Source: OJ L, 2024/1689, 12.7.2024Current language: EN
- Artificial intelligence act
Basic legislative acts
- AI act regulation
Article 61 Informed consent to participate in testing in real world conditions outside AI regulatory sandboxes
Summary What does Article 61 of the AI act regulation say?
This article directly supports Article 60, which governs real-world testing of high-risk AI systems outside regulatory sandboxes.
Article 61 focuses entirely on the informed consent requirement that must be satisfied before any test subject participates in such testing.
It sets out what information must be provided to subjects beforehand, and establishes that consent must be documented, dated, and a copy given to the subject or their legal representative.
Important points:
- Providers or prospective providers conducting real-world testing must obtain freely-given, informed consent from each subject prior to their participation, covering the nature and objectives of the test, conditions of participation, the subject's rights, how to challenge AI outputs, and the provider's contact details.
- Subjects must be informed of their right to refuse or withdraw from testing at any time, without detriment and without providing justification.
- Informed consent must be dated, documented, and a copy provided to the subject or their legal representative.
Springlex's summary of the article, a reading aid, not a substitute for the legal text.
For the purpose of testing in real world conditions under Article 60, freely-given informed consent shall be obtained from the subjects of testing prior to their participation in such testing and after their having been duly informed with concise, clear, relevant, and understandable information regarding:
the nature and objectives of the testing in real world conditions and the possible inconvenience that may be linked to their participation;
the conditions under which the testing in real world conditions is to be conducted, including the expected duration of the subject or subjects’ participation;
their rights, and the guarantees regarding their participation, in particular their right to refuse to participate in, and the right to withdraw from, testing in real world conditions at any time without any resulting detriment and without having to provide any justification;
the arrangements for requesting the reversal or the disregarding of the predictions, recommendations or decisions of the AI system;
the Union-wide unique single identification number of the testing in real world conditions in accordance with Article 60(4) point (c), and the contact details of the provider or its legal representative from whom further information can be obtained.
The informed consent shall be dated and documented and a copy shall be given to the subjects of testing or their legal representative.
Relevant recitals
Recital 141 Conditions for testing high-risk AI systems
In order to accelerate the process of development and the placing on the market of the high-risk AI systems listed in an annex to this Regulation, it is important that providers or prospective providers of such systems may also benefit from a specific regime for testing those systems in real world conditions, without participating in an AI regulatory sandbox. However, in such cases, taking into account the possible consequences of such testing on individuals, it should be ensured that appropriate and sufficient guarantees and conditions are introduced by this Regulation for providers or prospective providers. Such guarantees should include, inter alia, requesting informed consent of natural persons to participate in testing in real world conditions, with the exception of law enforcement where the seeking of informed consent would prevent the AI system from being tested. Consent of subjects to participate in such testing under this Regulation is distinct from, and without prejudice to, consent of data subjects for the processing of their personal data under the relevant data protection law. It is also important to minimise the risks and enable oversight by competent authorities and therefore require prospective providers to have a real-world testing plan submitted to competent market surveillance authority, register the testing in dedicated sections in the EU database subject to some limited exceptions, set limitations on the period for which the testing can be done and require additional safeguards for persons belonging to certain vulnerable groups, as well as a written agreement defining the roles and responsibilities of prospective providers and deployers and effective oversight by competent personnel involved in the real world testing. Furthermore, it is appropriate to envisage additional safeguards to ensure that the predictions, recommendations or decisions of the AI system can be effectively reversed and disregarded and that personal data is protected and is deleted when the subjects have withdrawn their consent to participate in the testing without prejudice to their rights as data subjects under the Union data protection law. As regards transfer of data, it is also appropriate to envisage that data collected and processed for the purpose of testing in real-world conditions should be transferred to third countries only where appropriate and applicable safeguards under Union law are implemented, in particular in accordance with bases for transfer of personal data under Union law on data protection, while for non-personal data appropriate safeguards are put in place in accordance with Union law, such as Regulations (EU) 2022/868(42) and (EU) 2023/2854(43) of the European Parliament and of the Council.
Springlex and this text is meant purely as a documentation tool and has no legal effect. No liability is assumed for its content. The authentic version of this act is the one published in the Official Journal of the European Union.
Definition
sandbox plan
Definition
instructions for use
Definition
testing in real-world conditions
Definition
provider
Definition
law enforcement
Definition
market surveillance authority
Definition
informed consent
Definition
personal data
Definition
non-personal data
Definition
subject
Definition
deployer
Definition
law enforcement authority
- any public authority competent for the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, including the safeguarding against and the prevention of threats to public security; or
- any other body or entity entrusted by Member State law to exercise public authority and public powers for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, including the safeguarding against and the prevention of threats to public security;
Definition
intended purpose
Definition
placing on the market
Definition
AI regulatory sandbox
Definition
real-world testing plan
Definition
AI system
Definition
risk
Definition
general-purpose AI model
Footnote 42
Footnote 43