279 Amendments of Juan Fernando LÓPEZ AGUILAR related to 2021/0106(COD)
Amendment 314 #
Proposal for a regulation
Recital 1
Recital 1
(1) The purpose of this Regulation is to improve the funensure a high level of protectioning of the internal market by laying down a uniform legal frameworkfundamental rights, health, safety and the environment, as well as the Union values enshrined in paArticular for the development, marketing and use of artificial intelligence in conformity with Union values. This Regulation pursues a number of overriding reasons of public interest, such as a high level of protection of health, safety and fundamental rights,le 2 of the Treaty on European Union (TEU), from harmful effects of the use of artificial intelligence systems in the Union while enhancing innovation and improving the functioning of the internal market. This Regulation lays down a uniform legal framework in particular for the development, the placing on the market, the putting into service and the use of artificial intelligence in conformity with Union values and it ensures the free movement of AI- based goods and services cross-border, thus preventing Member States from imposing restrictions on the development, marketing and use of AI systems, unless explicitly authorised by this Regulation.
Amendment 324 #
Proposal for a regulation
Recital 2
Recital 2
(2) Artificial intelligence systems (AI systems) can be easily deployed in multiple sectors of the economy and society, including cross border, and circulate throughout the Union. Certain Member States have already explored the adoption of national rules to ensure that artificial intelligence is safe and is developed and used in compliance with fundamental rights obligations. Differing national rules may lead to fragmentation of the internal market and decrease legal certainty for operators that develop or use AI systems. A consistent and high level of protection throughout the Union should therefore be ensured, while divergences hampering the free circulation of AI systems and related products and services within the internal market should be prevented, by laying down uniform obligations for operators and guaranteeing the uniform protection of overriding reasons of public interest and of rights of persons throughout the internal market based on Article 114 of the Treaty on the Functioning of the European Union (TFEU). To the extent thatAs AI systems rely on the processing of large volumes of data, including personal data, it is appropriate to base this Regulation contains specific rules on the protection of individuals with regard Article 16 of the TFEU, which enshrines the right of everyone to the processingtection of personal data concerning restrictions of the use of AI systems for ‘real-time’ remote biometric identification in publicly accessible spaces for the purpose of law enforcement, it is appropriate to base this Regulation, in as far as those specific rules are concerned, on Article 16 of the TFEU. In light of those specific rules andthem and provides for the adoption of rules on the protection of individuals with regard to the processing of personal data. In light of the recourse to Article 16 TFEU, it is appropriate to consult the European Data Protection Board.
Amendment 327 #
Proposal for a regulation
Recital 2 a (new)
Recital 2 a (new)
(2 a) This Regulation should not affect the restrictions, prohibitions or enforcement that apply where an artificial intelligence practice infringes another EU law, including EU acquis on data protection, privacy, or the confidentiality of communications, on non discrimination, consumer protection or on competition.
Amendment 335 #
Proposal for a regulation
Recital 4
Recital 4
(4) At the same time, depending on the circumstances regarding its specific application and use, as well as the level of technological development, artificial intelligence may generate risks and cause harm to public interests and rights that are protected by Union law. Such harm might be material or immaterial, including physical, psychological, societal or economic harm.
Amendment 341 #
Proposal for a regulation
Recital 4 a (new)
Recital 4 a (new)
(4 a) Given the major impact that artificial intelligence can have on society and the need to build trust, it is vital for artificial intelligence systems to respect the principles of fairness, accountability, transparency and accountability, privacy and security, and social benefit.
Amendment 350 #
Proposal for a regulation
Recital 5
Recital 5
(5) A Union legal framework laying down harmonised rules on artificial intelligence is therefore needed to foster the development, use and uptake of artificial intelligence in the internal market that at the same time meets a high level of protection of public interests, such as health and safety and the protection of fundamental rights, health and safety, as recognised and protected by Union law. To achieve that objective, rules regulating the development, the placing on the market and, putting into service and the use of certain AI systems should be laid down, thus ensuring the smooth functioning of the internal market and allowing those systems to benefit from the principle of free movement of goods and services. By laying down those rules, this Regulation supports the objective of the Union of being a global leader in the development of secure, trustworthy and ethical artificial intelligence, as stated by the European Council33 , and it ensures the protection of ethical principles, as specifically requested by the European Parliament34 . _________________ 33 European Council, Special meeting of the European Council (1 and 2 October 2020) – Conclusions, EUCO 13/20, 2020, p. 6. 34 European Parliament resolution of 20 October 2020 with recommendations to the Commission on a framework of ethical aspects of artificial intelligence, robotics and related technologies, 2020/2012(INL).
Amendment 359 #
Proposal for a regulation
Recital 6
Recital 6
(6) The notion of AI system should be clearly defined to ensure legal certainty, while providing the flexibility to accommodate future technological developments. The definition should be based on the key functional characteristics of the software, in particular the ability, for a given set of human-defined objective to perceive, reason and act on machine and/or human-based inputs, to generate outputs such as content, hypotheses, predictions, recommendations, or decisions which influence the environment with which the system interacts, be it in a physical or digital dimension. AI systems can be designed to operate with varying levels of autonomy and be used on a stand- alone basis or as a component of a product, irrespective of whether the system is physically integrated into the product (embedded) or serve the functionality of the product without being integrated therein (non-embedded). The definition of AI system should be complemented by a list of specific techniques and approaches used for its development, which should be kept up-to–date in the light of market and technological developments through the adoption of delegated acts by the Commission to amend that list.
Amendment 369 #
Proposal for a regulation
Recital 7
Recital 7
(7) The notion of biometric data used in this Regulation is in line with and should be interpreted consistently with the notion of biometric data asthe same as that defined in Article 4(14) of Regulation (EU) 2016/679 of the European Parliament and of the Council35 , Article 3(18) of Regulation (EU) 2018/1725 of the European Parliament and of the Council36 and Article 3(13) of Directive (EU) 2016/680 of the European Parliament and of the Council37 . _________________ 35 Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ L 119, 4.5.2016, p. 1). 36 Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC (OJ L 295, 21.11.2018, p. 39) 37 Directive (EU) 2016/680 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA (Law Enforcement Directive) (OJ L 119, 4.5.2016, p. 89).
Amendment 371 #
Proposal for a regulation
Recital 8
Recital 8
(8) The notion of remote biometric identification system as used in this Regulation should be defined functionally, as an AI system intended for the identification of natural persons at a distance through the comparison of a person’s biometric data with the biometric data contained in a reference database, and without prior knowledge whether the targeted person will be present and can be identified, irrespectively of the particular technology, processes or types of biometric data used. Considering their different characteristics and manners in which they are used, as well as the different risks involved, a distinction should be made between ‘real-time’ and ‘post’ remote biometric identification systems. In the case of ‘real-time’ systems, the capturing of the biometric data, the comparison and the identification occur all instantaneously, near-instantaneously or in any event wiperforming automated recognition of physical, physiological, behavioural, and psychological human features, for the purpose of identification of natural persons throut a significant delay. In this regard, there should be no scope for circumventing the rules of this Regulation on the ‘real-time’ use of the AI systems in question by providing for minor delays. ‘Real-time’ systems involve the use of ‘live’ or ‘near-‘live’ material, such as video footage, generated by a camera or other device with similar functionality. In the case of ‘post’ systems, in contrast, the biometric data have already been captured and the comparison and identification occur only after a significant delay. This involves material, such as pictures or video footage generated by closed circuit television cameras or private devices, which has been generated befgh the comparison of a person’s biometric data with the biometric data contained in a reference database, irrespectively of the particular technology, processes ore the use of the system in respect of the natural persons concernypes of biometric data used.
Amendment 383 #
Proposal for a regulation
Recital 9
Recital 9
(9) For the purposes of this Regulation the notion of publicly accessible space should be understood as referring to any physical place that is accessible to the public, irrespective of whether the place in question is privately or publicly owned. Therefore, the notion does not cover places that are private in nature and normally not freely accessible for third parties, including law enforcement authorities, unless those parties have been specifically invited or authorised, such as homes, private clubs, offices, warehouses and factories. Online spaces are not covered either, as they are not physical spaces. However, the mere fact that certain conditions for accessing a particular space may apply, such as admission tickets or age restrictions, does not mean that the space is not publicly accessible within the meaning of this Regulation. Consequently, in addition to public spaces such as streets, relevant parts of government buildings and most transport infrastructure, spaces such as cinemas, theatres, shops and shopping centres are normally also publicly accessible. Whether a given space is accessible to the public should however be determined on a case-by-case basis, having regard to the specificities of the individual situation at hand.
Amendment 391 #
Proposal for a regulation
Recital 11
Recital 11
(11) In light of their digital nature, certain AI systems should fall within the scope of this Regulation even when they are neither placed on the market, nor put into service, nor used in the Union. This is the case for example of an operator established in the Union that contracts certain services to an operator established outside the Union in relation to an activity to be performed by an AI system that would qualify as high-risk and whose effects impact natural persons located in the Union. In those circumstances, the AI system used by the operator outside the Union could process data lawfully collected in and transferred from the Union, and provide to the contracting operator in the Union the output of that AI system resulting from that processing, without that AI system being placed on the market, put into service or used in the Union. To prevent the circumvention of this Regulation and to ensure an effective protection of natural persons located in the Union, this Regulation should also apply to providers and users of AI systems that are established in a third country, to the extent the output produced by those systems is used in the Union. Nonetheless, to take into account existing arrangements and special needs for cooperation with foreign partners with whom information and evidence is exchanged, this Regulation should not apply to public authorities of a third country and international organisations when acting in the framework of international agreements concluded at national or European level for law enforcement and judicial cooperation with the Union or with its Member States. Such agreements have been concluded bilaterally between Member States and third countries or between the European Union, Europol and other EU agencies and third countries and international organisations or it affects natural persons within the Union.
Amendment 436 #
Proposal for a regulation
Recital 17
Recital 17
(17) AI systems providing social scoring of natural persons for general purpose by public authorities or on their behalf may lead to discriminatory outcomes and the exclusion of certain groups. They may violate the right to dignity and non- discrimination and the values of equality and justice. Such AI systems evaluate or classify the trustworthiness of natural persons based on their social behaviour in multiple contexts or known or predicted personal or personality characteristics. The social score obtained from such AI systems may lead to the detrimental or unfavourable treatment of natural persons or whole groups thereof in social contexts, which are unrelated to the context in which the data was originally generated or collected or to a detrimental treatment that is disproportionate or unjustified to the gravity of their social behaviour. Such AI systems should be therefore prohibited.
Amendment 440 #
Proposal for a regulation
Recital 17 a (new)
Recital 17 a (new)
(17 a) AI systems used by law enforcement authorities or on their behalf to make predictions, profiles or risk assessments based on data analysis or profiling of natural groups or locations, for the purpose of predicting the occurrence or reoccurrence of an actual or potential criminal offence(s) or other criminalised social behaviour, hold a particular risk of discrimination against certain persons or groups of persons, as they violate human dignity as well as the key legal principle of presumption of innocence. Such AI systems should therefore be prohibited.
Amendment 447 #
Proposal for a regulation
Recital 18
Recital 18
(18) The use of AI systems for ‘real- time’ remote biometric identification of natural persons in publicly or privately accessible spaces, as well as online spaces, for the purpose of law enforcement is considered particularly intrusive in the rights and freedoms of the concerned persons, to the extent that it may affect the private life of a large part of the population, evoke a feeling of constant surveillance and indirectly dissuade the exercise of the freedom of assembly and other fundamental rights. In addition, the immediacy of the impact and the limited opportunities for further checks or corrections in relation to the use ofTechnical inaccuracies of AI systems intended for the remote biometric identification of natural persons can lead to biased results and entail discriminatory effects. This is particularly relevant when it comes to age, ethnicity, sex or disabilities. In addition, whether such systems operatingare used in ‘'real- time’ carry' or post factum, there is little difference on the impact and the heightened risks for the rights and freedoms of the persons that are concerned by law enforcement activities. The placing or making available on the market, the putting into service or use of those systems should therefore be prohibited.
Amendment 456 #
Proposal for a regulation
Recital 18 a (new)
Recital 18 a (new)
(18 a) Despite progress regarding biometric identification technologies, the accuracy of the results still varies across technologies and depends on contextual factors. Even the relatively well- established fingerprint identification applications face challenges, in particular at the stage of the collection of biometric data (related to, for example, subject's age). The reliability of face recognition technologies in 'real world' settings is highly dependent on the quality of the images captured and on the quality of the algorithms used for biometric matching. During enrolment, poor quality images taken at e-gates or through a CCTV camera under variable environmental conditions may result in less accurate results. As in the case of automated fingerprint identification, changes in a person's physical characteristics over time may also affect the accuracy of facial recognition technologies. Research has found a considerable degradation in performance for face recognition algorithms on children as compared to the performance obtained on adults. In light of this, the placing or making available on the market, the putting into service or use of remote biometric identification systems should be prohibited.
Amendment 460 #
Proposal for a regulation
Recital 18 b (new)
Recital 18 b (new)
(18 b) There are serious concerns about the scientific basis of AI systems aiming to detect emotions from facial expressions. Facial expressions and perceptions thereof vary considerably across cultures and situations, and even within a single person. Among the key shortcomings of such technologies are the limited reliability (emotion categories are neither reliably expressed through, nor unequivocally associated with, a common set of facial movements), the lack of specificity (facial expressions do not perfectly match emotion categories) and the limited generalisability (the effects of context and culture are not sufficiently considered). Reliability issues may also arise when deploying the system in real- life situations, for example, when dealing with subjects who actively seek (and train themselves) to fool the system. Therefore, the placing on the market, putting into service, or use of AI systems intended to be used as polygraphs and similar tools to detect the emotional state, trustworthiness or related characteristics of a natural person, should be prohibited.
Amendment 463 #
Proposal for a regulation
Recital 19
Recital 19
Amendment 475 #
Proposal for a regulation
Recital 20
Recital 20
Amendment 482 #
Proposal for a regulation
Recital 21
Recital 21
Amendment 493 #
Proposal for a regulation
Recital 22
Recital 22
Amendment 500 #
Proposal for a regulation
Recital 23
Recital 23
Amendment 510 #
Proposal for a regulation
Recital 24
Recital 24
(24) Any processing of biometric data and other personal data involved in the use of AI systems for biometric identification, other than in connection to the use of ‘real-time’ remote biometric identification systems in publicly accessible spaces for the purpose of law enforcement as regulated by this Regulation, including where those systems are used by competent authorities in publicly accessible spaces for other purposes than law enforcement, should continue to comply with all requirements resulting from Article 9(1) of Regulation (EU) 2016/679, Article 10(1) of Regulation (EU) 2018/1725 and Article 10 of Directive (EU) 2016/680, as applicable.
Amendment 524 #
Proposal for a regulation
Recital 27
Recital 27
(27) High-risk AI systems should only be placed on the Union market or put into service if they comply with certain mandatory requirements. Those requirements should ensure that high-risk AI systems available in the Union or whose output is otherwise used in the Union do not pose unacceptable risks to important Union public interests as recognised and protected by Union law and do not breach the Union values enshrined in Article 2 TEU or the principles applicable to all AI systems as per this Regulation. AI systems identified as high-risk should be limited to those that have a significant harmful impact on the health, safety and fundamental rights of persons in the Union, their health and safety and such limitation minimises any potential restriction to international trade, if any.
Amendment 543 #
Proposal for a regulation
Recital 32 a (new)
Recital 32 a (new)
Amendment 544 #
Proposal for a regulation
Recital 33
Recital 33
Amendment 569 #
Proposal for a regulation
Recital 37
Recital 37
(37) Another area in which the use of AI systems deserves special consideration is the access to and enjoyment of certain essential private and public services and benefits necessary for people to fully participate in society or to improve one’s standard of living. In particular, AI systems used to evaluate the credit score or creditworthiness of natural persons should be classified as high-risk AI systems, since they determine those persons’ access to financial resources or essential services such as housing, electricity, and telecommunication services. AI systems used for this purpose may lead to discrimination of persons or groups and perpetuate historical patterns of discrimination, for example based on racial or ethnic origins, disabilities, age, sexual orientation, or create new forms of discriminatory impacts. Considering the very limited scale of the impact and the available alternatives on the market, it is appropriate to exempt AI systems for the purpose of creditworthiness assessment and credit scoring when put into service by small-scale providers for their own use. Natural persons applying for or receiving public assistance benefits and services from public authorities are typically dependent on those benefits and services and in a vulnerable position in relation to the responsible authorities. If AI systems are used for determining whether such benefits and services should be denied, reduced, revoked or reclaimed by authorities, they may have a significant impact on persons’ livelihood and may infringe their fundamental rights, such as the right to social protection, non- discrimination, human dignity or an effective remedy. Those systems should therefore be classified as high-risk. Nonetheless, this Regulation should not hamper the development and use of innovative approaches in the public administration, which would stand to benefit from a wider use of compliant and safe AI systems, provided that those systems do not entail a high risk to legal and natural persons. Finally, AI systems used to dispatch or establish priority in the dispatching of emergency first response services should also be classified as high- risk since they make decisions in very critical situations for the life and health of persons and their property.
Amendment 577 #
Proposal for a regulation
Recital 37 a (new)
Recital 37 a (new)
(37 a) Given the speed at which AI applications are being developed around the world, it is not feasible to compile an exhaustive listing of applications that should be prohibited or considered high- risk. What is needed is a clear and coherent governance model guaranteeing both the fundamental rights of individuals and legal clarity for operators, considering the continuous evolution of technology. Nevertheless, given the role and responsibility of police and judicial authorities, and the impact of decisions they take for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, the use of AI applications has to be categorised as high-risk in instances where there is the potential to significantly affect the lives of individuals.
Amendment 579 #
Proposal for a regulation
Recital 38
Recital 38
(38) Actions by law enforcement authorities involving certain uses of AI systems are characterised by a significant degree of power imbalance and may lead to surveillance, arrest or deprivation of a natural person’s liberty as well as other adverse impacts on fundamental rights guaranteed in the Charter. In particular, if the AI system is not trained with high quality data, does not meet adequate requirements in terms of its performance, including its accuracy or robustness, or is not properly designed and tested before being put on the market or otherwise put into service, it may single out people in a discriminatory or otherwise incorrect or unjust manner. Furthermore, the exercise of important procedural fundamental rights, such as the right to an effective remedy and to a fair trial as well as the right of defence and the presumption of innocence, could be hampered, in particular, where such AI systems are not sufficiently transparent, explainable and documented. It is therefore appropriate to classify as high-risk a number of AI systems intended to be used in the law enforcement context where accuracy, reliability and transparency is particularly important to avoid adverse impacts, retain public trust and ensure accountability and effective redress. In view of the nature of the activities in question and the risks relating thereto, those high-risk AI systems should include in particular AI systems intended to be used by law enforcement authorities for individual risk assessments, polygraphs and similar tools or to detect the emotional state of natural person, to detect ‘deep fakes’, for the evaluation of the reliability of evidence in criminal proceedings, for predicting the occurrence or reoccurrence of an actual or potential criminal offence based on profiling of natural persons, or assessing personality traits and characteristics or past criminal behaviour of natural persons or groups, for profiling in the course of detection, investigation or prosecution of criminal offences, as well as for crime analytics regarding natural persons. AI systems specifically intended to be used for administrative proceedings by tax and customs authorities should not be considered high-risk AI systems used by law enforcement authorities for the purposes of prevention, detection, investigation and prosecution of criminal offences.
Amendment 585 #
Proposal for a regulation
Recital 38 a (new)
Recital 38 a (new)
(38 a) The use of AI tools by law enforcement and judicial authorities should not become a factor of inequality, social fracture or exclusion. The impact of the use of AI tools on the defence rights of suspects should not be ignored, notably the difficulty in obtaining meaningful information on their functioning and the consequent difficulty in challenging their results in court, in particular by individuals under investigation.
Amendment 587 #
Proposal for a regulation
Recital 39
Recital 39
(39) AI systems used in migration, asylum and border control management affect people who are often in particularly vulnerable position and who are dependent on the outcome of the actions of the competent public authorities. The accuracy, non-discriminatory nature and transparency of the AI systems used in those contexts are therefore particularly important to guarantee the respect of the fundamental rights of the affected persons, notably their rights to free movement, non- discrimination, protection of private life and personal data, international protection and good administration. It is therefore appropriate to classify as high-risk AI systems intended to be used by the competent public authorities charged with tasks in the fields of migration, asylum and border control management as polygraphs and similar tools or to detect the emotional state of a natural person; for assessing certain risks posed by natural persons entering the territory of a Member State or applying for visa or asylum; for verifying the authenticity of the relevant documents of natural persons; for assisting competent public authorities for the examination of applications for asylum, visa and residence permits and associated complaints with regard to the objective to establish the eligibility of the natural persons applying for a status. AI systems in the area of migration, asylum and border control management covered by this Regulation should comply with the relevant procedural requirements set by the Directive 2013/32/EU of the European Parliament and of the Council49 , the Regulation (EC) No 810/2009 of the European Parliament and of the Council50 and other relevant legislation. _________________ 49 Directive 2013/32/EU of the European Parliament and of the Council of 26 June 2013 on common procedures for granting and withdrawing international protection (OJ L 180, 29.6.2013, p. 60). 50 Regulation (EC) No 810/2009 of the European Parliament and of the Council of 13 July 2009 establishing a Community Code on Visas (Visa Code) (OJ L 243, 15.9.2009, p. 1).
Amendment 608 #
Proposal for a regulation
Recital 41
Recital 41
(41) The fact that an AI system is classified as high risk under this Regulation should not be interpreted as indicating that the use of the system is necessarily lawful under other acts of Union law or under national law compatible with Union law, such as on the protection of personal data, on the use of polygraphs and similar tools or other systems to detect the emotional state of natural persons. Any such use should continue to occur solely in accordance with the applicable requirements resulting from the Charter and from the applicable acts of secondary Union law and national law. This Regulation should not be understood as providing for the legal ground for processing of personal data, including special categories of personal data, where relevant.
Amendment 629 #
Proposal for a regulation
Recital 44
Recital 44
(44) High data quality is essential for the performance of many AI systems, especially when techniques involving the training of models are used, with a view to ensure that the high-risk AI system performs as intended and safely and it does not become the source of discrimination prohibited by Union law. High quality training, validation and testing data sets require the implementation of appropriate data governance and management practices. Training datasets, and where applicable, validation and testing data sets should be sufficiently relevant, representative and free of errors and complete in view of the intended purpose of the system, including the labels, shall be relevant, representative, up-to-date, and to the best extent possible, free of errors and complete. They should also have the appropriate statistical properties, including as regards the persons or groups of persons on which the high-risk AI system is intended to be used. In particular, training, validation and testing data sets should take into account, to the extent required in the light of their intended purpoby the intended purpose, the foreseeable uses and reasonably foreseeable misuses of AI systems with indeterminate uses, the features, characteristics or elements that are particular to the specific geographical, behavioural or functional setting or context within which the AI system is intended to be used. In order to protect the right of others from the discrimination that might result from the bias in AI systems, the providers shouldbe able to process also special categories of personal data, as a matter of substantial public interest, in order to ensure the bias monitoring, detection and correction in relation to high-risk AI systems.
Amendment 631 #
Proposal for a regulation
Recital 44 a (new)
Recital 44 a (new)
(44 a) Biases can be inherent in underlying datasets, especially when historical data is being used, introduced by the developers of the algorithms, or generated when the systems are implemented in real world settings. Any result provided by an AI system is necessarily influenced by the quality of the data used, and such inherent biases are inclined to gradually increase and thereby perpetuate and amplify existing discrimination, in particular for persons belonging to certain ethnic groups or racialised communities.
Amendment 638 #
Proposal for a regulation
Recital 47 a (new)
Recital 47 a (new)
(47 a) It is vital to ensure that the development, deployment and use of AI systems for the judiciary and law enforcement comply with fundamental rights, and are trusted by citizens, as well as in order to ensure that results generated by AI algorithms can be rendered intelligible to users and to those subject to these systems, and that there is transparency on the source data and how the system arrived at a certain conclusion. To this aim, law enforcement or judiciary authorities in the Union should use only such AI systems whose algorithms and logic are auditable and accessible at least to the police and the judiciary, as well as independent auditors, to allow for their evaluation, auditing and vetting, and such systems should not be closed or labelled as proprietary by the vendors.
Amendment 661 #
Proposal for a regulation
Recital 56
Recital 56
(56) To enable enforcement of this Regulation and create a level-playing field for operators, and taking into account the different forms of making available of digital products, it is important to ensure that, under all circumstances, a person established in the Union can provide authorities with all the necessary information on the compliance of an AI system. Therefore, prior to making their AI systems available in the Unionplacing any AI system on the Union market, putting it into service or using it, where an importer cannot be identified, provideoperators established outside the Union shallould, by written mandate, appoint an authorised representative established in the Union. legal representative established in the Union. The legal representative should act on behalf of the operator and may be addressed by any competent authorities for the purpose of this Regulation. The designation of such a legal representative does not affect the responsibility or liability of the operator under this Regulation. Such a legal representative should perform its tasks according to the mandate received from the operator, including cooperating with the national supervisory authorities with regard to any action taken to ensure compliance with this Regulation. The designated legal representative should be subject to enforcement proceedings in the event of non-compliance by the operator.
Amendment 668 #
Proposal for a regulation
Recital 58 a (new)
Recital 58 a (new)
Amendment 701 #
Proposal for a regulation
Recital 68
Recital 68
Amendment 704 #
Proposal for a regulation
Recital 69
Recital 69
(69) In order to facilitate the work of the Commission and the Member States in the artificial intelligence field as well as to increase the transparency towards the public, both providers and users of high- risk AI systems other than those related to products falling within the scope of relevant existing Union harmonisation legislation, should be required to register their high-risk AI system in a EU database, to be established and managed by the Commission. Users who are public authorities or European Union institutions, bodies, offices and agencies or users acting on their behalf should also register in the EU database before putting into service or using any AI system. The Commission should be the controller of that database, in accordance with Regulation (EU) 2018/1725 of the European Parliament and of the Council55 . In order to ensure the full functionality of the database, when deployed, the procedure for setting the database should include the elaboration of functional specifications by the Commission and an independent audit report. _________________ 55 Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ L 119, 4.5.2016, p. 1).
Amendment 712 #
Proposal for a regulation
Recital 70
Recital 70
(70) Certain AI systems intended to interact with natural persons or to generate content may pose specific risks of impersonation or deception irrespective of whether they qualify as high-risk or not. In certain circumstances, the use of these systems should therefore be subject to specific transparency obligations without prejudice to the requirements and obligations for high-risk AI systems. In particular, natural persons should be notified that they are interacting with an AI system, unless this is obvious from the circumstances and the context of use. Moreover, natural persons should be notified when they are exposed to an emotion recognition system or a biometric categorisation system. Such information and notifications should be provided in accessible formats for persons with disabilities. Further, users, who use an AI system to generate or manipulate image, audio or video content that appreciably resembles existing persons, places or events and would falsely appear to a person to be authentic, should disclose that the content has been artificially created or manipulated by labelling the artificial intelligence output accordingly and disclosing its artificial origin.
Amendment 722 #
Proposal for a regulation
Recital 71
Recital 71
(71) Artificial intelligence is a rapidly developing family of technologies that requires novel forms of regulatory oversight and a safe space for experimentation, while ensuring responsible innovation and integration of appropriate safeguards and risk mitigation measures. To ensure a legal framework that safeguards fundamental rights and is innovation-friendly, future-proof and resilient to disruption, national competentsupervisory authorities from one or more Member States should be encouraged tocould establish artificial intelligence regulatory sandboxes to facilitate the development and testing of innovative AI systems under strict regulatory oversight before these systems are placed on the market or otherwise put into service.
Amendment 727 #
Proposal for a regulation
Recital 72
Recital 72
(72) The objectives of the regulatory sandboxes should be to foster AI innovation, while safeguarding fundamental rights and the values enshrined in Article 2 TFEU, by establishing a controlled experimentation and testing environment in the development and pre-marketing phase with a view to ensuring compliance of the innovative AI systems with this Regulation and other relevant Union and Member States legislation; to enhance legal certainty for innovators and the competentnational supervisory authorities’ oversight and understanding of the opportunities, emerging risks and the impacts of AI use, and to accelerate access to markets, including by removing barriers for small and medium enterprises (SMEs) and start- ups. To ensure uniform implementation across the Union and economies of scale, it is appropriate to establish common rules for the regulatory sandboxes’ implementation and a framework for cooperation between the relevant authorities involved in the supervision of the sandboxes. This Regulation should provide the legal basis for the use of personal data collected for other purposes for developing certain AI systems in the public interest within the AI regulatory sandbox, in line with Article 6(4) of Regulation (EU) 2016/679, and Article 6 of Regulation (EU) 2018/1725, and without prejudice to Article 4(2) of Directive (EU) 2016/680national supervisory authorities involved in the supervision of the sandboxes. Participants in the sandbox should ensure appropriate safeguards and cooperate with the competentnational supervisory authorities, including by following their guidance and acting expeditiously and in good faith to mitigate any high-risks to safety and fundamental rights that may arise during the development and experimentation in the sandbox. The conduct of the participants in the sandbox should be taken into account when competent authorities decide whether to impose an administrative fine under Article 83(2) of Regulation 2016/679 and Article 57 of Directive 2016/680.
Amendment 738 #
Proposal for a regulation
Recital 76
Recital 76
(76) In order to facilitate a smooth, effective and harmconsisedtent implementation of this Regulation an independent European Artificial Intelligence Board should be established. The Board should be responsible for a number of advisory tasks, including issuing opinions, recommendations, advice or guidance on matters related to the implementation of this Regulation, including on technical specifications or existing standards regarding the requirements established in this Regulation and providing advice to and assisting the Commission on specific questions related to artificial intelligence, including on possible amendments of the annexes, in particular the annex listing high-risk AI systems. To contribute to the effective and harmonised enforcement of this Regulation, the Board should also be able to adopt binding decisions for the settlement of cases involving two or more Member States in which the national supervisory authorities are in disagreement or when it is not clear who the lead national supervisory authority is. The Board should also be able to adopt a binding decision in those cases when a national supervisory authority of a Member State finds that although an AI system is in compliance with this Regulation, it presents a risk to the compliance with obligations under Union or national law intended to protect fundamental rights, the principles of Article 4a, the values as enshrined in Article 2 TEU, the environment, or to other aspects of public interest protection.
Amendment 745 #
Proposal for a regulation
Recital 77
Recital 77
(77) Each Member States should a key role in the application and enforcement of this Regulation. In this respect, each Member State should designate one or more national competent authorities for the purpose of supervising the application andestablish or designate a single national supervisory authority to act as the lead authority and be responsible for ensuring the effective coordination between the national competent authorities regarding the implementation of this Regulation. In order to inct should also reprease organisation efficiency on the side of Member States and to set an official point of contact vis-à-vis the public and other counterparts at Member Stant its Member State on the Board. Each national supervisory authority should act with complete aind Union levels, in each Member State one national authority should be designated as national supervisory authorityependence in performing its tasks and exercising its powers in accordance with this Regulation.
Amendment 746 #
Proposal for a regulation
Recital 77 a (new)
Recital 77 a (new)
(77 a) The national supervisory authorities should monitor the application of the provisions pursuant to this Regulation and contribute to its consistent application throughout the Union. For that purpose, the national supervisory authorities should cooperate with each other, with the market surveillance authorities and with the Commission, without the need for any agreement between Member States on the provision of mutual assistance or on such cooperation.
Amendment 764 #
Proposal for a regulation
Recital 84 a (new)
Recital 84 a (new)
(84 a) In order to strengthen and harmonise administrative penalties for infringements of this Regulation, each national supervisory authority should have the power to impose administrative fines. This Regulation should indicate infringements and the upper limit for setting the related administrative fines, which should be determined by the national supervisory authority in each individual case, taking into account all relevant circumstances of the specific situation, with due regard in particular to the nature, gravity and duration of the infringement and of its consequences and the measures taken to ensure compliance with the obligations under this Regulation and to prevent or mitigate the consequences of the infringement.
Amendment 767 #
Proposal for a regulation
Recital 84 b (new)
Recital 84 b (new)
(84 b) Natural persons, affected by an AI system falling within the scope of this Regulation, should have the right to lodge a complaint against the providers or users of such AI system with a national supervisory authority, if they consider that their fundamental rights, health or safety have been breached. An affected person should also have the right to mandate a not-for-profit body, organisation or association that has been properly constituted in accordance with the law of a Member State, to lodge the complaint on their behalf.
Amendment 784 #
Proposal for a regulation
Article 1 – paragraph 1 – introductory part
Article 1 – paragraph 1 – introductory part
The purpose of this Regulation is to ensure a high level of protection of fundamental rights, health, safety and the environment from harmful effects of the use of artificial intelligence systems in the Union while enhancing innovation. This Regulation lays down:
Amendment 789 #
Proposal for a regulation
Article 1 – paragraph 1 – point a
Article 1 – paragraph 1 – point a
(a) harmonised rules for the development, placing on the market, the putting into service and the use of artificial intelligence systems (‘AI systems’) in the Union;
Amendment 793 #
Proposal for a regulation
Article 1 – paragraph 1 – point c a (new)
Article 1 – paragraph 1 – point c a (new)
(c a) harmonised rules on high-risk AI systems to ensure a high level of trustworthiness and protection of fundamental rights, health and safety
Amendment 794 #
Proposal for a regulation
Article 1 – paragraph 1 – point d
Article 1 – paragraph 1 – point d
(d) harmonised transparency rules for AI systems intended to interact with natural persons, emotion recognition systems and biometric categorisation systems, and AI systems used to generate or manipulate image, audio or video content;
Amendment 816 #
Proposal for a regulation
Article 2 – paragraph 1 – point a
Article 2 – paragraph 1 – point a
(a) provideoperators placing on the market or putting into service AI systems in the Union, irrespective of whether those provideoperators are established within the Union or in a third country;
Amendment 821 #
Proposal for a regulation
Article 2 – paragraph 1 – point b
Article 2 – paragraph 1 – point b
(b) users of AI systems that are located within the Union;
Amendment 825 #
Proposal for a regulation
Article 2 – paragraph 1 – point c
Article 2 – paragraph 1 – point c
(c) providers and users of AI systems that are located in a third country, where the output produced by the system is used in the Union or affects natural persons within the Union;
Amendment 832 #
Proposal for a regulation
Article 2 – paragraph 1 – point c a (new)
Article 2 – paragraph 1 – point c a (new)
(c a) natural persons, affected by the use of an AI system, who are in the Union;
Amendment 835 #
Proposal for a regulation
Article 2 – paragraph 1 – point c b (new)
Article 2 – paragraph 1 – point c b (new)
(c b) providers placing on the market or putting into service AI systems outside the Union where the provider is located within the Union;
Amendment 840 #
Proposal for a regulation
Article 2 – paragraph 1 a (new)
Article 2 – paragraph 1 a (new)
1 a. This Regulation shall apply to Union institutions, offices, bodies and agencies when acting as an operator of an AI system.
Amendment 872 #
Proposal for a regulation
Article 2 – paragraph 3 a (new)
Article 2 – paragraph 3 a (new)
3 a. Union law on the protection of personal data, privacy and the confidentiality of communications applies to personal data processed in connection with the rights and obligations laid down in this Regulation. This Regulation shall not affect Regulations (EU) 2016/679, (EU) 2018/1725 or Directives 2002/58/EC and (EU) 2016/680.
Amendment 882 #
Proposal for a regulation
Article 2 – paragraph 4
Article 2 – paragraph 4
Amendment 921 #
Proposal for a regulation
Article 3 – paragraph 1 – point 1
Article 3 – paragraph 1 – point 1
(1) ‘'artificial intelligence system’ (AI system) means software that is developed with one or more of the techniques and approaches listcan for example perceive, learn, reason or model based ion Annex I and can, for a given set of human-defined objectives,machine and/or human based inputs, to generate outputs such as content, hypotheses, predictions, recommendations, or decisions influencing the real or virtual environments they interact with;
Amendment 953 #
Proposal for a regulation
Article 3 – paragraph 1 – point 5
Article 3 – paragraph 1 – point 5
(5) ‘authorisedlegal representative’ means any natural or legal person established in the Union who has received a written mandate from a provider of an AI system to, respectively, perform and carry out on its behalf any of the obligations and procedures established by this Regulation;
Amendment 959 #
Proposal for a regulation
Article 3 – paragraph 1 – point 8
Article 3 – paragraph 1 – point 8
(8) ‘operator’ means the provider, the user, the authorisedlegal representative, the importer and the distributor;
Amendment 960 #
Proposal for a regulation
Article 3 – paragraph 1 – point 8 a (new)
Article 3 – paragraph 1 – point 8 a (new)
(8 a) ‘affected person’ means any natural person or a group of persons who are subjects to or affected by an AI system
Amendment 978 #
Proposal for a regulation
Article 3 – paragraph 1 – point 13
Article 3 – paragraph 1 – point 13
(13) ‘reasonably foreseeable misuse’ means the use of an AI system in a way that is not in accordance with its intended purpose, but which may result from reasonably foreseeable human behaviour or interaction with other systems, and with other AI systems;
Amendment 983 #
Proposal for a regulation
Article 3 – paragraph 1 – point 14
Article 3 – paragraph 1 – point 14
(14) ‘safety component of a product or system’ means a component of a product or of a system which fulfils a safety or security function for that product or system or the failure or malfunctioning of which endangers the fundamental rights, health andor safety of persons, or propertywhich damages property or the environment;
Amendment 1022 #
Proposal for a regulation
Article 3 – paragraph 1 – point 33
Article 3 – paragraph 1 – point 33
(33) ‘biometric data’ means personal data resulting from specific technical processing relating to the physical, physiological or behavioural characteristics of a natural person, which allow or confirm the unique identification of that natural person, such as facial images or dactyloscopic dataas defined in Article 4, point (14) of Regulation (EU) 2016/679;
Amendment 1029 #
Proposal for a regulation
Article 3 – paragraph 1 – point 33 a (new)
Article 3 – paragraph 1 – point 33 a (new)
(33 a) “special categories of personal data” means the categories of personal data referred to in Article 9(1) of Regulation (EU)2016/679;
Amendment 1030 #
Proposal for a regulation
Article 3 – paragraph 1 – point 33 b (new)
Article 3 – paragraph 1 – point 33 b (new)
(33 b) ‘biometric identification’ means the use of AI-systems for the purpose of the automated recognition of physical, physiological, behavioural, and psychological human features such as the face, eye movement, facial expressions, body shape, voice, speech, gait, posture, heart rate, blood pressure, odour, keystrokes, psychological reactions (anger, distress, grief, etc.) for the purpose of verification of an individual’s identity by comparing biometric data of that individual to stored biometric data of individuals in a database (one-to-many identification);
Amendment 1040 #
Proposal for a regulation
Article 3 – paragraph 1 – point 35
Article 3 – paragraph 1 – point 35
(35) ‘biometric categorisation system’ means an AI system for the purpose of assigning natural persons to specific categories, such as gender, sex, age, hair colour, eye colour, tattoos, ethnic origin or sexual or political orientation, on the basis of their biometric social origin, health, mental or physical ability,behavioural or personality traits, language, religion, or membership of a national minority, or sexual or political orientation, on the basis of their biometric or biometric-based data, or which can be reasonably inferred from such data;
Amendment 1057 #
Proposal for a regulation
Article 3 – paragraph 1 – point 36
Article 3 – paragraph 1 – point 36
(36) ‘remote biometric identification system’ means an AI system for the purpose of identifying natural persons at a distance through the comparison of a person’s biometric data with the biometric data contained in a reference database, and without prior knowledge of the user of the AI system whether the person will be present and can be identified ;
Amendment 1076 #
Proposal for a regulation
Article 3 – paragraph 1 – point 41
Article 3 – paragraph 1 – point 41
(41) ‘law enforcement’ means activities carried out by law enforcement authorities solely for the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, including the safeguarding against and the prevention of threats to public security;
Amendment 1077 #
Proposal for a regulation
Article 3 – paragraph 1 – point 42
Article 3 – paragraph 1 – point 42
(42) ‘national supervisory authority’ means thean independent public authority to which a Member State assigns the responsibility for the implementation and application of this Regulation, for coordinating the activities entrusted to that Member State, for acting as the single contact point for the Commission, and for representing the Member State at the European Artificial Intelligence Board;
Amendment 1080 #
Proposal for a regulation
Article 3 – paragraph 1 – point 43
Article 3 – paragraph 1 – point 43
(43) ‘national competent authority’ means the national supervisory authority, the notifying authority and the market surveillance authority;
Amendment 1107 #
Proposal for a regulation
Article 3 – paragraph 1 – point 44 a (new)
Article 3 – paragraph 1 – point 44 a (new)
(44 a) 'near miss' means any incident that, if the circumstances were slightly different, would have resulted in a 'serious incident';
Amendment 1112 #
Proposal for a regulation
Article 3 – paragraph 1 – point 44 b (new)
Article 3 – paragraph 1 – point 44 b (new)
(44 b) ‘artificial intelligence system with indeterminate uses’ means an artificial intelligence system without specific and limited provider-defined purposes;
Amendment 1131 #
Proposal for a regulation
Article 4
Article 4
Amendments to Annex I The Commission is empowered to adopt delegated acts in accordance with Article 73 to amend the list of techniques and approaches listed in Annex I, in order to update that list to market and technological developments on the basis of characteristics that are similar to the techniques and approaches listed therein.rticle 4 deleted
Amendment 1145 #
Proposal for a regulation
Article 4 a (new)
Article 4 a (new)
Amendment 1151 #
Proposal for a regulation
Article 4 b (new)
Article 4 b (new)
Amendment 1160 #
Proposal for a regulation
Article 5 – paragraph 1 – point a
Article 5 – paragraph 1 – point a
(a) the placing on the market, putting into service or use of an AI system that deploys subliminal techniques beyond a person’s consciousness in order to materially distort a person’s behaviourtechniques with the effect or the likely effect of materially distorting the behaviour of a person by impairing their ability to make an autonomous decision, thereby causing them to take a decision that they would not have taken otherwise, in a manner that causes or is likely to cause that person or another persons material or non-material harm, including physical or, psychological or economic harm;
Amendment 1177 #
Proposal for a regulation
Article 5 – paragraph 1 – point b
Article 5 – paragraph 1 – point b
(b) the placing on the market, putting into service or use of an AI system that exploits any ofor may be reasonably foreseen to exploit the vulnerabilities of a specific group of persons due to their age, physical or mental disability, in order tosex, gender, sexual orientation, ethnic or social origin, race, religion or belief, or social or economic situation, with the effect or the likely effect of materially distorting the behaviour of a person pertaining to that group in a manner that causes or is likely to cause that person or another persons material or non-material harm, including physical or, psychological or economic harm;
Amendment 1191 #
Proposal for a regulation
Article 5 – paragraph 1 – point c – introductory part
Article 5 – paragraph 1 – point c – introductory part
(c) the placing on the market, putting into service or use of AI systems by public authorities or on their behalf for the evaluation or classification of the trustworthiness of natural persons over a certain period of time basfor the scoring, evaluation or classification of natural persons or groups related ton their social behaviour or known or predicted personal or personality characteristics, with the social score leading to either or both of the following:education, employment, housing, socioeconomic situation, health, reliability, social behaviour, location or movements;
Amendment 1201 #
Proposal for a regulation
Article 5 – paragraph 1 – point c – point i
Article 5 – paragraph 1 – point c – point i
Amendment 1212 #
Proposal for a regulation
Article 5 – paragraph 1 – point c – point ii
Article 5 – paragraph 1 – point c – point ii
Amendment 1225 #
Proposal for a regulation
Article 5 – paragraph 1 – point c a (new)
Article 5 – paragraph 1 – point c a (new)
(c a) the placing on the market, putting into service, or use of AI systems intended to be used as polygraphs and similar tools to detect the emotional state, trustworthiness or related characteristics of a natural person;
Amendment 1244 #
Proposal for a regulation
Article 5 – paragraph 1 – point d – introductory part
Article 5 – paragraph 1 – point d – introductory part
(d) the use of ‘real-time’ remote biometric identification systems in publicly accessible spaces for the purpose of law enforcement, unless and in as far as such use is strictly necessary for one of the following objectivplacing or making available on the market, the putting into service or use of remote biometric identification systems that are or maybe used in publicly or privately accessible spaces, as well as online spaces:;
Amendment 1246 #
Proposal for a regulation
Article 5 – paragraph 1 – point d – point i
Article 5 – paragraph 1 – point d – point i
Amendment 1257 #
Proposal for a regulation
Article 5 – paragraph 1 – point d – point ii
Article 5 – paragraph 1 – point d – point ii
Amendment 1272 #
Proposal for a regulation
Article 5 – paragraph 1 – point d – point iii
Article 5 – paragraph 1 – point d – point iii
Amendment 1288 #
Proposal for a regulation
Article 5 – paragraph 1 – point d a (new)
Article 5 – paragraph 1 – point d a (new)
(d a) the creation or expansion of biometric databases through the untargeted or generalised scraping of biometric data from social media profiles or CCTV footage, or equivalent methods;
Amendment 1298 #
Proposal for a regulation
Article 5 – paragraph 1 – point d b (new)
Article 5 – paragraph 1 – point d b (new)
(d b) the use of remote biometric categorisation systems in publicly accessible spaces;
Amendment 1300 #
Proposal for a regulation
Article 5 – paragraph 1 – point d c (new)
Article 5 – paragraph 1 – point d c (new)
Amendment 1307 #
Proposal for a regulation
Article 5 – paragraph 1 – point d d (new)
Article 5 – paragraph 1 – point d d (new)
(d d) the placing on the market, putting into service or use of an AI system for making predictions, profiles or risk assessments based on data analysis or profiling of natural persons, groups or locations, for the purpose of predicting the occurrence or reoccurrence of an actual or potential criminal offence(s) or other criminalised social behaviour;
Amendment 1316 #
Proposal for a regulation
Article 5 – paragraph 1 – point d e (new)
Article 5 – paragraph 1 – point d e (new)
(d e) the use of private facial recognition or other private biometric databases for the purpose of law enforcement;
Amendment 1319 #
Proposal for a regulation
Article 5 – paragraph 1 – point d f (new)
Article 5 – paragraph 1 – point d f (new)
(d f) the placing on the market, putting into service, or use of AI systems that are aimed at automating judicial or similarly intrusive binding decisions by state actors;
Amendment 1322 #
Proposal for a regulation
Article 5 – paragraph 1 – point d g (new)
Article 5 – paragraph 1 – point d g (new)
(d g) the placing on the market, putting into service or the use of AI systems by or on behalf of competent authorities in migration, asylum or border control management, to profile an individual or assess a risk, including a security risk, a risk of irregular immigration, or a health risk, posed by a natural person who intends to enter or has entered the territory of a Member State, on the basis of personal or sensitive data, known or predicted, except for the sole purpose of identifying specific care and support needs;
Amendment 1328 #
Proposal for a regulation
Article 5 – paragraph 1 – point d h (new)
Article 5 – paragraph 1 – point d h (new)
(d h) the placing on the market, putting into service or the use of AI systems, by or on behalf of competent authorities in migration, asylum and border control management, to forecast or predict individual or collective movement for the purpose of, or in any way reasonably foreseeably leading to, the prohibiting, curtailing or preventing migration or border crossings;
Amendment 1332 #
Proposal for a regulation
Article 5 – paragraph 1 – point d i (new)
Article 5 – paragraph 1 – point d i (new)
(d i) the placing on the market, putting into service or the use of AI systems intended to assist competent authorities for the examination of application for asylum, visa and residence permits and associated complaints with regard to the eligibility of the natural persons applying for a status;
Amendment 1350 #
Proposal for a regulation
Article 5 – paragraph 2
Article 5 – paragraph 2
Amendment 1370 #
Proposal for a regulation
Article 5 – paragraph 3
Article 5 – paragraph 3
Amendment 1386 #
Proposal for a regulation
Article 5 – paragraph 4
Article 5 – paragraph 4
Amendment 1394 #
Proposal for a regulation
Article 5 – paragraph 4 a (new)
Article 5 – paragraph 4 a (new)
4 a. This Article shall not affect the restrictions, prohibitions or enforcement that apply where an artificial intelligence practice infringes another EU law, including EU acquis on data protection, privacy, or the confidentiality of communications, on non discrimination, consumer protection or on competition.
Amendment 1447 #
Proposal for a regulation
Article 6 – paragraph 2 a (new)
Article 6 – paragraph 2 a (new)
2 a. An artificial intelligence system with indeterminate uses shall also be considered high risk if so identified per Article 9, paragraph 2, point (a).
Amendment 1452 #
Proposal for a regulation
Article 6 – paragraph 2 b (new)
Article 6 – paragraph 2 b (new)
2 b. In addition to the high-risk AI systems referred to in paragraph 1 and paragraph 2, AI systems that create foreseeable high-risks when combined shall also be considered high-risk.
Amendment 1463 #
Proposal for a regulation
Article 7 – paragraph 1 – introductory part
Article 7 – paragraph 1 – introductory part
1. The Commission is empowered to adopt delegated acts in accordance with Article 73 to update or amend the list in Annex III by adding areas of high-risk AI systems where both of the following conditions are fulfilled:the AI systems pose a risk of harm to the health and safety, or a risk of adverse impact on fundamental rights, a risk of breach of the Union values enshrined in Article 2 TEU or a risk of adverse impact on the society and the environment.
Amendment 1475 #
Proposal for a regulation
Article 7 – paragraph 1 – point a
Article 7 – paragraph 1 – point a
Amendment 1479 #
Proposal for a regulation
Article 7 – paragraph 1 – point b
Article 7 – paragraph 1 – point b
Amendment 1488 #
2. When assessing for the purposes of paragraph 1 whether an AI system poses a risk of harm to the health and safety or a risk of adverse impact on fundamental rights that is equivalent to or greater than the risk of harm posed by the high-risk AI systems already referred to in Annex III, the Commission shall take into account the following criteria:
Amendment 1499 #
Proposal for a regulation
Article 7 – paragraph 2 – point b
Article 7 – paragraph 2 – point b
(b) the extent to which an AI system has been used or is likely to be used, including its reasonably foreseeable misuse;
Amendment 1502 #
Proposal for a regulation
Article 7 – paragraph 2 – point b a (new)
Article 7 – paragraph 2 – point b a (new)
(b a) the type and nature of the data processed and used by the AI system;
Amendment 1504 #
Proposal for a regulation
Article 7 – paragraph 2 – point b b (new)
Article 7 – paragraph 2 – point b b (new)
(b b) the extent to which the AI system respects the principles of Article 4a;
Amendment 1506 #
Proposal for a regulation
Article 7 – paragraph 2 – point c
Article 7 – paragraph 2 – point c
(c) the extent to which the use of an AI system has already caused harm to natural persons, has breached the Union values enshrined in Article 2 TEU, has caused harm to the health and safety or has had an adverse impact on the fundamental rights, on the environment or the society or has given rise to significant concerns in relation to the materialisation of such harm or adverse impact, as demonstrated by reports or documented allegations submitted to national competent authoritiesthe national supervisory authority, to the national competent authorities, to the Commission, to the Board, to the EDPS or to the European Union Agency for Fundamental Rights (FRA);
Amendment 1525 #
Proposal for a regulation
Article 7 – paragraph 2 – point g
Article 7 – paragraph 2 – point g
(g) the extent to which the outcome produced with an AI system is easily reversible, whereby outcomes having an impact on the health or safety of personsfundamental rights of persons, the environment or the society, the health or safety of persons, or on the Union values enshrined in Article 2 TEU, shall not be considered as easily reversible;
Amendment 1547 #
Proposal for a regulation
Article 7 – paragraph 2 a (new)
Article 7 – paragraph 2 a (new)
2 a. When carrying out the assessment referred to in paragraph 1 the Commission shall consult, where relevant, representatives of groups on which an AI system has an impact, stakeholders, independent experts and civil society organisations. The Commission shall organise public consultations in this regard.
Amendment 1563 #
Proposal for a regulation
Article 8 – paragraph 2
Article 8 – paragraph 2
2. The intended purpose of the high- risk AI system, the foreseeable uses and foreseeable misuses of AI systems with indeterminate uses and the risk management system referred to in Article 9 shall be taken into account when ensuring compliance with those requirements.
Amendment 1583 #
Proposal for a regulation
Article 9 – paragraph 2 – point a
Article 9 – paragraph 2 – point a
(a) identification and analysis of the known and the reasonably foreseeable risks associated with each high-risk AI system;that the high-risk AI system, and AI systems with indeterminate uses, can pose to: (i) the health or safety of natural persons; (ii) the legal rights or legal status of natural persons; (iii) the fundamental rights; (iv) the equal access to services and opportunities of natural persons; (v) the Union values enshrined in Article 2 TEU.
Amendment 1590 #
(a a) evaluation of how the principles of Article 4a are adhered to;
Amendment 1679 #
Proposal for a regulation
Article 10 – paragraph 1 a (new)
Article 10 – paragraph 1 a (new)
1 a. Techniques such as unsupervised learning and reinforcement learning, that do not use validation and testing data sets, shall be developed on the basis of training data sets that meet the quality criteria referred to in paragraphs 2 to 5.
Amendment 1686 #
Proposal for a regulation
Article 10 – paragraph 2 – introductory part
Article 10 – paragraph 2 – introductory part
2. Training, validation and testing data sets shall be subject to appropriate data governance and management practices for the entire lifecycle of data processing. Those practices shall concern in particular,
Amendment 1689 #
Proposal for a regulation
Article 10 – paragraph 2 – point a
Article 10 – paragraph 2 – point a
(a) the relevant design choices;
Amendment 1690 #
Proposal for a regulation
Article 10 – paragraph 2 – point b
Article 10 – paragraph 2 – point b
(b) data collection processes;
Amendment 1694 #
Proposal for a regulation
Article 10 – paragraph 2 – point c
Article 10 – paragraph 2 – point c
(c) relevant data preparation processing operations, such as annotation, labelling, cleaning, enrichment and aggregation;
Amendment 1701 #
Proposal for a regulation
Article 10 – paragraph 2 – point f
Article 10 – paragraph 2 – point f
(f) examination in view of possible biases, especially where data outputs are used as an input for future operations(‘feedback loops’);
Amendment 1718 #
Proposal for a regulation
Article 10 – paragraph 3
Article 10 – paragraph 3
3. Training datasets, and where applicable, validation and testing data sets, including the labels, shall be relevant, representative, up-to-date, and to the best extent possible, free of errors and complete. They shall have the appropriate statistical properties, including, where applicable, as regards the persons or groups of persons on which the high-risk AI system is intended to be used. These characteristics of the data sets mayshall be met at the level of each individual data sets or a combination thereof.
Amendment 1729 #
Proposal for a regulation
Article 10 – paragraph 4
Article 10 – paragraph 4
4. Training, validation and testing dData sets shall take into account, to the extent required by the intended purpose, the foreseeable uses and reasonably foreseeable misuses of AI systems with indeterminate uses, the characteristics or elements that are particular to the specific geographical, ,behavioural or functional setting within which the high-risk AI system is intended to be used.
Amendment 1736 #
Proposal for a regulation
Article 10 – paragraph 5
Article 10 – paragraph 5
Amendment 1755 #
Proposal for a regulation
Article 11 – paragraph 1 – subparagraph 1
Article 11 – paragraph 1 – subparagraph 1
The technical documentation shall be drawn up in such a way to demonstrate that the high-risk AI system complies with the requirements set out in this Chapter and provide the national supervisory authority, the national competent authorities and notified bodies with all the necessary information to assess the compliance of the AI system with those requirements. It shall contain, at a minimum, the elements set out in Annex IV.
Amendment 1799 #
Proposal for a regulation
Article 13 – paragraph 3 – point b – point ii
Article 13 – paragraph 3 – point b – point ii
(ii) the performance metrics and its appropriateness, including the level of accuracy, robustness and cybersecurity referred to in Article 15 against which the high-risk AI system has been tested and validated and which can be expected, and any known and foreseeable circumstances that may have an impact on that expected level of accuracyperformance, robustness and cybersecurity;
Amendment 1805 #
Proposal for a regulation
Article 13 – paragraph 3 – point b – point v
Article 13 – paragraph 3 – point b – point v
(v) when appropriate, specifications for the input data, or any other relevant information in terms of the training, validation and testing data sets used, taking into account the intended purposedata sets used, including their limitation and assumptions, taking into account the intended purpose, the foreseeable and reasonably foreseeable misuses of the AI system.
Amendment 1849 #
Proposal for a regulation
Article 15 – paragraph 1
Article 15 – paragraph 1
1. High-risk AI systems shall be designed and developed in such a way that they achieve, in the light of their intended purpose, an appropriate level of accuracythe foreseeable uses and reasonably foreseeable misuses, an appropriate level of perfomance (such as accuracy, reliability and true positive rate), robustness and cybersecurity, and perform consistently in those respects throughout their lifecycle.
Amendment 1854 #
Proposal for a regulation
Article 15 – paragraph 2
Article 15 – paragraph 2
2. The perfomance metrics and its appropriateness, including the levels of accuracy and the relevant accuracy metrics of high-risk AI systems shall be declared in the accompanying instructions of use.
Amendment 1883 #
Proposal for a regulation
Article 16 – paragraph 1 – point a a (new)
Article 16 – paragraph 1 – point a a (new)
Amendment 1886 #
Proposal for a regulation
Article 16 – paragraph 1 – point a b (new)
Article 16 – paragraph 1 – point a b (new)
(a b) provide specifications for the input data, or any other relevant information in terms of the data sets used, including their limitation and assumptions, taking into account of the intended purpose and the foreseeable and reasonably foreseeable misuses of the AI system;
Amendment 1903 #
Proposal for a regulation
Article 16 – paragraph 1 – point j
Article 16 – paragraph 1 – point j
(j) upon request of a national supervisory authority or a national competent authority, demonstrate the conformity of the high-risk AI system with the requirements set out in Chapter 2 of this Title.
Amendment 1962 #
Proposal for a regulation
Article 21 – paragraph 1 a (new)
Article 21 – paragraph 1 a (new)
In the cases referred to in paragraph 1, providers shall immediately inform the distributors of the high-risk AI system and, where applicable, the legal representative, importers and users accordingly. They shall also immediately inform the national supervisory authority and the national competent authorities of the Member States where they made the AI system available or put it into service, and where applicable, the notified body of the non-compliance and of any corrective actions taken.
Amendment 1963 #
Proposal for a regulation
Article 22 – paragraph 1
Article 22 – paragraph 1
Where the high-risk AI system presents a risk within the meaning of Article 65(1) and that risk is known toby the provider of the system, thate provider shall immediately inform the national supervisory authority and the national competent authorities of the Member States in which it made the system available and, where applicable, the user, the notified body that issued a certificate for the high-risk AI system, in particular of the non-compliance and of any corrective actions taken. Where applicable, the provider shall also inform the users of the high-risk AI system.
Amendment 1971 #
Proposal for a regulation
Article 23 – paragraph 1
Article 23 – paragraph 1
Providers and, where applicable, users of high-risk AI systems shall, upon request by a national competent authority, provide that authoritysupervisory authority or a national competent authority or, where applicable, by the Board or the Commission, provide them with all the information and documentation necessary to demonstrate the conformity of the high- risk AI system with the requirements set out in Chapter 2 of this Title, in an official Union language determined by the Member State concerned. Upon a reasoned request from a national competent authority, providers shall also give that authority access to the logs automatically generated by the high- risk AI system, to the extent such logs are under their control by virtue of a contractual arrangement with the user or otherwise by law.
Amendment 1975 #
Proposal for a regulation
Article 23 – paragraph 1 a (new)
Article 23 – paragraph 1 a (new)
Upon a reasoned request by a national supervisory authority or a national competent authority or, where applicable, by the Board or the Commission, providers and, where applicable, users shall also give them access to the logs automatically generated by the high-risk AI system, to the extent such logs are under their control by virtue of a contractual arrangement with the user or otherwise by law.
Amendment 1980 #
Proposal for a regulation
Article 25
Article 25
Authorised representatives 1. Prior to making their systems available on the Union market, where an importer cannot be identified, providers established outside the Union shall, by written mandate, appoint an authorised representative which is established in the Union. 2. The authorised representative shall perform the tasks specified in the mandate received from the provider. The mandate shall empower the authorised representative to carry out the following tasks: (a) keep a copy of the EU declaration of conformity and the technical documentation at the disposal of the national competent authorities and national authorities referred to in Article 63(7); (b) provide a national competent authority, upon a reasoned request, with all the information and documentation necessary to demonstrate the conformity of a high-risk AI system with the requirements set out in Chapter 2 of this Title, including access to the logs automatically generated by the high-risk AI system to the extent such logs are under the control of the provider by virtue of a contractual arrangement with the user or otherwise by law; (c) cooperate with competent national authorities, upon a reasoned request, on any action the latter takes in relation to the high-risk AI system.rticle 25 deleted
Amendment 2004 #
Proposal for a regulation
Article 26 – paragraph 5
Article 26 – paragraph 5
5. Importers shall provide the national supervisory authority and the national competent authorities, upon a reasoned request, with all the necessary information and documentation to demonstrate the conformity of a high-risk AI system with the requirements set out in Chapter 2 of this Title in a language which can be easily understood by that national competent authorityem, including access to the logs automatically generated by the high-risk AI system to the extent such logs are under the control of the provider by virtue of a contractual arrangement with the user or otherwise by law. They shall also cooperate with those authorities on any action the national supervisory authority and the national competent authority takes in relation to that system.
Amendment 2036 #
Proposal for a regulation
Article 29 – paragraph -1 (new)
Article 29 – paragraph -1 (new)
-1. Users of high-risk AI systems shall ensure that natural persons assigned to ensure or entrusted with human oversight for high-risk AI systems are competent, properly qualified and trained, free from external influence and neither seek nor take instructions from anybody. They shall have the necessary resources in order to ensure the effective supervision of the system in accordance with Article 14.
Amendment 2056 #
Proposal for a regulation
Article 29 – paragraph 4 – introductory part
Article 29 – paragraph 4 – introductory part
4. Users shall monitor the operation of the high-risk AI system on the basis of the instructions of use. When they have reasons to consider that the use in accordance with the instructions of use may result in the AI system presenting a risk within the meaning of Article 65(1) they shall immediately inform the provider or distributor and suspend the use of the system. They shall also immediately inform the provider or distributor when they have identified any serious incident or any malfunctioning, including near misses, within the meaning of Article 62 and interrupt the use of the AI system. In case the user is not able to reach the provider, Article 62 shall apply mutatis mutandis.
Amendment 2063 #
Proposal for a regulation
Article 29 – paragraph 5 a (new)
Article 29 – paragraph 5 a (new)
5 a. Users of high-risk AI systems shall comply with the registration obligations referred to in Article 51.
Amendment 2072 #
Proposal for a regulation
Article 29 – paragraph 6 a (new)
Article 29 – paragraph 6 a (new)
6 a. Users of high-risk AI systems referred to in Annex III that make decisions or assist in making decisions related to an affected person, shall inform them that they are subject to the use of the high-risk AI system. This information shall include the type of the AI system used, its intended purpose and the type of decisions it makes.
Amendment 2078 #
Proposal for a regulation
Article 29 a (new)
Article 29 a (new)
Amendment 2215 #
Proposal for a regulation
Article 47
Article 47
Amendment 2224 #
Proposal for a regulation
Article 48 – paragraph 1
Article 48 – paragraph 1
1. The provider shall draw up a written EU declaration of conformity for each high-risk AI system and keep it at the disposal of the national competent authorities for 10 years after the AI system has been placed on the market or put into service. The EU declaration of conformity shall identify the AI system for which it has been drawn upsupervisory authority and the national competent authorities after the high-risk AI system has been placed on the market or put into service for the entire lifecycle of the high- risk AI system. A copy of the EU declaration of conformity shall be given to the national supervisory authority and the relevant national competent authorities upon request.
Amendment 2226 #
Proposal for a regulation
Article 48 – paragraph 2
Article 48 – paragraph 2
2. The EU declaration of conformity shall state that the high-risk AI system in question meets the requirements set out in Chapter 2 of this Title, including the requirements related to the respect of the Union data protection acquis. The EU declaration of conformity shall contain the information set out in Annex V and shall be translated into an official Union language or languages required by the Member State(s) in which the high-risk AI system is placed on the market or made available.
Amendment 2242 #
Proposal for a regulation
Article 50 – paragraph 1 – introductory part
Article 50 – paragraph 1 – introductory part
The provider shall, for a period ending 10 years after the AI system has been placed on the market or put into service, keep at the disposal ofthe entire lifecycle of the AI system, keep at the disposal of the national supervisory authority and the national competent authorities:
Amendment 2248 #
Proposal for a regulation
Article 51 – paragraph 1
Article 51 – paragraph 1
Before placing on the market or putting into service a high-risk AI system referred to in Article 6(2), the provider or, where applicable, the authorised representative shall register that system in the EU database referred to in Article 60, in accordance with Article 60(2).
Amendment 2258 #
Proposal for a regulation
Article 51 a (new)
Article 51 a (new)
Article 51 a Legal representative 1. Where an operator pursuant to Article 2 is established outside the Union, they shall designate, in writing, a legal representative in the Union. 2. The legal representative shall reside or be established in one of the Member States where the activities pursuant to Article 2, paragraphs 1 and 1a, are taking place. 3. The operator shall provide its legal representative with the necessary powers and resources to comply with its tasks under this Regulation and to cooperate with the competent authorities. 4. The legal representative shall, where appropriate, also carry out the following compliance tasks: (a) keep a copy of the EU declaration of conformity and the technical documentation at the disposal of the national supervisory authority and the national competent authorities and national authorities referred to in Article 63(7); (b) provide a national supervisory authority or a national competent authority, upon a reasoned request, with all the information and documentation necessary to demonstrate the conformity of a high-risk AI system with the requirements set out in Chapter 2 of this Title, including access to the logs automatically generated by the high-risk AI system to the extent such logs are under the control of the provider by virtue of a contractual arrangement with the user or otherwise by law; (c) cooperate with the national supervisory authority or the national competent authorities, upon a reasoned request, on any action the latter takes in relation to the high-risk AI system; (d) where applicable, comply with the registration obligations as referred into Article 51. 5. The legal representative shall be mandated to be addressed, in addition to or instead of the operator, by, in particular, national supervisory authority or the national competent authorities and affected persons, on all issues related to ensuring compliance with this Regulation. 6. The legal representative may be held liable for infringements of this Regulation, without prejudice to any liability of or legal actions against the operator, user or provider.
Amendment 2265 #
Proposal for a regulation
Article 52 – paragraph 2
Article 52 – paragraph 2
Amendment 2274 #
Proposal for a regulation
Article 52 – paragraph 3 – subparagraph 1
Article 52 – paragraph 3 – subparagraph 1
Amendment 2296 #
Proposal for a regulation
Article 53 – paragraph 1
Article 53 – paragraph 1
Amendment 2301 #
Proposal for a regulation
Article 53 – paragraph 1 a (new)
Article 53 – paragraph 1 a (new)
1 a. National supervisory authorities may establish AI regulatory sandboxes jointly with other national supervisory authorities.
Amendment 2307 #
Proposal for a regulation
Article 53 – paragraph 2
Article 53 – paragraph 2
2. Member StatesThe national supervisory authority shall ensure that to the extent the innovative AI systems involve the processing of personal data or otherwise fall under the supervisory remit of other national authorities or competent authorities providing or supporting access to data, the national data protection authorities and those other national, the national data protection authorities are associated to the operation of the AI regulatory sandbox.
Amendment 2316 #
Proposal for a regulation
Article 53 – paragraph 3
Article 53 – paragraph 3
3. The AI regulatory sandboxes shall not affect the supervisory and corrective powers of the competent authorities. Any significant risks to fundamental rights, health and, safety and fundamental rightsor the environment identified during the development and testing of such systems shall result in immediate mitigation and, failing that, in the suspension ofand adequate mitigation. Where such mitigation proves to be ineffective, the development and testing process shall be suspended without delay until such mitigation takes place.
Amendment 2328 #
Proposal for a regulation
Article 53 – paragraph 5
Article 53 – paragraph 5
5. Member States’ competentThe national supervisory authoritiesy that haves established the AI regulatory sandboxes shall coordinate their activities and cooperate within the framework of the European Artificial Intelligence Board. They shall submit annual reports to the Board and the Commission on the results ofrom the implementation of those schemes, including good practices, incidents, lessons learnt and recommendations on their setup and, where relevant, on the application of this Regulation and other Union legislation supervised within the sandbox. Those reports or abstracts thereof shall be made available to the public in order to further enable innovation in the Union.
Amendment 2345 #
Proposal for a regulation
Article 54
Article 54
Amendment 2373 #
Proposal for a regulation
Article 55 – paragraph 1 – introductory part
Article 55 – paragraph 1 – introductory part
1. Member StatesThe national supervisory authority shall undertake the following actions:
Amendment 2395 #
Proposal for a regulation
Article 56 – title
Article 56 – title
Amendment 2399 #
Proposal for a regulation
Article 56 – paragraph 1
Article 56 – paragraph 1
1. An independent ‘European Artificial Intelligence Board’ (the ‘Board’) is hereby established as a body of the Union and shall have legal personality.
Amendment 2401 #
Proposal for a regulation
Article 56 – paragraph 1 a (new)
Article 56 – paragraph 1 a (new)
1 a. The Board shall monitor and ensure the effective and consistent application, and contribute to the effective and consistent enforcement, of this Regulation throughout the Union, including with regard to cases involving two or more Member States as set out in Article 59b.
Amendment 2413 #
Proposal for a regulation
Article 56 – paragraph 2 – point c a (new)
Article 56 – paragraph 2 – point c a (new)
(c a) contribute to the effective cooperation with the competent authorities of third countries and with international organisations.
Amendment 2428 #
Proposal for a regulation
Article 57 – title
Article 57 – title
Structure and independence of the Board
Amendment 2437 #
Proposal for a regulation
Article 57 – paragraph 1
Article 57 – paragraph 1
1. The Board shall be composed of the national supervisory authorities, who shall be represented by the head or equivalent high-level official of that authority, and the European Data Protection Supervisor and the FRA. Other national authorities may be invited to the meetings, where the issues discussed are of relevance for them.
Amendment 2440 #
Proposal for a regulation
Article 57 – paragraph 1 a (new)
Article 57 – paragraph 1 a (new)
1 a. The Board shall be represented by its Chair.
Amendment 2441 #
1 b. The Board shall act independently when performing its tasks or exercising its powers pursuant to Articles 58.
Amendment 2442 #
Proposal for a regulation
Article 57 – paragraph 1 c (new)
Article 57 – paragraph 1 c (new)
1 c. The Board shall take decisions by a simple majority of its voting members, unless otherwise provided for in this Regulation. Each national supervisory authority and the EDPS shall have one vote.
Amendment 2443 #
Proposal for a regulation
Article 57 – paragraph 2
Article 57 – paragraph 2
2. The Board shall adopt its rules of procedure by a simple two-thirds majority of its members, following the consent of the Commission. The rules of procedure shall also contain the operational aspects related to the execution of the Board’s tasks as listed in Article 58. The Board may establish sub-groups as appropriate for the purpose of examining specific questionvoting members and organise its own operational arrangements.
Amendment 2449 #
Proposal for a regulation
Article 57 – paragraph 2 a (new)
Article 57 – paragraph 2 a (new)
2 a. The Board may establish sub- groups as appropriate for the purpose of examining specific questions.In any case, the Board shall establish the following permanent sub-groups: a) for the purpose of examining the question of the proper governance of AI systems with indeterminate use; b) for the purpose of examining the question of the proper governance of research and development activities on the topic of AI.
Amendment 2454 #
Proposal for a regulation
Article 57 – paragraph 3
Article 57 – paragraph 3
3. The BoardChair shall be chaired by the Commission. The Commission shall have the following tasks: - convene the meetings of the Board and prepare theits agenda in acc; - ensure the timely perfordmance withof the tasks of the Board pursuant to this Regulation and with its rules of procedure. The Commission shall provide administrative and analytical support for the activities of the Board pursuant to this Regulation; - notify Member States and the Commission of any recommendations adopted by the Board.
Amendment 2458 #
Proposal for a regulation
Article 57 – paragraph 3 a (new)
Article 57 – paragraph 3 a (new)
3 a. The secretariat of the Board shall have the necessary human and financial resources to be able to perform its tasks pursuant to this Regulation.
Amendment 2460 #
Proposal for a regulation
Article 57 – paragraph 3 b (new)
Article 57 – paragraph 3 b (new)
3 b. The Commission shall provide administrative and analytical support for the activities of the Board pursuant to this Regulation.
Amendment 2466 #
Proposal for a regulation
Article 57 – paragraph 4
Article 57 – paragraph 4
4. The Board may invite external experts and observers to attend its meetings and may hold exchanges winational authorities, such as national equality bodies, to its meetings, where the interested thirssues discussed parties to inform its activities to ane of relevance for them. The Board may also invite, where appropriate, extent. To that end the Commission may facilitate exchanges between the Board and other Union bodies, offices, agencies and advisory groupsrnal experts, and observers and interested third parties, including stakeholders, such as those referred to in Article 58, paragraph 1c, to attend its meetings and may hold exchanges with them.
Amendment 2469 #
Proposal for a regulation
Article 57 – paragraph 4 a (new)
Article 57 – paragraph 4 a (new)
Amendment 2485 #
Proposal for a regulation
Article 58 – paragraph 1 – introductory part
Article 58 – paragraph 1 – introductory part
When providing advice and assistance to the Commission and the national supervisory authorities in the context of Article 56(2), the Board shall in particular:
Amendment 2489 #
Proposal for a regulation
Article 58 – paragraph 1 – point -a (new)
Article 58 – paragraph 1 – point -a (new)
(-a) issue opinions, recommendations or written contributions with a view to ensuring the consistent implementation of this Regulation;
Amendment 2490 #
Proposal for a regulation
Article 58 – paragraph 1 – point -a a (new)
Article 58 – paragraph 1 – point -a a (new)
(-a a) examine, on its own initiative or on request of one of its members, any question covering the application of this Regulation and issue guidelines, recommendations and best practices with a view to ensuring the consistent implementation of this Regulation;
Amendment 2492 #
Proposal for a regulation
Article 58 – paragraph 1 – point a
Article 58 – paragraph 1 – point a
(a) collect and share expertise and best practices among Member Statesin implementation of this Regulation;
Amendment 2500 #
Proposal for a regulation
Article 58 – paragraph 1 – point b
Article 58 – paragraph 1 – point b
(b) contribute to uniform administrative practices in the Member States, including for the functioning of the regulatory sandboxes, as referred to in Article 53;
Amendment 2503 #
Proposal for a regulation
Article 58 – paragraph 1 – point c – introductory part
Article 58 – paragraph 1 – point c – introductory part
(c) issue opinions, recommendations or written contributions on matters related to the implementation of this Regulation, in consultation with relevant stakeholders, in particular
Amendment 2514 #
Proposal for a regulation
Article 58 – paragraph 1 – point c a (new)
Article 58 – paragraph 1 – point c a (new)
(c a) encourage, facilitate and support the drawing up of codes of conduct intended to foster the voluntary application to AI systems of those codes of conduct in close cooperation with relevant stakeholders in accordance with Article 69;
Amendment 2518 #
Proposal for a regulation
Article 58 – paragraph 1 – point c b (new)
Article 58 – paragraph 1 – point c b (new)
(c b) cooperate with the European Data Protection Board and with the FRA to receive guidance in relation to the respect of fundamental rights, in particular the right to non-discrimination and to equal treatment, the right to privacy, confidentiality of communications and the protection of personal data;
Amendment 2527 #
Proposal for a regulation
Article 58 – paragraph 1 – point c c (new)
Article 58 – paragraph 1 – point c c (new)
(c c) promote public awareness and understanding of the benefits, risks, rules and safeguards and rights in relation to the use of AI systems;
Amendment 2530 #
Proposal for a regulation
Article 58 – paragraph 1 – point c d (new)
Article 58 – paragraph 1 – point c d (new)
(c d) promote the cooperation and effective bilateral and multilateral exchange of information and best practices between the national supervisory authorities;
Amendment 2532 #
Proposal for a regulation
Article 58 – paragraph 1 – point c e (new)
Article 58 – paragraph 1 – point c e (new)
(c e) promote common training programmes and facilitate personnel exchanges between the national supervisory authorities and, where appropriate, with the national supervisory authorities of third countries or with international organisations;
Amendment 2537 #
Proposal for a regulation
Article 58 – paragraph 1 – point c f (new)
Article 58 – paragraph 1 – point c f (new)
(c f) advise the Commission on the possible amendment of the Annexes by means of delegated act in accordance with Article 73, in particular the annex listing high-risk AI systems;
Amendment 2542 #
Proposal for a regulation
Article 58 – paragraph 1 – point c g (new)
Article 58 – paragraph 1 – point c g (new)
(c g) ensure that the national supervisory authorities actively cooperate in the implementation of this Regulation;
Amendment 2550 #
Proposal for a regulation
Article 58 – paragraph 1 a (new)
Article 58 – paragraph 1 a (new)
When acting in the context of Article 59c on cases involving two or more Member States, the Board shall adopt binding decisions for national supervisory authorities.
Amendment 2551 #
Proposal for a regulation
Article 58 – paragraph 1 b (new)
Article 58 – paragraph 1 b (new)
The Board shall organise consultations with stakeholders twice a year. Such stakeholders shall include representatives from industry, start-ups and SMEs ,organisations from the civil society organisations such as NGOs, consumer associations, the social partners and academia, to assess the evolution of trends in technology, issues related to the implementation and the effectiveness of this Regulation, regulatory gaps or loopholes observed in practice.
Amendment 2556 #
Proposal for a regulation
Title VI – Chapter 2 – title
Title VI – Chapter 2 – title
2 nNational competent authorities and national supervisory authorities
Amendment 2561 #
Proposal for a regulation
Article 59 – paragraph 2
Article 59 – paragraph 2
Amendment 2569 #
Proposal for a regulation
Article 59 – paragraph 4
Article 59 – paragraph 4
4. Member States shall ensure that the national competent authorities are provided with adequate technical, financial and human resources, premises and infrastructure necessary to fulfil their tasks under this Regulation. In particular, national competent authorities shall have a sufficient number of personnel permanently available whose competences and expertise shall include an in-depth understanding of artificial intelligence technologies, data and data computing, personal data protection, fundamental rights, health and safety risks and knowledge of existing standards and legal requirements. Member States shall assess and update competence and resource requirements referred to in this paragraph on an annual basis.
Amendment 2583 #
Proposal for a regulation
Article 59 – paragraph 6
Article 59 – paragraph 6
6. The Commission and the Board shall facilitate the exchange of experience between national competent authorities.
Amendment 2588 #
Proposal for a regulation
Article 59 – paragraph 7
Article 59 – paragraph 7
7. National competent authorities may provide guidance and advice on the implementation of this Regulation, including to small-scale providers. Whenever national competent authorities intend to provide guidance and advice with regard to an AI system in areas covered by other Union legislation, the guidance shall be drafted in consultation with the competent national authorities under that Union legislation shall be consulted, as appropriate. Member States may also establish one central contact point for communication with operators, as appropriate.
Amendment 2595 #
Proposal for a regulation
Article 59 a (new)
Article 59 a (new)
Amendment 2600 #
Proposal for a regulation
Article 59 b (new)
Article 59 b (new)
Amendment 2601 #
Proposal for a regulation
Article 59 c (new)
Article 59 c (new)
Article 59 c Cooperation and consistency In order to contribute to the consistent application of this Regulation throughout the Union, the national supervisory authorities shall cooperate with each other and, where relevant, with the market surveillance authorities and the Commission, in order to reach consensus.
Amendment 2602 #
Proposal for a regulation
Article 59 d (new)
Article 59 d (new)
Amendment 2603 #
Proposal for a regulation
Article 59 e (new)
Article 59 e (new)
Amendment 2609 #
Proposal for a regulation
Title VII
Title VII
EU DATABASE FOR STAND-ALONE HIGH-RISK AI SYSTEMS
Amendment 2613 #
Proposal for a regulation
Article 60 – title
Article 60 – title
EU database for stand-alone high-risk AI systems
Amendment 2617 #
Proposal for a regulation
Article 60 – paragraph 1
Article 60 – paragraph 1
1. The Commission shall, in collaboration with the Member States, set up and maintain a EU database containing information referred to in paragraph 2 and 2a concerning high-risk AI systems referred to in Article 6(2) which are registered in accordance with Article 51, as well as users of any AI systems by public authorities and Union institutions, bodies, offices or agencies.
Amendment 2622 #
Proposal for a regulation
Article 60 – paragraph 2 a (new)
Article 60 – paragraph 2 a (new)
2 a. The data listed in Annex VIII, point (2), shall be entered into the EU database by the users, including those who are or who act on behalf of public authorities or Union institutions, bodies, offices or agencies. The Commission shall provide them with technical and administrative support.
Amendment 2625 #
Proposal for a regulation
Article 60 – paragraph 3
Article 60 – paragraph 3
3. Information contained in the EU database shall be accessible to the public, user-friendly and machine-readable.
Amendment 2629 #
Proposal for a regulation
Article 60 – paragraph 4
Article 60 – paragraph 4
4. The EU database shall contain personal data only insofar as necessary for collecting and processing information in accordance with this Regulation. That information shall include the names and contact details of natural persons who are responsible for registering the system and have the legal authority to represent the provider or the user.
Amendment 2633 #
Proposal for a regulation
Article 60 – paragraph 5
Article 60 – paragraph 5
5. The Commission shall be the controller of the EU database. It shall also ensure to providers adequate technical and administrative support.
Amendment 2641 #
Proposal for a regulation
Article 61 – paragraph 2
Article 61 – paragraph 2
2. The post-market monitoring system shall actively and systematically collect, document and analyse relevant data provided by users or collected through other sources on the performance of high- risk AI systems throughout their lifetime, and allow the provider to evaluate the continuous compliance of AI systems with the requirements set out in Title III, Chapter 2. Post-market monitoring must include continuous analysis of the AI environment, including other devices, software, and other AI systems that will interact with the AI system.
Amendment 2652 #
Proposal for a regulation
Article 62 – paragraph 1 – introductory part
Article 62 – paragraph 1 – introductory part
1. Providers of high-riskand, where users have identified a serious incident or malfunctioning, users of AI systems placed on the Union market shall report any serious incident or any malfunctioning, including near misses, of those systems which constitutes a breach of obligations under Union law intended to protect fundamental rights toto the national supervisory authorities and the market surveillance authorities of the Member States where that incident or breach occurred and, where relevant, to the Commission and to the affected persons.
Amendment 2660 #
Proposal for a regulation
Article 62 – paragraph 1 – subparagraph 1
Article 62 – paragraph 1 – subparagraph 1
Such notification shall be made immediately after the provider has established a causal link between the AI system and the incident or malfunctioning or the reasonable likelihood of such a linkwhen an AI system is involved in an incident or malfunctioning, including near misses, and, in any event, not later than 15 day72 hours after the providers or, where applicable, the user becomes aware of the serious incident or of the malfunctioning.
Amendment 2678 #
Proposal for a regulation
Article 63 – paragraph 5
Article 63 – paragraph 5
5. For AI systems listed in point 1(a) in so far as the systems are used for law enforcement purposes, points 6 and 7 of Annex III, Member States shall designate as market surveillance authorities for the purposes of this Regulation either the competent data protection supervisory authorities under Directive (EU) 2016/680, or Regulation 2016/679 or the national competent authorities supervising the activities of the law enforcement, immigration or asylum authorities putting into service or using those systems.
Amendment 2682 #
Proposal for a regulation
Article 64 – paragraph 1
Article 64 – paragraph 1
1. Access to data and documentation iIn the context of their activities, the national supervisory authorities, the market surveillance authorities, or the Commission, shall be granted full access to the training data sets, and where applicable, validation and testing datasets used by the provider or, where relevant, the user, including through application programming interfaces (‘API’) or other appropriate technical means and tools enabling remote access.
Amendment 2690 #
Proposal for a regulation
Article 64 – paragraph 2
Article 64 – paragraph 2
2. Where necessary to assess the conformity of the high-risk AI system with the requirements set out in Title III, Chapter 2 and upon a reasoned request, the market surveillance authoritiesnational supervisory authority, the market surveillance authorities or, where applicable, the Commission shall be granted access to the source code of the AI system.
Amendment 2697 #
Proposal for a regulation
Article 64 – paragraph 3
Article 64 – paragraph 3
3. National public authorities or bodies, which supervise or enforce the respect of obligations under Union law protecting fundamental rights in relation to the use of high-risk AI systems referred to in Annex III shall have the power to request and access any documentation created or maintained under this Regulation when access to that documentation is necessary for the fulfilment of the competences under their mandate within the limits of their jurisdiction. The relevant public authority or body shall inform the market surveillance authority of the Member State concerned of any such request.
Amendment 2698 #
Proposal for a regulation
Article 64 – paragraph 4
Article 64 – paragraph 4
Amendment 2700 #
Proposal for a regulation
Article 64 – paragraph 5
Article 64 – paragraph 5
5. Where the documentation referred to in paragraph 3 is insufficient to ascertain whether a breach of obligations under Union law intended to protect fundamental rights has occurred, the public authority or body referred to paragraph 3 may make a reasoned request to the market surveillance authoritynational supervisory authority, the market surveillance authority, or where applicable the Commission, to organise testing of the high- risk AI system through technical means. The market surveillance authoritynational supervisory authority, the market surveillance authority or where applicable the Commission shall organise the testing with the close involvement of the requesting public authority or body within reasonable time following the request.
Amendment 2704 #
Proposal for a regulation
Article 65 – title
Article 65 – title
Procedure for dealing with AI systems presenting a risk at national level
Amendment 2708 #
Proposal for a regulation
Article 65 – paragraph 1
Article 65 – paragraph 1
1. AI systems presenting a risk shall be understood as a product presenting a risk defined in Article 3, point 19 of Regulation (EU) 2019/1020 insofar as risks toAI systems having the potential to affect adversely the fundamental rights of persons, their health or safety or to, as well as AI systems having the protecntion of fundamental rights of persons are concernedal to breach the principles defined in Art. 4a or the Union values as enshrined in Article 2 TEU.
Amendment 2714 #
Proposal for a regulation
Article 65 – paragraph 2 – introductory part
Article 65 – paragraph 2 – introductory part
2. Where the market surveillance authority of a Member State has sufficient reasons to consider that an AI system presents a risk as referred to in paragraph 1to the health and safety of persons, they shall carry out an evaluation of the AI system concerned in respect of its compliance with all the requirements and obligations laid down in this Regulation. When risks to the protection of fundamental rights are present, the market surveillance authority shall also inform the relevant national public authorities or bodies referred to in Article 64(3). The relevant operators shall cooperate as necessary with the market surveillance authorities and the other national public authorities or bodies referred to in Article 64(3).
Amendment 2719 #
Proposal for a regulation
Article 65 – paragraph 2 a (new)
Article 65 – paragraph 2 a (new)
2 a. Where the national supervisory authority has sufficient reasons to consider that an AI system presents a risk to the protection of fundamental rights, the principles as defined in Art 4a or the Union values, as enshrined in Article 2 TEU, they shall carry out an evaluation of the AI system concerned in respect of its compliance with all the requirements and obligations laid down in this Regulation.
Amendment 2720 #
Proposal for a regulation
Article 65 – paragraph 2 b (new)
Article 65 – paragraph 2 b (new)
2 b. Where, in the course of that evaluation, the market surveillance authority or, where relevant, the national supervisory authority finds that the AI system does not comply with the requirements and obligations laid down in this Regulation, it shall without delay require the relevant operator to take all appropriate corrective actions to bring the AI system into compliance, to withdraw the AI system from the market, or to recall it within a reasonable period, commensurate with the nature of the risk, as it may prescribe, and in any case no later than 15 working days. The market surveillance authority shall inform the relevant notified body accordingly. Article 18 of Regulation (EU) 2019/1020 shall apply to the measures referred to in the first subparagraph.
Amendment 2721 #
Proposal for a regulation
Article 65 – paragraph 3
Article 65 – paragraph 3
3. Where the market surveillance authority or, where relevant, the national supervisory authority, considers that non- compliance is not restricted to its national territory, it shall inform the Board, the Commission and the other Member States’ competent authorities of the results of the evaluation and of the actions which it has required the operator to take.
Amendment 2724 #
Proposal for a regulation
Article 65 – paragraph 5
Article 65 – paragraph 5
5. Where the operator of an AI system does not take adequate corrective action within the period referred to in paragraph 2b, the market surveillance authority or, where relevant, the national supervisory authority, shall take all appropriate provisional measures to prohibit or restrict the AI system's being made available on its national market or put into service, to withdraw the productAI system from that market or to recall it. That authority shall immediately inform the Commission and, the oBoard and ther Member States, without delay’ market surveillance authorities, of those measures.
Amendment 2733 #
Proposal for a regulation
Article 65 – paragraph 7
Article 65 – paragraph 7
7. The market surveillance authorities of the Member States other than the market surveillancer, where applicable, the national supervisory authorityies of the other Member State initiating the procedures shall without delay inform the Commission and the other Member States, the Board and the authority initiating the procedure of any measures adopted and of any additional information at their disposal relating to the non-compliance of the AI system concerned, and, in the event of disagreement with the notified national measure, of their objections.
Amendment 2736 #
Proposal for a regulation
Article 65 – paragraph 8
Article 65 – paragraph 8
8. Where, within three months of receipt of the information referred to in paragraph 5, no objection has been raised by either a Member Statemarket surveillance authority, a national supervisory authority, or the Commission in respect of a provisional measure taken by a Member Statemarket surveillance authority or a national supervisory authority , that measure shall be deemed justified. This is without prejudice to the procedural rights of the concerned operator in accordance with Article 18 of Regulation (EU) 2019/1020.
Amendment 2747 #
Proposal for a regulation
Article 67 – title
Article 67 – title
Compliant AI systems which present a risk to the health and safety
Amendment 2750 #
Proposal for a regulation
Article 67 – paragraph 1
Article 67 – paragraph 1
1. Where, having performed an evaluation under Article 65, the market surveillance authority of a Member State finds that although an AI system is in compliance with this Regulation, it presents a risk to the health or safety of persons, to the compliance with obligations under Union or national law intended to protect fundamental rights or to other aspects of public interest protection, it shall require the relevant operator to take all appropriate measures to ensure that the AI system concerned, when placed on the market or put into service, no longer presents that risk, to withdraw the AI system from the market or to recall it within a reasonable period, commensurate with the nature of the risk, as it may prescribe.
Amendment 2754 #
Proposal for a regulation
Article 67 – paragraph 3
Article 67 – paragraph 3
3. The Member Statemarket surveillance authority shall immediately inform the Commission, the Board and the other Member States’ market surveillance authorities. That information shall include all available details, in particular the data necessary for the identification of the AI system concerned, the origin and the supply chain of the AI system, the nature of the risk involved and the nature and duration of the national measures taken.
Amendment 2759 #
Proposal for a regulation
Article 67 – paragraph 4
Article 67 – paragraph 4
4. The Commission shall without delay enter into consultation with the Member Statmarket surveillance authorities and the relevant operator and shall evaluate the national measures taken. On the basis of the results of that evaluation, the Commission shall decide whether the measure is justified or not and, where necessary, propose appropriate measures.
Amendment 2761 #
Proposal for a regulation
Article 67 – paragraph 5
Article 67 – paragraph 5
5. The Commission shall address its decision to the Member Statemarket surveillance authorities and communicate it to them and to the relevant operators.
Amendment 2765 #
Proposal for a regulation
Article 67 a (new)
Article 67 a (new)
Amendment 2773 #
Proposal for a regulation
Article 68 a (new)
Article 68 a (new)
Article 68 a Right to lodge a complaint 1. Affected persons, affected by an AI system falling within the scope of this Regulation, shall have the right to lodge a complaint against the providers or users of such AI system, with the national supervisory authority of the Member State where they have their habitual place of residence or place of work or where the alleged infringement took place, if they consider that their fundamental rights, health or safety have been breached. 2. Affected persons shall have a right to be heard in the complaint handling procedure and in the context of any investigations conducted by the national supervisory authority as a result of their complaint. 3. The national supervisory authority with which the complaint has been lodged shall inform the complainants about the progress and outcome of their complaint. In particular,the national supervisory authority shall take all the necessary actions to follow up on the complaints it receives and, within three months of the reception of a complaint, give the complainant a preliminary response indicating the measures it intends to take and the next steps in the procedure, if any. 4. The national supervisory authority shall take a decision on the complaint, without delay and no later than six months after the date on which the complaint was lodged.
Amendment 2778 #
Proposal for a regulation
Article 68 b (new)
Article 68 b (new)
Article 68 b Representation of affected persons 1. An affected person shall have the right to mandate a not-for-profit body, organisation or association that has been properly constituted in accordance with the law of a Member State, has statutory objectives which are in the public interest, and is active in the field of the protection of rights and freedoms of affected persons, with regard to the protection of their fundamental rights, to lodge the complaint on their behalf, to exercise the rights referred to in Article 68a on his or her behalf, and to exercise the right to receive compensation referred to in Article 70a and 71 on his or her behalf. 2. Any body, organisation or association referred to in paragraph 1 of this Article, independently of an affected person’s mandate, has the right to lodge, in that Member State, a complaint with the national supervisory authority which is competent pursuant to Article 68a, if it considers that the rights of a affected persons under this Regulation have been infringed as a result of them being subject to AI systems.
Amendment 2797 #
Proposal for a regulation
Article 70 – paragraph 1 – introductory part
Article 70 – paragraph 1 – introductory part
1. National supervisory authorities, national competent authorities and notified bodies involved in the application of this Regulation shall respect the confidentiality of information and data obtained in carrying out their tasks and activities in such a manner as to protect, in particular:
Amendment 2806 #
Proposal for a regulation
Article 70 – paragraph 1 a (new)
Article 70 – paragraph 1 a (new)
1 a. The Commission, the Board, national supervisory authorities, national competent authorities and notified bodies involved in the application of this Regulation shall put in place adequate cybersecurity and organisational measures to protect the security and confidentiality of the information and data obtained in carrying out their tasks and activities.
Amendment 2809 #
Proposal for a regulation
Article 70 – paragraph 2 – introductory part
Article 70 – paragraph 2 – introductory part
2. Without prejudice to paragraphs 1 and 1a, information exchanged on a confidential basis betweenamong the national competentsupervisory authorities and between, national competent authorities and the Commission shall not be disclosed without the prior consultation of the originating national competent authority and the user when high-risk AI systems referred to in points 1, 6 and 7 of Annex III are used by law enforcement, immigration or asylum authorities, when such disclosure would jeopardise public and national security interests.
Amendment 2812 #
Proposal for a regulation
Article 70 a (new)
Article 70 a (new)
Amendment 2819 #
Proposal for a regulation
Article 71 – paragraph 1
Article 71 – paragraph 1
1. In compliance with the terms and conditions laid down in this Regulation, Member States shall lay down the rules on penalties, including administrative fines, applicable to infringements of this Regulation, in particular for infringements which are not subject to administrative fines pursuant to Article70a, and shall take all measures necessary to ensure that they are properly and effectively implemented. The penalties provided for shall be effective, proportionate, and dissuasive. They shall take into particular account the interests of small-scale providers and start-up and their economic viability.
Amendment 2824 #
Proposal for a regulation
Article 71 – paragraph 2
Article 71 – paragraph 2
2. The Member States shall notify the Commission[by 3 months following the date of entry into force of this Regulation] the Commission and the Board of those rules and of those measures and shall notify it, without delay, of any subsequent amendment affecting them.
Amendment 2829 #
Proposal for a regulation
Article 71 – paragraph 3
Article 71 – paragraph 3
Amendment 2846 #
Proposal for a regulation
Article 71 – paragraph 4
Article 71 – paragraph 4
Amendment 2854 #
Proposal for a regulation
Article 71 – paragraph 5
Article 71 – paragraph 5
Amendment 2861 #
Proposal for a regulation
Article 71 – paragraph 6
Article 71 – paragraph 6
Amendment 2875 #
Proposal for a regulation
Article 71 – paragraph 7
Article 71 – paragraph 7
Amendment 2877 #
Proposal for a regulation
Article 71 – paragraph 8
Article 71 – paragraph 8
Amendment 2885 #
Proposal for a regulation
Article 72 – paragraph 1 – point a
Article 72 – paragraph 1 – point a
(a) the nature, gravity and duration of the infringement and of its consequences, including to affected persons;
Amendment 2886 #
Proposal for a regulation
Article 72 – paragraph 1 – point a a (new)
Article 72 – paragraph 1 – point a a (new)
(a a) any action taken by the Union institution, agency or body to mitigate the harm;
Amendment 2892 #
Proposal for a regulation
Article 72 – paragraph 1 – point c a (new)
Article 72 – paragraph 1 – point c a (new)
(c a) the manner in which the infringement became known to the European Data Protection Supervisor, in particular whether, and if so, to what extent, the Union institution, agency or body notified the infringement.
Amendment 2896 #
Proposal for a regulation
Article 72 – paragraph 2 – introductory part
Article 72 – paragraph 2 – introductory part
2. The following infringementsnon-compliance with the prohibition of the artificial intelligence practices referred to in Article 5 shall be subject to administrative fines of up to 51 000 000 EUR:
Amendment 2900 #
Proposal for a regulation
Article 72 – paragraph 2 – point a
Article 72 – paragraph 2 – point a
Amendment 2902 #
Proposal for a regulation
Article 72 – paragraph 2 – point b
Article 72 – paragraph 2 – point b
Amendment 2905 #
Proposal for a regulation
Article 72 – paragraph 2 a (new)
Article 72 – paragraph 2 a (new)
2 a. The non-compliance of the AI system with the requirements laid down in Article 10 shall be subject to administrative fines of up to 700 000 EUR.
Amendment 2909 #
Proposal for a regulation
Article 72 – paragraph 3
Article 72 – paragraph 3
3. The non-compliance of the AI system with any requirements or obligations under this Regulation, other than those laid down in Articles 5 and 10, shall be subject to administrative fines of up to 2500 000 EUR.
Amendment 2912 #
Proposal for a regulation
Article 72 – paragraph 5
Article 72 – paragraph 5
5. The rights of defense of the parties concerned shall be fully respected in the proceedings. They shall be entitled to have access to the European Data Protection Supervisor’s file, subject to the legitimate interest of individuals or undertakings in the protection of their personal data or business secrets.
Amendment 2915 #
Proposal for a regulation
Article 72 – paragraph 6
Article 72 – paragraph 6
6. Funds collected by imposition of fines in this Article shall be the income ofcontribute to the general budget of the Union.
Amendment 2916 #
Proposal for a regulation
Article 72 – paragraph 6 a (new)
Article 72 – paragraph 6 a (new)
6 a. The European Data Protection Supervisor shall, on an annual basis, notify the Board of the fines it has imposed pursuant to this Article.
Amendment 2943 #
Proposal for a regulation
Article 83
Article 83
AI systems already placed on the market or put into service 1. This Regulation shall not apply to the AI systems which are components of the large-scale IT systems established by the legal acts listed in Annex IX that have been placed on the market or put into service before [12 months after the date of application of this Regulation referred to in Article 85(2)], unless the replacement or amendment of those legal acts leads to a significant change in the design or intended purpose of the AI system or AI systems concerned. The requirements laid down in this Regulation shall be taken into account, where applicable, in the evaluation of each large-scale IT systems established by the legal acts listed in Annex IX to be undertaken as provided for in those respective acts. 2. This Regulation shall apply to the high- risk AI systems, other than the ones referred to in paragraph 1, that have been placed on the market or put into service before [date of application of this Regulation referred to in Article 85(2)], only if, from that date, those systems are subject to significant changes in their design or intended purpose.rticle 83 deleted
Amendment 2971 #
Proposal for a regulation
Article 84 – paragraph 1
Article 84 – paragraph 1
1. The Commission shall assess the need for amendment of the list in Annex III once a yearannually following the entry into force of this Regulation and following a recommendation of the Board.
Amendment 2975 #
Proposal for a regulation
Article 84 – paragraph 3 – point b
Article 84 – paragraph 3 – point b
(b) the state of penalties, and notably administrative fines as referred to in Articles 71(1),0a and 71 applied by national supervisory authoritites and Member States to infringements of the provisions of this Regulation.
Amendment 3012 #
Proposal for a regulation
Annex I
Annex I
Amendment 3042 #
Proposal for a regulation
Annex III – title
Annex III – title
INDICATIVE LIST OF HIGH-RISK AI SYSTEMS REFERRED TO IN ARTICLE 6(2)
Amendment 3053 #
Proposal for a regulation
Annex III – paragraph 1 – point 1 – introductory part
Annex III – paragraph 1 – point 1 – introductory part
1. Biometric identification and categorisation of natural personsAI systems which use biometric or biometrics-based data:
Amendment 3060 #
Proposal for a regulation
Annex III – paragraph 1 – point 1 – point a
Annex III – paragraph 1 – point 1 – point a
(a) AI systems intended tothat are or may be used for the ‘real-time’ and ‘post’ remote biometric identification of natural persons, including in workplaces, in educational settings and in border surveillance, or for the provision of public or essential services;
Amendment 3067 #
Proposal for a regulation
Annex III – paragraph 1 – point 1 – point a a (new)
Annex III – paragraph 1 – point 1 – point a a (new)
Amendment 3075 #
Proposal for a regulation
Annex III – paragraph 1 – point 1 – point a b (new)
Annex III – paragraph 1 – point 1 – point a b (new)
(a b) AI systems that are or may be used for monitoring compliance with health and safety measures or inferring alertness /attentiveness for safety purposes, on the basis of biometric or biometrics-based data;
Amendment 3080 #
Proposal for a regulation
Annex III – paragraph 1 – point 1 – point a c (new)
Annex III – paragraph 1 – point 1 – point a c (new)
(a c) AI systems that are or may be used to diagnose or support diagnosis of medical conditions or medical emergencies on the basis of biometric or biometrics-based data;
Amendment 3149 #
Proposal for a regulation
Annex III – paragraph 1 – point 6 – point a
Annex III – paragraph 1 – point 6 – point a
Amendment 3160 #
Proposal for a regulation
Annex III – paragraph 1 – point 6 – point b
Annex III – paragraph 1 – point 6 – point b
Amendment 3178 #
Proposal for a regulation
Annex III – paragraph 1 – point 6 – point e
Annex III – paragraph 1 – point 6 – point e
Amendment 3194 #
Proposal for a regulation
Annex III – paragraph 1 – point 7 – point a
Annex III – paragraph 1 – point 7 – point a
Amendment 3197 #
Proposal for a regulation
Annex III – paragraph 1 – point 7 – point b
Annex III – paragraph 1 – point 7 – point b
Amendment 3210 #
Proposal for a regulation
Annex III – paragraph 1 – point 7 – point d
Annex III – paragraph 1 – point 7 – point d
Amendment 3244 #
Proposal for a regulation
Annex IV – paragraph 1 – point 1 – point a
Annex IV – paragraph 1 – point 1 – point a
(a) its intended purpose or reasonably foreseeable use, the person/s developing the system, the date and the version of the system;
Amendment 3251 #
Proposal for a regulation
Annex IV – paragraph 1 – point 1 – point b
Annex IV – paragraph 1 – point 1 – point b
(b) how the AI system interacts or can be used to interact with hardware or software, including other AI systems, that isare not part of the AI system itself, where applicable;
Amendment 3269 #
Proposal for a regulation
Annex IV – paragraph 1 – point 2 – point g
Annex IV – paragraph 1 – point 2 – point g
(g) the validation and testing procedures used, including information about the validation and testing data used and their main characteristics; metrics used to measure accuracyperformance, robustness, cybersecurity and compliance with other relevant requirements set out in Title III, Chapter 2 as well as potentially discriminatory impacts; test logs and all test reports dated and signed by the responsible persons, including with regard to pre-determined changes as referred to under point (f).
Amendment 3273 #
3 a. A description of the appropriateness of the performance metrics for the specific AI system;
Amendment 3289 #
Proposal for a regulation
Annex VIII – title
Annex VIII – title
INFORMATION TO BE SUBMITTED UPON THE REGISTRATION OF HIGH- RISK AI SYSTEMS IN ACCORDANCE WITH ARTICLE 5160
Amendment 3292 #
Proposal for a regulation
Annex VIII – paragraph 1
Annex VIII – paragraph 1
The following information shall be provided and thereafter kept up to date with regard to high-risk AI systems to be registered in accordance with Article 5160.
Amendment 3298 #
Proposal for a regulation
Annex VIII – point 3
Annex VIII – point 3
3. Name, address and contact details of the authorisedlegal representative, where applicable;
Amendment 3310 #
Proposal for a regulation
Annex VIII – point 12 a (new)
Annex VIII – point 12 a (new)
12 a. The list of users of the AI systems