What You Need To Know
The EU AI Act is the world’s first comprehensive Artificial Intelligence legislation. The new rules will apply primarily to three groups: providers of AI established within the EU, third-country providers placing or putting AI into service in the Bloc, and AI users based in the Union.
When the Act comes into force, as early as 2023, businesses will require assistance in adhering to its provisions. This is not just to avoid fines, which could amount to 7% of turnover, but also to ensure continued trust amongst customers and users.
When the Act comes into force, as early as 2023, businesses will require assistance in adhering to its provisions. This is not just to avoid fines, which could amount to 7% of turnover, but also to ensure continued trust amongst customers and users.
Risk Criteria
The EU AI Act analyses and classifies AI systems into four categories according to the risk they pose to users for specific applications
- Low/minimal risk Permitted with no restrictions.
- Limited risk Permitted but subject to information/transparency obligations.
- High risk Permitted subject to compliance with AI requirements and ex-ante conformity assessment.
- Unacceptable risk Prohibited (e.g., social scoring)
Risk Criteria
The EU AI Act analyses and classifies AI systems into four categories according to the risk they pose to users for specific applications
Low
Permitted with no restrictions.
Limited
Permitted but subject to information/transparency obligations.
High
Permitted subject to compliance with AI requirements and ex-ante conformity assessment.
Unacceptable
Prohibited (e.g., social scoring)
What Is High Risk?
High risk systems include certain applications in the following areas:
AI systems used in products falling under the EU’s product safety legislation:
AI systems used in products falling under the EU’s product safety legislation:
Toys
Aviation
Cars
Medical Devices
Lifts
AI systems falling into these areas will have to be registered in an EU database:
Biometric identification and categorisation of natural persons
Management and operation of critical infrastructure
Education and vocational training
Employment and workers management, access to self-employment
Access to and enjoyment of essential private services and public services and benefits
“Providers of high-risk AI systems shall put a quality management system in place that ensures compliance with this Regulation” - EU AI Act, Article 17.1
In accordance with Article 17, compliance must be documented in a “systematic and orderly manner in the form of written policies, procedures and instructions”. Organisations can be providers and/or users of AI systems - and both will be covered by this legislation.
User obligations
- Operate AI systems in accordance with the instructions of use
- Ensure human oversight when using an AI system
- Monitor operation for possible risks
- Inform the provider or distributor about any serious incident or malfunctioning
- Comply with existing legal obligations (e.g., GDPR)
Provider obligations
- Establish and implement a quality AI management system internally, allowing for traceability and auditability
- Draw up and keep up to date technical documentation with high quality training, validation and testing data that is relevant and representative
- Log obligations to enable users to monitor the operation of the high-risk AI system
- Undergo conformity assessments of the system
- Register the system in an EU-wide database
- Affix CE marking and signing a declaration of conformity
- Conduct post-market monitoring
- Collaborate with market surveillance authorities
- Ensure robustness, accuracy and cybersecurity
Manage Your Risks with Enzai
The Enzai platform is the best way to manage AI governance risk. This is the only solution with a strong legal foundation to ensure compliance with the nuanced requirements of emerging legislation and industry codes of conduct.
Enzai’s platform provides compliance by design. The ready-made policy packs enable organisations to stay on top of and comply with emerging regulations and standards efficiently. Companies can even create their own policies for maximum flexibility.
Audits are made easy with the platform’s custom assessments. We provide increased assurance to resolve regulatory inquiries.
Enzai’s platform provides compliance by design. The ready-made policy packs enable organisations to stay on top of and comply with emerging regulations and standards efficiently. Companies can even create their own policies for maximum flexibility.
Audits are made easy with the platform’s custom assessments. We provide increased assurance to resolve regulatory inquiries.
Latest in EU AI Act
Join 2,122 others getting no-fuss AI Governance updates every month.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Compliance By Design
Speak to an Expert