EU proposes a Regulation for Artificial Intelligence

EU proposes a Regulation for Artificial Intelligence

In April 2021, the European Commission (“EU”) published a Proposal for a Regulation laying down harmonised rules on Artificial Intelligence (Proposed AIA) with the purpose of creating a sustainable, secure, trustworthy and human-centric framework for Artificial Intelligence (AI) applications. The Proposed AIA will impose significant obligations for both EU and non-EU businesses. We outline below some of the key criteria and considerations on the extraterritorial scope of the AIA, and the possible impact on users and providers outside the EU.

Definition of AI systems

The Proposed AIA sets a broad definition for AI systems covering software embodying machine-learning approaches, traditional statistical approaches, and rules-based approaches. The Council Presidency revised the definition to prevent the inclusion of classic software systems not considered as AI systems in the scope of AIA, to ensure legal clarity and for a better reflection of what is an AI system. Despite the amended definition, Annex 1 includes methods which may create uncertainty as well as doubt in scope for businesses. For example, some people suggest that the “Bayesian estimation” in Annex 1 of the AIA should be deleted because “Bayesian techniques are not artificial intelligence but well proven mathematical formulas”. Nevertheless, that does not mean that all AI technologies defined as an AI system under the AIA will be subject to the applicable obligations.

Key roles

Although the main emphasis of the Proposed AIA is on providers and users of AI systems, there are also provisions which impose obligations to importers, product manufacturers, distributors, and authorised representatives of providers. Under this Proposal, a “provider” is either an organisation that develops the AI system or a third-party provider.

Moreover, the AIA will apply to a user which is stated as “any natural or legal person, agency, public authority or other body using an AI system under its authority”. The definition of the user was revised and the term “except where the AI system is used in the course of a personal non-professional activity” was removed from the proposed AIA. It is worth noting that the AIA will not apply to AI systems which are used exclusively for military purposes. There is also no provision under the Proposed AIA which covers AI systems and their outputs which are used for the sole purpose of research and development.

Representatives within the EU

When the importer cannot be identified, the provider of a high-risk AI system not established within the EU needs to appoint an authorised representative which is established within the EU to perform the tasks of the provider. The EU representative should keep a copy of the EU declaration of conformity and the technical documentation at the disposal of the national authorities, to cooperate with competent national authorities on any action in relation to the high-risk AI system and to provide the national competent authority with all the documents and information which are relevant to demonstrate the conformity of a high-risk AI-system when the request is reasoned.

Extraterritorial application

The AIA states that the provisions will apply outside the EU borders and the main criterion is whether impact of the AI system occurs or has effect within the EU. The legal or natural person which is responsible to make the AI system available for the first time in the EU market or to supply an AI for the first use directly to the user or for his/her own use in the EU market, will be subject to the obligations under AIA as a provider. Furthermore, with regards to providers who are not established within the EU, when the output produced by the system is used within the EU, they are subject to the obligations of the AIA. Despite the fact that there is no definition on “output” by the Proposed AIA, the definition of the AI system refers to outputs in the form of content, recommendations, predictions, decisions influencing the environments that it interacts with, etc.

Fines

The Proposed AIA sets administrative fines which depend on the severity of the breach. Fines can be demanding for AI tech companies all over the world, potentially reaching 6% of global turnover in relation to the most serious infringements.

*The Proposed AIA is still at the stages of negotiation and discussions by the European bodies responsible.

Cookie	Type	Duration	Description
cookielawinfo-checkbox-necessary	persistent	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-non-necessary	persistent	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non Necessary".
PHPSESSID	persistent	1 year	This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed.
viewed_cookie_policy	persistent	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
viewed_cookie_policy	persistent	1 year	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Type	Duration	Description
_ga	persistent	1 year	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, camapign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assigns a randoly generated number to identify unique visitors.
_gat_gtag	persistent	1 year	Identification code of website for tracking visits.
_gid	persistent	1 year	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
_hjid	persistent	1 year	Hotjar cookie. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the random user ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
_hjIncludedInSample	persistent	1 year	This cookie is set to let Hotjar know whether that visitor is included in the sample which is used to generate Heatmaps, Funnels, Recordings, etc.
has_recent_activity	persistent	1 year	This cookie is used to signal to the code repository website if the user has browsed other website resources during the current session.
tk_ai	persistent	1 year	Gathers information for our own, first party analytics tool about how our services are used. A collection of internal metrics for user activity, used to improve user experience.
tk_lr	persistent	1 year	This cookie is set by JetPack plugin on sites using WooCommerce. This is a referral cookie used for analyzing referrer behavior for Jetpack
tk_or	persistent	1 year	This cookie is set by JetPack plugin on sites using WooCommerce. This is a referral cookie used for analyzing referrer behavior for Jetpack
tk_qs	persistent	1 year	Gathers information for our own, first party analytics tool about how our services are used. A collection of internal metrics for user activity, used to improve user experience.
tk_r3d	persistent	1 year	The cookie is installed by JetPack. Used for the internal metrics fo user activities to improve user experience

Cookie	Type	Duration	Description
_fbp	persistent	1 year	This cookie is set by Facebook to deliver advertisement when they are on Facebook or a digital platform powered by Facebook advertising after visiting this website.
fr	persistent	1 year	The cookie is set by Facebook to show relevant advertisments to the users and measure and improve the advertisements. The cookie also tracks the behavior of the user across the web on sites that have Facebook pixel or Facebook social plugin.

EU proposes a Regulation for Artificial Intelligence

About this Article

Author

Share

EU proposes a Regulation for Artificial Intelligence

About this Article

Author

Share

Related articles

Stay Always In Touch