**Article 9**

**Establishment and Scope of the Risk Management System**  
Veritas Learning Systems implemented a documented risk management system for the Academic Compliance Monitor during the design and development phases. This process involved identifying hazards such as false accusations resulting from environmental noise interference or adaptive cheating methods, which could impact student fundamental rights and exam integrity. The assessment incorporated a combinatory analysis of the AI system’s hybrid architecture—Random Forest classifiers for static behavioral features and recurrent neural networks (RNNs) for temporal sequence modeling—to understand limitations in distinguishing legitimate anomalies from cheating behaviors. The system’s input modalities, including keyboard dynamics and environmental audio gathered in examination halls, were analyzed for known risks such as varying acoustic conditions that could degrade model specificity. These findings were consolidated into the initial system hazard log and risk register, which informed the selection of mitigation strategies primarily focused on robust pre-launch model training with balanced datasets (15,000 exam sessions, covering diverse ambient noise profiles) and threshold calibration to optimize the trade-off between false positive and false negative rates.

**Approach to Risk Identification and Analysis**  
The risk management process established at launch identified and analyzed reasonably foreseeable risks under intended use, including the risk of misclassification driven by student behavioral variability and the potential misuse through attempts to circumvent detection. The system’s design incorporated scenario-based threat modeling, where potential cheating strategies were extrapolated from historical exam reports and academic integrity studies, allowing initial feature engineering to capture known adversarial actions. Environmental factors such as fluctuating ambient noise levels—representing typical examination hall conditions ranging between 35 dB to 65 dB—were incorporated into feature rejection criteria to reduce spurious alerts. The analysis explicitly excluded biometric identification to comply with regulatory restrictions and minimize data protection risks. However, post-deployment scenarios and novel threats emerging from evolving student tactics or changing exam environments were not systematically reviewed or integrated beyond pre-launch conceptualizations.

**Estimation, Evaluation, and Post-Deployment Risk Considerations**  
Risk estimation was carried out using a weighted probabilistic framework combining classifier confidence outputs and temporal anomaly scores. The acceptable residual risk thresholds were determined via cross-validation on holdout sets, targeting a maximum false-positive rate of 2.5% and false-negative rate below 5%, calibrated through extensive offline testing prior to market release. Despite availability of operational data collected after deployment—comprising feedback from three consecutive exam cycles, totaling approximately 12,000 monitored sessions—the risk management process did not incorporate structured post-market surveillance or periodic risk reevaluation. Consequently, risk estimates and evaluations remain anchored in the original empirical distributions and do not reflect shifts in behavior patterns such as emerging cheating methods exploiting model blind spots or variations in ambient audio conditions due to changed testing locations or protocols.

**Adoption and Implementation of Risk Management Measures**  
Risk mitigation focused on the system architecture and data preprocessing procedures to address salient risks identified at design time. Mitigation included feature normalization techniques to reduce noise sensitivity, ensemble voting mechanisms to ensure classifier consensus before flagging alerts, and clear operational guidance for exam supervisors on interpreting detection outputs. Technical documentation provides detailed usage instructions and system limitations, complemented by user training modules designed to impart knowledge on data handling and response protocols. These measures aim to minimize the residual risk of unjustified suspicion or overlooked infractions, balancing system sensitivity and specificity within design constraints. However, no incremental or adaptive risk control measures have been adopted to handle post-deployment dynamics, limiting the system’s responsiveness to newly surfaced operational risks.

**Testing and Validation of Risk Control Effectiveness**  
The Academic Compliance Monitor was subjected to comprehensive pre-market testing, including simulated real-world examination scenarios reflecting diverse student populations and exam conditions. Test datasets comprised multimodal event sequences (keyboard and audio streams) accrued from controlled pilot sessions and historical examinations, engineered to capture representative behavioral patterns and ambient noise characteristics. Performance metrics were benchmarked against predefined acceptance criteria ensuring consistent anomaly detection aligned with intended use. Validation involved cross-disciplinary expert review confirming that detection thresholds and alerting protocols appropriately balance risk mitigation without generating excessive false alarms. No standardized post-deployment testing or audits have been instituted to reassess system behavior or emerging risks following system introduction.

**Considerations Regarding Vulnerable Groups and Minors**  
Due consideration was given during the initial risk assessment to potential adverse impacts on students under 18 years of age, notably around safeguarding rights to privacy and avoiding unwarranted accusations in sensitive developmental stages. Measures include restricting data inputs to behavioral and environmental non-biometric signals, obfuscating personally identifiable patterns in logging, and providing supervisors with contextual interpretation guidelines mitigating disproportionate disciplinary outcomes. Although such considerations informed initial design-phase risk measures, ongoing monitoring of these impacts via adaptive risk management post-deployment has not been operationalized.

**Integration with Other Compliance Obligations**  
The documented risk management procedures for the Academic Compliance Monitor align with provider obligations under existing educational oversight frameworks and incorporate data protection principles by limiting collected data scopes. However, these risk management actions remain segregated and static, focusing solely on the provider’s domain of responsibility through system design and initial delivery. The absence of dynamic updates or integration with post-market monitoring systems inhibits comprehensive lifecycle risk governance that would incorporate findings derived from the evolving operational environment within deploying institutions.