Over the past decade, artificial intelligence (AI) has become a global strategic priority with a relentless focus and emphasis on development and implementation in almost every industry vertical. Recently, in particular, there has been some very notable changes in the world of Artificial Intelligence Regulation.
The Proposal for a Regulation on a European approach to Artificial Intelligence creates a new regulatory legal framework for the development, marketing and use of artificial intelligence in conformity with European Union values. These changes are uniquely positioning the EU to play a leading role in the advancement of Artificial Intelligence regulation on a global level.
The proposal also introduces a new European Artificial Intelligence Board, overseeing and coordinating enforcement of the proposal.
The regulations are wide-ranging and apply to:
The list of prohibited practices comprises all those AI systems whose use is considered unacceptable as contravening Union values, for instance by violating fundamental rights. Such rights include manipulative and exploitative practices where AI systems are being used to manipulate human behaviour through choice architectures.
Other prohibited AI practices will include:
Providers of high-risk AI systems will have to meet a range of obligations. The proposal defines high risk in two ways:
An AI system which is intended to be used as a safety component of a product, or is itself a product, covered by the Union harmonization legislation listed in Annex II.
A product whose safety component is the AI system, or the AI system itself as a product, is required to undergo a third-party conformity assessment with a view to the placing on the market or putting into service of that product pursuant to the Union harmonization legislation listed in Annex II.
Some of the obligations for high-risk AI systems include:
a) implementing a risk management system for the entire life cycle of a high-risk AI system.
b) implementing a Quality Management System (QMS) that ensures compliance with this Regulation.
Components of the QMS may include:
drawing up the relevant technical documentation
keeping logs generated by their high-risk AI systems
complying with conformity assessment and cooperating with authorities.
Plus, QMS should be documented in a systematic and orderly manner in the form of written policies, procedures and instructions, and shall include a strategy for regulatory compliance. This would include compliance with conformity-assessment procedures, and procedures for managing modifications to the high-risk AI system.
c) Distributors, importers, users and other third parties will also be subject to providers’ obligations if they:d) Manufacturers of products (which are covered by EU legislation, and include high-risk AI systems) are responsible for compliance as if they were the provider of the high-risk AI system.
The proposal states that a European Artificial Intelligence Board shall provide governance and oversight of the regulation. The Board will be composed of representatives of the appropriate regulators from each member state, as well as the European Data Protection Supervisor and the Commission.
In line with the new regulations, these authorities will have the power to issue fines and other forms of penalties which will generally be determined at a Member State level.
However, the regulation states that fines of up to €20m or 4% of a company's global turnover can be applied, where the infringement relates to undertaking prohibited AI practices or supplying incorrect or false information to notified bodies.
Read more about the newly proposed regulations here.