EU Opens Probe into Grok Image Manipulation and X’s Recommender System

The European Commission has launched a new investigation into X, examining whether the platform’s deployment of its AI assistant Grok complies with the EU’s Digital Services Act (DSA).

The latest investigation will focus on whether X properly assessed and mitigated the risks of integrating Grok’s functionalities into the service in the EU.

Regulators say these risks appear to have already materialized, potentially exposing users to serious harm.

Among the key concerns are the dissemination of illegal content – including manipulated explicit images – as well as content linked to gender-based violence and broader negative impacts on users’ physical and mental well-being.

Regulators have also expanded an existing probe into X’s recommender systems, intensifying scrutiny of how the company manages systemic risks on its platform.

Alleged failures to assess and mitigate risks

Under the DSA, very large online platforms (VLOPs) such as X are required to proactively identify, assess, and mitigate systemic risks stemming from their services. The Commission will now investigate whether X has met these obligations in relation to Grok by:

• Adequately assessing and mitigating systemic risks tied to the spread of illegal content
• Addressing risks related to gender-based violence and serious harm to users’ well-being
• Submitting an ad hoc risk assessment report to the Commission before deploying Grok features that significantly alter X’s risk profile

Regulators are also examining whether X’s recent switch to a Grok-based recommender system has worsened systemic risks, including how content is amplified and recommended to users.

If the alleged shortcomings are confirmed, the Commission says X could be found in breach of Articles 34, 35, and 42 of the DSA, which govern risk assessment, risk mitigation and transparency obligations.

Extension of an ongoing investigation

The new proceedings build on a formal investigation opened in December 2023, which already targeted X’s compliance with the DSA. That probe focused on the platform’s notice-and-action mechanisms, its handling of illegal content, and risks associated with its recommender systems.

Parts of that investigation have already led to enforcement action. In December 2025, the Commission adopted a non-compliance decision against X, imposing a €120 million fine for issues including deceptive design practices, insufficient advertising transparency, and inadequate data access for researchers.

The expansion of the probe will now reassess whether X has properly addressed systemic risks across its recommender systems—especially in light of the platform’s increasing reliance on Grok-powered features.

The Commission says it will prioritize the investigation and continue gathering evidence through additional requests for information, interviews, and potential inspections. If X fails to make “meaningful adjustments” to its service, regulators may impose interim measures.

Growing scrutiny of AI on major platforms

Grok, developed by X, has been integrated into the platform since 2024, allowing users to generate text and images and receive contextual information alongside posts. The Commission says AI-driven features can significantly alter a platform’s risk profile, particularly when they affect content creation and recommendation at scale.

As regulators across Europe sharpen their focus on AI-generated content and platform accountability, the outcome of this investigation could set a precedent for how AI tools are governed under the DSA—especially when their deployment risks amplifying illegal or harmful material.

EU citizens can file complaints with their national Digital Services Coordinator if they believe a platform has breached the DSA.

You may also want to read:

Europe Slaps Tech Sector with €1.2 Billion in Fines under GDPR in 2025

Europe fines X €120 million in first enforcement of the Digital Services Act

Italy Fines Apple $116 Million over Consumer Privacy Rules