Back

Include a statement that the artificial intelligence system meets all requirements in the declaration of conformity.


CONTROL ID
15100
CONTROL TYPE
Establish/Maintain Documentation
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS




This Control directly supports the implied Control(s):
  • Establish, implement, and maintain a declaration of conformity., CC ID: 15038

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH




  • The EU declaration of conformity shall state that the high-risk AI system in question meets the requirements set out in Chapter 2 of this Title. The EU declaration of conformity shall contain the information set out in Annex V and shall be translated into an official Union language or languages requ… (Article 48 2., Proposal for a Regulation of The European Parliament and of The Council Laying Down Harmonized Rules On Artificial Intelligence (Artificial Intelligence Act) and Ameding Certain Union Legislative Acts)
  • Determine legal requirements or obligations of using such technology. It is increasingly likely that the use of AI and associated solutions, e.g. facial recognition or automated vehicle movement, will be challenged and can be the subject of new legal requirements. The governing body should show how … (§ 5.5 ¶ 1 Bullet 4, ISO/IEC 38507:2022, Information technology — Governance of IT — Governance implications of the use of artificial intelligence by organizations)
  • The governing body should seek assurances that management configures and maintains any AI system used by the organization to meet the organization's compliance obligations and avoid breaches of compliance. Examples of breaches include pricing mechanisms that violate anti-trust legal requirements or … (§ 6.6.1 ¶ 2, ISO/IEC 38507:2022, Information technology — Governance of IT — Governance implications of the use of artificial intelligence by organizations)
  • Contractual issues. The governing body should ensure that applicable contracts, laws and best practices remain valid when AI systems are used. In many AI applications, systems learn from the data and practice of their host organization, in an initial, and potentially ongoing, basis. This uniquely ma… (§ 6.7.4 ¶ 5 Bullet 2, ISO/IEC 38507:2022, Information technology — Governance of IT — Governance implications of the use of artificial intelligence by organizations)