AI Act Conformity Assessment: Legal Considerations and Examples

Understanding AI Act conformity assessments is essential for organizations deploying AI systems. This article outlines the legal landscape and practical examples.

undefined

The European Union's AI Act aims to establish a comprehensive regulatory framework for artificial intelligence, ensuring safety, accountability, and respect for rights. Enacted in April 2021, the AI Act categorizes AI applications based on risk levels: unacceptable, high, limited, and minimal, and sets forth specific requirements for conformity assessments, particularly for high-risk AI systems. These assessments are crucial for compliance, ensuring that systems adhere to the law's provisions from the design stage through to deployment.An AI conformity assessment process, as outlined by the AI Act, involves evaluating whether an AI system meets fundamental requirements related to safety, transparency, and ethics. Compliance not only protects users and society but also mitigates legal liability for organizations deploying these technologies.

undefined

Conformity assessments under the AI Act focus on various key elements that organizations must adhere to:Risk Categorization: Organizations must categorize their AI systems to determine the level of assessment required. High-risk systems necessitate stricter scrutiny as per Articles 6 through 8 of the AI Act.Data Quality: High-risk AI systems must ensure the quality of training data, as outlined in Article 10. Poor data can lead to biased outcomes, compromising fairness and accuracy.Transparency Obligations: Article 13 mandates that organizations provide clear and detailed information regarding AI systems, informing users of potential risks.Post-Market Surveillance: Organizations must implement mechanisms for ongoing monitoring and risk management after deployment as stipulated in Article 61.Compliance with these points is not merely about following regulations; it enhances the credibility of AI entities and fosters trust among users and stakeholders.

undefined

Real-world examples of AI conformity assessments can shed light on the practical implications of the AI Act. For instance, the AI system deployed by facial recognition company Clearview AI faced scrutiny under various privacy regulations. Although it claimed compliance with laws, its controversial practices prompted public and legal challenges, illustrating the importance of thorough assessments.Another noteworthy case is the European Commission's partnership with the startup AIDA (AI for Data Analytics). The partnership led to structured assessments of AI models designed for public health, ensuring they met safety and effectiveness guidelines under the AI Act.Additionally, companies such as IBM and Microsoft have increased their focus on AI governance by implementing internal assessments aligned with the emerging EU regulations. A concrete example is IBM’s commitment to audit its AI systems regularly, emphasizing adherence to ethical guidelines and the mitigation of bias, thereby ensuring compliance ahead of the law's full implementation.

undefined

What is the AI Act conformity assessment? The AI Act conformity assessment is a review process mandated by the EU to evaluate if AI systems comply with established regulations, focusing on safety, ethics, and transparency.Who needs to conduct an AI conformity assessment? Organizations that develop or deploy high-risk AI systems must conduct a conformity assessment to ensure they meet the specific requirements set out in the AI Act.What are the consequences of non-compliance with the AI Act? Organizations failing to comply with the AI Act may face severe penalties, including fines up to €30 million or 6% of their global annual turnover, whichever is higher.