High-risk AI: what are the obligations?
AI for credit scoring, insurance, HR decisions or recruitment is high-risk. The obligations are heavy: conformity assessment, logging, human oversight and impact assessments.
The AI Act classifies certain AI systems as high-risk because of their direct impact on people's lives. For webshops the most relevant are: AI credit scoring (buy-now-pay-later), AI insurance pricing and AI recruitment.
As deployer of high-risk AI you must: (1) carry out a DPIA, (2) keep automatic logs for at least 6 months, (3) ensure human oversight, (4) inform individuals when AI takes decisions about them.
For certain systems (credit, insurance) a FRIA (Fundamental Rights Impact Assessment) is also required. This goes beyond a DPIA: you assess the impact on fundamental rights such as non-discrimination and equal treatment.
The right to explanation (Article 86): people affected by high-risk AI have the right to a clear explanation of how the AI reached its decision.
Want to know if this applies to your website?
Our scanner automatically checks whether your website meets these AI Act requirements and gives concrete recommendations.
Scan your website