... By including general AI, the group say the Act would subject low-risk AI systems to heavy scrutiny, simply because there is no clear definition of how they will be used.
“As a result, the AI Act would no longer regulate specific high-risk scenarios, but a whole technology regardless of its risk classification,” the group wrote in a paper on the issue. ...
That same developer would also have to continuously monitor the operation of the tool, creating possible GDPR conflicts as it could also be used to extract personal data. ...
However, not everyone agrees with the group’s assessment. Adam Leon Smith from Dragonfly, a UK industry representative to the EU AI standards group, said general purpose systems need to be included in the legislation due to potential unintended consequences.
“Such components can be the cause of the harm the AI Act is intended to prevent,” Leon Smith said. “In fact, the risk is arguably greater if the AI component is being used in a way that the developers did not envisage. ...
“The latest draft proposals include a get-out clause for developers, they simply need to include a usage limitation in the instructions for use. Frankly, it would be unusual to download open source software without legal documentation already being included – so this is an extra line or two in there – not a huge burden upon developers.”