Raycaster / evalsBack to AI Agents for Privacy and GDPR Compliance

APEX-Agents · Law

World423_JS_07

1/2Fail

APEX-Agents task World423_JS_07 in AI Agents for Privacy and GDPR Compliance. Compare dual-harness agent runs across models — rubric criteria, scores, and public traces.

AI Agents for Privacy and GDPR ComplianceLaw World 423Dual harnessGrader: rubric
task_c9fa280149be4bbb99fc9f9065b443cf
Law World 423
message_in_console
6 models · dual config

Task prompt

What the agent was asked to do

Will Northstar be required to compensate affected data subjects under the General Data Protection Regulation ("GDPR") for the Data Analytics Module's (the "Module") unauthorized data transfer if the data transfer violated the GDPR? Please respond to me in here with a yes or no answer and a brief explanation.

Published trajectories

Agent runs on this task

Curated dual-harness runs (parsed + original sandbox). Best scored run per model.

ModelHarnessScoreResultLinks
GPT-5.5showcasedual1/2Fail
fireworks models Kimi K2dual1/2Fail
Gemini 3.1 Produal1/2Fail
GPT-5.4dual1/2Fail
GPT-5.4 minidual1/2Fail
GPT-5.4 nanodual0/2Fail

Grading rubric

Criteria and grader verdict (showcase run)

  1. States No, Northstar will not be required to compensate affected data subjects under the GDPR for the Data Analytics Module's unauthorized data transfer

    Pass

    Evidence: TEXT_RESPONSE says, “No — not automatically” and “Northstar would compensate only data subjects who can show compensable damage…; the violation alone does not require compensation.” Assessment: The criterion requires stating “No, Northstar will not be required to compensate affected data subjects…” This position is clearly conveyed, with qualification that compensation is only for proven damage. Pass.

  2. States that any harm suffered by the data subjects from the Data Analytics Module's unauthorized data transfer is negligible

    Fail

    Evidence: TEXT_RESPONSE discusses Article 82 requiring “material or non-material damage” and says compensation is owed only where subjects “can show compensable damage.” Assessment: The criterion requires stating that harm suffered by data subjects is negligible. The response does not say or imply the harm is negligible; it focuses on the legal requirement of damage and causation. Fail.