By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
DenyAccept
Table of Contents
Title I: General Provisions
Art. 1 Subject MatterArt. 2 ScopeArt. 3 DefinitionsArt. 4 Amendments to Annex I
Title IA: General Purpose AI Systems
Art. 4a Compliance of General Purpose AI Systems with this RegulationArt. 4b Requirements for General Purpose AI Systems and Obligations for Providers of such SystemsArt. 4c Exceptions to Article 4b
Title II: Prohibited Artificial Intelligence Practices
Art. 5 Prohibited Artificial Intelligence Practices
Title III: Classification of AI Systems as High-Risk
Chapter 1: Classification of AI Systems as High-Risk
Art. 6 Classification Rules for High-Risk AI Systems
Art. 7 Amendments to Annex IIIChapter 2: Requirements for High-Risk AI Systems
Art. 8 Compliance with the Requirements
Art. 9 Risk Management System
Art. 10 Data and Data Governance
Art. 11 Technical Documentation
Art. 12 Record-Keeping
Art. 13 Transparency and Provision of Information to Users
Art. 14 Human Oversight
Art. 15 Accuracy, Robustness and Cybersecurity
Chapter 3: Obligations of Providers and Users of High-Risk AI Systems and Other Parties
Art. 16 Obligations of Providers of High-Risk AI Systems
Art. 17 Quality Management System
Art. 18 Obligation to Draw Up Technical Documentation
Art. 19 Conformity Assessment
Art. 20 Automatically Generated Logs
Art. 21 Corrective Actions
Art. 22 Duty of Information
Art. 23 Cooperation with Competent Authorities
Art. 23a Conditions for Other Persons to be Subject to the Obligations of a Provider
Art. 24 [Deleted]
Art. 25 Authorised Representatives
Art. 26 Obligations of Importers
Art. 27 Obligations of Distributors
Art. 28 [Deleted]
Art. 29 Obligations of Users of High-Risk AI Systems
Chapter 4: Notifying Authorities and Notified Bodies
Art. 30 Notifying Authorities
Art. 31 Application of a Conformity Assessment Body for Notification
Art. 32 Notification Procedure
Art. 33 Requirements Relating to Notified BodiesArt. 33a Presumption of Conformity with Requirements Relating to Notified BodiesArt. 34 Subsidiaries of and Subcontracting by Notified Bodies
Art. 34a Operational Obligations of Notified Bodies
Art. 35 Identification Numbers and Lists of Notified Bodies Designated Under This Regulation
Art. 36 Changes to Notifications
Art. 37 Challenge to the Competence of Notified Bodies
Art. 38 Coordination of Notified Bodies
Art. 39 Conformity Assessment Bodies of Third Countries
Chapter 5: Standards, Conformity Assessment, Certification, Registration
Art. 40 Harmonised Standards
Art. 41 Common Specifications
Art. 42 Presumption of Conformity with Certain Requirements
Art. 43 Conformity Assessment
Art. 44 Certificates
Art. 45 Appeal Against Decisions of Notified Bodies
Art. 46 Information Obligations of Notified Bodies
Art. 47 Derogation From Conformity Assessment Procedure
Art. 48 EU Declaration of Conformity
Art. 49 CE Marking of Conformity
Art. 50 [Deleted]Art. 51 Registration of Relevant Operators and of High-Risk AI Systems Listed in Annex III
Title IV: Transparency Obligations for Certain AI Systems
Art. 52 Transparency Obligations for Providers and Users of Certain AI Systems
Title V: Measures in Support of Innovation
Art. 53 AI Regulatory SandboxesArt. 54 Further Processing of Personal Data for Developing Certain AI Systems in the Public Interest in the AI Regulatory SandboxArt. 54a Testing of High-Risk AI Systems in Real World Conditions Outside AI Regulatory SandboxesArt. 54b Informed Consent to Participate in Testing in Real World Conditions Outside AI Regulatory SandboxesArt. 55 Support Measures for Operators, in Particular SMEs, including Start-UpsArt. 55a Derogations for Specific Operators
Title VI: Governance
Chapter 1: European Artificial Intelligence Board
Art. 56 Establishment of the European Artificial Intelligence BoardArt. 57 [Deleted]
Art. 58 Tasks of the BoardChapter 1A: Guidelines From The Commission
Art. 58a Guidelines from the Commission on the Implementation of This RegulationChapter 2: National Competent Authorities
Art. 59 Designation of National Competent Authorities
Title VII: EU Database for Stand-Alone High-Risk AI Systems
Art. 60 EU Database for High-Risk AI Systems Listed in Annex III
Title VIII: Post-Market Monitoring, Information Sharing, Market Surveillance
Chapter 1: Post-Market Monitoring
Art. 61 Post-Market Monitoring by Providers and Post-Market Monitoring Plan for High-Risk AI SystemsChapter 2: Sharing of Information on Incidents and Malfunctioning
Art. 62 Reporting of Serious Incidents and of MalfunctioningChapter 3: Enforcement
Art. 63 Market Surveillance and Control of AI Systems in the Union MarketArt. 63a Supervision of Testing in Real World Conditions by Market Surveillance AuthoritiesArt. 64 Powers of Authorities Protecting Fundamental RightsArt. 65 Procedure for Dealing with AI Systems Presenting a Risk at National LevelArt. 66 Union Safeguard ProcedureArt. 67 Compliant AI Systems Which Present a RiskArt. 68 Formal Non-ComplianceArt. 68a Union Testing Facilities in the Area of Artificial IntelligenceArt. 68b Central Pool of Independent Experts
Title IX: Codes of Conduct
Art. 69 Codes of Conduct for Voluntary Application of Specific Requirements
Title X: Confidentiality and Penalties
Art. 70 Confidentiality
Art. 71 PenaltiesArt. 72 Administrative Fines on Union Institutions, Agencies and Bodies
Title XI: Delegation of Power and Committee Procedure
Art. 73 Exercise of the DelegationArt. 74 Committee Procedure
Title XII: Final Provisions
Art. 75 Amendment to Regulation (EC) No 300/2008Art. 76 Amendment to Regulation (EU) No 167/2013Art. 77 Amendment to Regulation (EU) No 168/2013Art. 78 Amendment to Directive 2014/90/EUArt. 79 Amendment to Directive (EU) 2016/797Art. 80 Amendment to Regulation (EU) 2018/858Art. 81 Amendment to Regulation (EU) 2018/1139Art. 82 Amendment to Regulation (EU) 2019/2144Art. 83 AI Systems Already Placed on the Market or Put Into ServiceArt. 84 Evaluation and ReviewArt. 85 Entry Into Force and Application
Privacy Policy | Liability

Article 9

Risk Management System

1. A risk management system shall be established, implemented, documented and maintained in relation to high-risk AI systems.

2. The risk management system shall be understood as a continuous iterative process planned and run throughout the entire lifecycle of a high-risk AI system, requiring regular systematic updating. It shall comprise the following steps:

  1. identification and analysis of the known and foreseeable risks most likely to occur to health, safety and fundamental rights in view of the intended purpose of the high-risk AI system;
  1. [deleted];
  1. evaluation of other possibly arising risks based on the analysis of data gathered from the post-market monitoring system referred to in Article 61;
  1. adoption of suitable risk management measures in accordance with the provisions of the following paragraphs.

The risks referred to in this paragraph shall concern only those which may be reasonably mitigated or eliminated through the development or design of the high-risk AI system, or the provision of adequate technical information.

3. The risk management measures referred to in paragraph 2, point (d) shall give due consideration to the effects and possible interaction resulting from the combined application of the requirements set out in this Chapter 2, with a view to minimising risks more effectively while achieving an appropriate balance in implementing the measures to fulfil those requirements.

4. The risk management measures referred to in paragraph 2, point (d) shall be such that any residual risk associated with each hazard as well as the overall residual risk of the high-risk AI systems is judged acceptable.

In identifying the most appropriate risk management measures, the following shall be ensured:

  1. elimination or reduction of risks identified and evaluated pursuant to paragraph 2 as far as possible through adequate design and development of the high risk AI system;
  1. where appropriate, implementation of adequate mitigation and control measures in relation to risks that cannot be eliminated;
  1. provision of adequate information pursuant to Article 13, in particular as regards the risks referred to in paragraph 2, point (b) of this Article, and, where appropriate, training to users.

With a view to eliminating or reducing risks related to the use of the high-risk AI system, due consideration shall be given to the technical knowledge, experience, education, training to be expected by the user and the environment in which the system is intended to be used.

5. High-risk AI systems shall be tested in order to ensure that high-risk AI systems perform in a manner that is consistent with their intended purpose and they are in compliance with the requirements set out in this Chapter.

6. Testing procedures may include testing in real world conditions in accordance with Article 54a.

7. The testing of the high-risk AI systems shall be performed, as appropriate, at any point in time throughout the development process, and, in any event, prior to the placing on the market or the putting into service. Testing shall be made against preliminarily defined metrics and probabilistic thresholds that are appropriate to the intended purpose of the high-risk AI system.

8. The risk management system described in paragraphs 1 to 7 shall give specific consideration to whether the high-risk AI system is likely to be accessed by or have an impact on persons under the age of 18.

9. For providers of high-risk AI systems that are subject to requirements regarding internal risk management processes under relevant sectorial Union law, the aspects described in paragraphs 1 to 8 may be part of the risk management procedures established pursuant to that law.

Suitable Recitals
(28) Mitigation of Safety Risks to Ensure Fundamental Rights
(42) Mandatory Requirements for Risk Mitigation
(43) Requirements for High-Risk AI Systems
(44) Implementing Data Governance and Management Practices
(45) Participation in Data Sharing
(46) Record Keeping Requirements
(54) Establishment of Quality Management System
(71) Establishment of Artificial Intelligence Regulatory Sandboxes
(78) Establishment of Post-Market Monitoring System
(80) Designation of Financial Services Authorities as Competent Authorities
Article 1
Article 2
Article 3
Article 4
Article 4a
Article 4b
Article 4c
Article 5
Article 6
Article 7
Article 8
Article 9
Article 10
Article 11
Article 12
Article 13
Article 14
Article 15
Article 16
Article 17
Article 18
Article 19
Article 20
Article 21
Article 22
Article 23
Article 23a
Article 24
Article 25
Article 26
Article 27
Article 28
Article 29
Article 30
Article 31
Article 32
Article 33
Article 33a
Article 34
Article 34a
Article 35
Article 36
Article 37
Article 38
Article 39
Article 40
Article 41
Article 42
Article 43
Article 44
Article 45
Article 46
Article 47
Article 48
Article 49
Article 50
Article 51
Article 52
Article 53
Article 54
Article 54a
Article 54b
Article 55
Article 55a
Article 56
Article 57
Article 58
Article 58a
Article 59
Article 60
Article 61
Article 62
Article 63
Article 63a
Article 64
Article 65
Article 66
Article 67
Article 68
Article 68a
Article 68b
Article 69
Article 70
Article 71
Article 72
Article 73
Article 74
Article 75
Article 76
Article 77
Article 78
Article 79
Article 80
Article 81
Article 82
Article 83
Article 84
Article 85
EU AI Act Table of Contents
Report error

Report error

Please keep in mind that this form is only for feedback and suggestions for improvement.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
© 2023 EUAIAct.com. All rights reserved.