|
(122)
|
It is appropriate that, without prejudice to the use of harmonised standards
and common specifications, providers of a high-risk AI system that has been trained and
tested on data reflecting the specific geographical, behavioural, contextual or functional
setting within which the AI system is intended to be used, should be presumed to comply with the
relevant measure provided for under the requirement on data governance set out in this
Regulation. Without prejudice to the requirements related to robustness and accuracy set out in
this Regulation, in accordance with Article 54(3) of Regulation (EU) 2019/881, high-risk AI
systems that have been certified or for which a statement of conformity has been issued
under a cybersecurity scheme pursuant to that Regulation and the references of which have
been published in the Official Journal of the European Union
should be presumed to comply with the cybersecurity requirement of this Regulation in so far as
the cybersecurity certificate or statement of conformity or parts thereof cover the
cybersecurity requirement of this Regulation. This remains without prejudice to the voluntary
nature of that cybersecurity scheme.
|