

Further, as Amicus Prof. Scaria pointed out to the Court in a different context, lawful access is not a general requirement under Section 52. He further stated that the Copyright Act expressly includes a “lawful access” requirement only where framers of the statute intended it, for example, in Sections 52(1)(aa), (ab), and (ad). Reading the same requirement into provisions where it is not mentioned violates the statutory-interpretation principle of expressio unius est exclusio alterius (the express mention of one thing implies the exclusion of another).

Conclusion:

As we await the reserved judgment in ANI v. OpenAI, the legal stakes extend far beyond the immediate dispute. The case presents the judiciary with its first opportunity to clarify how copyright law should respond to AI training. As this post argues, neither RAG-based search functionality nor memorization (when triggered through adversarial prompts) fit comfortably within the contours of copyright infringement. These phenomena involve either non-expressive uses or user-driven circumvention of guardrails, and AI developers’ tools continue to demonstrate substantial non-infringing uses that weigh against secondary liability. It will be all the more intriguing to see how the case unfolds, especially since Justice Amit Bansal noted during the proceedings that he would not rely on foreign precedents and intends to assess the issues solely through the lens of the Indian Copyright Act.

Editor’s Note: This article was first published by Vishno Sudheendra on SpicyIP. It is being republished here with permission. The original piece can be read here.

Read more: