Try a demo

Back to Resources

/The European Union’s Artificial Intelligence Act

  • Article
reglamento inteligencia artificial unión europea
Leire Arbona

Leire Arbona

Legal & Compliance Director

Table of contents

On March 13th, 2024, the Artificial Intelligence Act was approved in the plenary session of the European Parliament. It is the most relevant step in the approval process. This legislation establishes a comprehensive regulatory framework for the use of AI systems in EU Member States, prioritizing safety, transparency and accountability.

The most significant aspect of the regulation is its focus on classifying AI systems according to their risk level. This strategy allows for more precise and effective regulation with robust safety standards and fundamental rights protection.

These standards will be crucial in preventing the use of AI in applications that could be repressive, manipulative, intrusive, or discriminatory.

The EU’s Artificial Intelligence Act sets a precedent for how emerging technologies can be effectively and ethically regulated without sacrificing innovation. This law is expected to have a significant impact not only in Europe but also as a global regulatory model, promoting the development and use of AI that is safe, ethical, and respectful of fundamental rights and freedoms.

Categorization of Risk Levels

  • Unacceptable Risk: This category includes AI systems that directly threaten public safety, fundamental rights, or privacy. Their use is strictly prohibited except in very exceptional situations.
  • High Risk: This category includes AI systems that could have a considerable impact on individuals’ fundamental rights due to their relation to services and processes affecting health, safety, employment, etc. Their use is allowed, provided that certain additional safeguards are met, and their operation is monitored.
  • Low Risk or Nonexistent Risk: Finally, systems that do not fit the above categories are considered low risk. It is important to note that this classification is implicit rather than explicit. In this category, the decision-making capacity of citizens in a free, informed, voluntary, and unequivocal manner is paramount for the use of these technologies. Some systems with specific transparency obligations are included in this low-risk category (for example, generative AI systems, chatbots, etc.).

Biometric Recognition Systems: A Focus on Consent and Risk

This AI Regulation introduces a significant distinction in the use of biometric technologies, making user awareness and voluntary decision on its use a key factor for classification.

Applications involving active and conscious user participation, demonstrating their knowledge and approval, are considered low risk. This approach underscores the importance of consent in the digital age.

On the other hand, Remote Biometric Identification (RBI), which implies passive user involvement and is often associated with mass surveillance, is classified as high risk. Moreover, the use of RBI systems in real-time in public spaces for law enforcement purposes is prohibited except in very exceptional cases where additional security measures should be applied.

Among the low-risk applications are biometric verification for account opening and voluntary physical access control to buildings and facilities.

artificial intelligence act

Non-Remote Biometric Identification: Classified as Low Risk

A clear example of this low-risk classification is non-remote Facial Authentication, where active and conscious participation of the citizen is essential. This classification reflects a commitment to protecting privacy and security in the use of biometric technologies. These biometric technologies’ defining features that justify their low-risk classification include:

  • Guaranteed Privacy: The biometric vectors used do not directly reveal the individual’s identity.
  • Irreversibility: Recovering the original facial image from the biometric vector is impossible, ensuring personal data protection.
  • Exclusivity and Non-Interoperability: Each system uses unique biometric vectors, preventing cross-use between different manufacturers and applications.
  • Advanced Encryption: Biometric data is protected through robust encryption, ensuring its security.
  • Revocability: Biometric vectors can be updated or canceled, providing flexibility and security in case of data compromise.
  • Equity and Non-Bias: Commitment to equitable accuracy for all groups, promoting fair and ethical treatment.
  • These biometric systems are not designed to infer personal characteristics, such as health status, mood, gender or other user information.

Benefits of Artificial Intelligence in Businesses

The Proper use of Artificial Intelligence (AI) in businesses provide not only security but also efficiency and precision in responding to customer demands. Companies can ensure safer and more efficient operations with wholly-owned solutions that are continuously updated and trained.

This constant evolution in AI is reflected in technologies with high-quality certifications like NIST or iBeta, ensuring the reliability and efficiency of their applications.

Another crucial aspect is AI’s ability to quickly and securely verify identities, saving management costs and enhancing identity protection, a key factor in today’s business environment. 

Despite implementation challenges like needing high-quality data and ensuring transparency and accountability, AI’s benefits are significant. A KPMG study indicates that over 50% of businesses consider AI essential for growth in the coming years.

Download eBook

Enforcement of the Artificial Intelligence Act and Next Steps

On March 13th, 2024, the Artificial Intelligence Regulation was approved in the plenary of the European Parliament. Afterward, it will enter the deadlines for ratification by the Council, then for signature by the Presidents and Secretaries General of the Parliament and the Council, and publication in the Official Journal of the European Union (OJEU).

From that moment on, the period for its application will start to run from 6 months (end of 2024) to 24 months (year 2026) for the regulation as a whole.

As for the next steps, the EU will set up an artificial intelligence office to oversee the implementation of the Regulation.

The Future of Artificial Intelligence Laws: A Global Perspective

The European Union’s recent AI legislation sets a precedent within the EU and as a model globally, guiding other nations in forming their AI policies with a balance between innovation and ethical regulation.

Spain’s ‘Regulatory Sandbox‘ exemplifies EU members’ national implementation of the AI Regulation framework, creating a secure environment for AI development.

Concurrently, the UK’s ‘Online Safety Bill’ aims to enhance digital user protection. These regulatory efforts, including the EU’s legislation, indicate a global trend toward regulating emerging technologies, emphasizing the protection of individual rights and safety in the digital age.

The EU’s AI Act marks a significant international regulatory advancement, setting a standard for ethical and safe technology adoption and influencing future legislation worldwide. 

This approach underscores the EU’s commitment to protecting its citizens while fostering responsible innovation, leading the way towards a more ethical and secure future in AI.

/Discover more insights and resources

All Resources

Leire Arbona, Veridas
/Article

Interview: “Compliance for us is not just about meeting legal requirements; it’s about exceeding them to provide assurance to our users and clients”

what is eIDAS 2
/Article

What is eIDAS 2 and how to prepare your business

What is passwordless authentication
/Article

What is passwordless authentication?

/Let’s talk!

Talk to our identity verification team and find out what our solutions can do for you:
/Certified technology
nist_logo-1.png
IBETA-COMPLIANT-ISO-30107-3-logo-New.png
ISO9001
27001-ENAC-Castellano
ENS-logo-700x276-1.png
5bfdd73990c23b4fdade7e4d_GDPR-Logo.png
2023 luminary

About

Solutions

Industries

Use cases

Resources

Developers

Partners

Become part of our network and add the best verification solution on the market to your product catalog.

Become a partner
More info

Find us worlwide

  • Spain
  • United States
  • Mexico
  • United Kingdom

Gartner peer-insights

Read reviews

Follow us

Try a demo
/El camino de BBVA Crecimiento del revenue a través de la identidad

"La biometría te habilita un canal en el que hacer negocio donde ahora no te lo planteas"

Ver caso de éxito
Facial Parking Access

Simplify entry, save time, and manage your stadium parking more efficiently.

Quick Facial Parking Access

Enter the parking area in under 1 second with facial recognition technology.

Stress-Free Experience

Simplify the ticket purchase process and enable attendees to enjoy a hands-free experience throughout their stadium stay.

Enhanced Security

Elevate your parking security for peace of mind.

Facial Ticketing

Protect your Stadium with our end-to-end identity verification platform, featuring biometric and document verification, trusted data sources, and fraud detection.

Instant Identity Verification

Verify your attendees’ identity remotely in less than 1 minute.

Pop-up Convenience

Simplify the ticket purchase process and enable attendees to enjoy a hands-free experience throughout their stadium stay.

Maximum Security

Enhance the security of the purchase process, eliminating the possibility of fraud, resale, and unauthorized access.

Learn More
Popup title

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.