Article 12 - Record Keeping (ART12)

High-risk AI systems shall be designed and developed with capabilities enabling the automatic recording of events (‘logs’) while the high-risk AI systems is operating (12.01). Those logging capabilities shall conform to recognised standards or common specifications.

The logging capabilities shall ensure a level of traceability of the AI system’s functioning throughout its lifecycle that is appropriate to the intended purpose of the system (12.02).

In particular, logging capabilities shall enable the monitoring of the operation of the high-risk AI system with respect to the occurrence of situations that may result in the AI system presenting a risk within the meaning of Article 65(1) (12.03) or lead to a substantial modification, and facilitate the post-market monitoring referred to in Article 61.

For high-risk AI systems intended to be used for the ‘real-time’ and ‘post’ remote biometric identification of natural persons shall provide, at a minimum (12.04):

1. Recording of the period of each use of the system (start date and time and end date and time of each use);

2. The reference database against which input data has been checked by the system;

3. The input data for which the search has led to a match;

4. The identification of the natural persons involved in the verification of the results, as referred to in Article 14 (5).

Below is the list of controls/checks part of Article 12.

• 12.01 - Logging Capabilities

• 12.02 - Logging Traceability

• 12.03 - Logging - Situations that may cause AI Risk

• 12.04 - Logging - Biometric Systems Requirements