Transparency & Information - AI Governance Hub

ISO × NIST × EU

// theme · transparency

Transparency & Information

Open in explorer →

Disclosure to users, deployers, regulators; AI-generated content labelling.

// Do once → satisfies all three

ONE published model card plus an in-product AI notice and synthetic-content label.

User-facing notice + maintained model card delivers ISO transparency, NIST explainability evidence, and EU disclosure duties at once.

ISO 42001

Annex A.8

NIST AI RMF

MEASURE 2.8 · MEASURE 2.9 · MEASURE 3.3

EU AI Act

Art.13 · Art.50

// Evidence auditors expect

✓ User-facing notice that AI is in use + instructions for use
✓ Model card published with intended use, limits, performance
✓ AI-generated content labelling (Art.50) for synthetic media
✓ Disclosure log showing what was told to whom and when

// Common pitfalls

⚠ User notice buried in T&Cs instead of in-product (fails Art.13/50).
⚠ Generic model card that doesn't cover the deployed configuration.
⚠ Disclosure to deployers but not to affected end-users.

ISO 42001

5

Annex A.8 obliges providing information to interested parties; Cl.7.4 covers communications.

Internal and external communications regarding AIMS.

System documentation and information for users

Provide system documentation and information so users can use the AI system correctly.

External reporting

Report externally on AI system performance, incidents and impacts as appropriate.

Communication of incidents

Communicate AI system incidents to affected parties and authorities in a timely way.

Information for interested parties

Provide information about AI systems to interested parties beyond direct users.

NIST AI RMF

4

MEASURE 2.8/2.9 + MANAGE 2.3 ensure model behaviour is explainable and disclosed.

Stakeholder engagement & communications

Mechanisms for stakeholder feedback and communication.

Transparency & accountability examined

Risks of opacity examined and addressed.

Interpretability & explainability

AI system is examined for interpretability and explainability.

Feedback from end users captured

Feedback from end users and affected communities tracked.

EU AI Act

2

Art.13 requires user-facing instructions for high-risk AI; Art.50 mandates labelling of AI-generated content and disclosure of chatbots and deepfakes.

Transparency & info to deployers

Instructions for use enabling deployers to interpret output and use the AI appropriately.

Transparency for certain AI systems

Disclose AI interaction, label deepfakes, mark synthetic content.

// What now?

Open “Transparency & Information” in the Explorer →

Continue to a related theme · Human Oversight →