During the development of the General Data Protection Regulation (GDPR), European legislators recognized the need to protect individuals from harms resulting from automated decision-making. The concerns which motivated legislators to implement new regulations for automated decision-making in the data protection context are highly relevant and applicable to ongoing policy debates in the AWS space.