Annex III defines eight domains within which AI systems are classified as high-risk. Biometrics covers remote biometric identification and biometric categorisation. Critical infrastructure covers AI components in the management and operation of critical digital infrastructure, road traffic, and the supply of water, gas, heating and electricity. Education and vocational training covers systems determining access to or outcomes within educational institutions.

Employment, workers management and access to self-employment covers systems used in recruitment, candidate screening, performance evaluation, and task allocation. Access to and enjoyment of essential private services and essential public services and benefits covers systems determining eligibility for public assistance, creditworthiness assessment, insurance pricing, and emergency services dispatch. Law enforcement covers systems used for risk assessment of individuals, polygraphs, evidence reliability assessment, and crime prediction. Migration, asylum and border control management covers systems used for asylum application assessment, border surveillance, and security risk assessment. Administration of justice and democratic processes covers systems used for legal research assistance and alternative dispute resolution.

The AI System Assessor maps the system’s intended purpose against all eight domains. A system may fall within multiple domains if its use spans different contexts. The domain determination drives the specific risk factors that the subsequent risk assessment must address.

Key outputs

• Mapping of intended purpose against all eight Annex III domains
• Multi-domain identification where applicable
• Domain-specific risk factor identification
• Module 6 AISDP documentation