Europe AI & Data Rules Hub

Human Factors in AI Products: Safety and Foreseeable Misuse

UpdatedJuly 8, 2025

ByIuliia Gorshkova

In the evolving landscape of European product regulation, the intersection of artificial intelligence (AI) and human psychology presents one of the most complex challenges for compliance professionals. When we discuss the safety of AI-enabled products—whether they are autonomous industrial robots, medical diagnostic software, or consumer-grade smart assistants—we are fundamentally discussing the interaction between a non-deterministic system and a fallible human operator. The European regulatory framework, particularly with the advent of the AI Act, has shifted the focus from purely technical specifications to a holistic view of product safety that encompasses human factors and foreseeable misuse. This is not merely a matter of user experience (UX) design; it is a legal requirement that determines market access and liability exposure.

Traditionally, product safety directives relied on a static understanding of risk. A product was designed, tested, and deemed safe if used as intended. However, AI systems introduce dynamic risks that evolve based on data inputs, environmental context, and user interaction. The European Union has recognized that a “black box” approach—where the technology is trusted implicitly without understanding its limitations—is incompatible with the safety principles enshrined in the Treaty on the Functioning of the European Union. Consequently, regulators are increasingly looking at how products fail, how users perceive those failures, and whether the manufacturer has adequately prepared the user for those failures through training, warnings, and intuitive interface design.

The Regulatory Convergence: Product Liability and AI Safety

To understand the obligation to address human factors, one must look at the convergence of two major legislative pillars: the Product Liability Directive (PLD) (and its upcoming revision into a Regulation) and the AI Act. While the AI Act categorizes systems based on risk (unacceptable, high, limited, and minimal), the PLD addresses who pays when a product causes harm. Crucially, both frameworks rely on the concept of “defectiveness.”

Under the revised Product Liability Directive, a product is considered defective if it does not provide the safety which a person is entitled to expect. This assessment explicitly considers the presentation of the product, including instructions, warnings, and the likely use of the product. For AI products, this means that a technically flawless algorithm can still be deemed defective if it is deployed in a context where the user cannot reasonably understand its outputs or limitations.

A product is defective if it does not provide the safety which a person is entitled to expect, taking all circumstances into account, including the presentation of the product, the use and use that could reasonably be made of it, and the time when the product was put into circulation.

This legal standard forces engineers and developers to think beyond code. It requires an analysis of the “human in the loop.” If an AI system recommends a medical diagnosis, but the user interface (UI) presents the confidence score in a way that is easily misinterpreted by a tired clinician, the product may be considered defective. The defect lies not in the neural network, but in the failure to account for human cognitive limitations.

The Definition of “Foreseeable Misuse”

Central to both the AI Act and the General Product Safety Regulation (GPSR) is the term foreseeable misuse. This is a legal concept that requires manufacturers to anticipate how a product might be used incorrectly, not out of malice, but due to error, fatigue, or lack of training.

In the context of AI, foreseeable misuse takes on new dimensions. Traditional mechanical products fail physically; AI products fail cognitively. For example, consider an autonomous forklift in a warehouse. A foreseeable misuse might be a worker leaning on the forklift while it is in autonomous mode, assuming it will stop. Or, a user might over-rely on an AI co-pilot in a car, disengaging from the driving task despite the system not being capable of full autonomy.

Regulators expect manufacturers to conduct a rigorous risk assessment that includes scenario planning for these behaviors. It is not enough to say, “The user should not do that.” The manufacturer must either design the system to prevent the misuse (inherent safety by design) or provide unambiguous warnings and training to mitigate the risk.

High-Risk AI Systems and the Obligation of Human Oversight

The AI Act specifically targets “High-Risk AI Systems” (Article 6). These include AI used in critical infrastructure, education, employment, essential services, law enforcement, and migration. For these systems, Article 14 mandates human oversight. The goal is to prevent or minimize the risks to health, safety, or fundamental rights.

The regulation states that the system must be designed in a way that allows the human overseer to remain in full control and to intervene or override the system at any time. This is where human factors engineering becomes a compliance necessity. The “human oversight” measure must be effective. If the interface for overriding an AI decision is buried in five sub-menus, or if the alert fatigue is so high that operators automatically click “accept,” the oversight measure is ineffective, and the product is non-compliant.

From a practical standpoint, this means that the “stop button” is not just a hardware feature; it is a UX feature. It must be accessible, understandable, and reliable. The AI Act implies that if a human cannot reasonably intervene due to the speed or complexity of the AI’s operations, the system may be inherently unsafe for deployment in high-risk categories.

UX as a Compliance Layer, Not Just a Feature

In the software industry, User Experience (UX) is often viewed as a competitive advantage—a way to delight users. In European regulatory compliance, UX is a safety layer. A poorly designed interface can hide critical information, leading to user errors that result in accidents or data breaches.

When designing AI products, the “explainability” of the system is often discussed. However, explainability for a data scientist is different from explainability for a user. The regulatory requirement is not that the user understands the mathematical weights of the model, but that they understand the limitations and intent of the system.

Salience and Information Overload

Human factors research demonstrates that users suffer from cognitive overload. In safety-critical situations, users rely on heuristics (mental shortcuts). If an AI system provides too much information, the user will filter it out, often focusing on the wrong data points.

For example, in a predictive policing tool (a controversial high-risk application), an officer might be presented with a “risk score” for a location. If the interface does not clearly explain what factors contributed to that score (e.g., historical data vs. real-time sensors), the officer might misuse the information, leading to discriminatory profiling. The compliance failure here is not just in the algorithm’s bias, but in the UI’s failure to contextualize the output.

Therefore, the design process must be documented. Under the AI Act, high-risk systems require a risk management system (Article 9). This documentation should demonstrate that the UX design choices were made to mitigate identified risks. For instance, using color coding (red/green) might be standard, but for color-blind users, this is a failure. Accessibility standards (such as WCAG) are often referenced in this context, but the regulatory bar is higher for safety-critical AI.

The Role of Warnings and Instructions

Warnings are the last line of defense in product safety. However, European courts and regulators have consistently held that warnings cannot cure a fundamental design defect. A warning label on a circular saw blade saying “do not touch the spinning blade” is useless because the danger is obvious. A warning on an AI system saying “this system may hallucinate facts” is more complex because the danger is invisible.

Under the Machine Regulation (2023/1230), which applies to machinery with integrated AI, the instructions must be sufficiently detailed to allow for safe installation, operation, and maintenance. This includes information about the residual risks inherent in the AI’s decision-making capabilities.

Consider the concept of “predictable failure handling.” If an AI vision system fails to recognize an object due to poor lighting, does it fail safe (stop) or fail dangerous (continue)? The instructions must inform the user about the environmental conditions required for safe operation. If the manufacturer knows that the system fails 5% of the time in rain, and does not warn the user, they are liable for foreseeable misuse where the user operates the system in the rain.

Dynamic Warnings vs. Static Disclaimers

Static disclaimers (e.g., a EULA or a manual page) are increasingly viewed as insufficient for AI. The nature of AI risk is dynamic. Therefore, the system should ideally provide in-context warnings.

If a surgical robot detects that its precision is degrading due to a sensor drift, it must alert the surgeon immediately, not just log an error for later review. The regulatory expectation is shifting toward “active safety” systems that interact with the user to prevent misuse in real-time. If a user attempts to input a command that the AI identifies as potentially hazardous (e.g., “drive through a red light”), the system should prompt for confirmation or block the action, rather than relying on the user to have read the manual three months prior.

Training and Competence: The Human Interface

Even the best-designed AI product requires a competent user. The relationship between the manufacturer’s obligations and the user’s responsibilities is a key area of legal debate. Generally, manufacturers are responsible for foreseeable misuse, but they are not responsible for user negligence or gross incompetence, provided they have taken reasonable steps to ensure competence.

This brings us to the requirement for training. For high-risk AI systems, the AI Act mandates that users are provided with instructions for use and, where applicable, training. This is not a suggestion; it is a condition for CE marking.

In the European market, we see a divergence in how this is enforced. In Germany, under the Product Safety Act (ProdSG), there is a strong emphasis on the “instructing authority” of the manufacturer. They must ensure the user understands the risks. In other jurisdictions, the focus might be more on the end-user’s duty of care.

However, with AI, the complexity often exceeds the user’s baseline knowledge. A radiologist is an expert in anatomy, but not necessarily in machine learning. A manufacturer providing an AI diagnostic tool must bridge this gap. The training provided must cover:

System Capabilities: What the AI can and cannot do.
Failure Modes: How the system behaves when it is uncertain.
Override Procedures: How to intervene effectively.

If a manufacturer sells a “black box” AI and provides a one-page quick-start guide, they are likely failing to meet the regulatory requirements for training. The documentation must be robust enough to empower the user to manage the residual risks.

Predictable Failure Handling and Resilience

AI systems are probabilistic, not deterministic. They will fail. The question is not “if” but “how” they fail. Predictable failure handling is the engineering discipline of ensuring that when the AI fails, it does so in a way that is detectable and manageable by the human operator.

There are three types of failure modes relevant to EU compliance:

Type I (False Positive): The AI detects a threat that does not exist. (e.g., a robot stops abruptly, causing a production line halt or a whiplash injury to a human operator).
Type II (False Negative): The AI fails to detect a threat that does exist. (e.g., a safety scanner fails to see a worker entering a zone).
System Drift: The AI’s performance degrades over time as real-world data diverges from training data.

Regulators expect the manufacturer to analyze these failures. For example, if a collaborative robot (cobot) is designed to stop upon contact with a human, but the AI is tuned to be “efficient” and ignores minor contacts, this is a violation of safety standards (ISO 10218 and ISO/TS 15066). The manufacturer cannot prioritize productivity over safety.

Furthermore, the AI Act introduces the concept of “accuracy, robustness, and cybersecurity.” Robustness implies that the system should not be easily broken by adversarial attacks or unexpected inputs. If a user inputs a command that is slightly out of distribution (OOD), the system should ideally default to a safe state or request clarification, rather than hallucinating a response.

The “Human-in-the-Loop” vs. “Human-on-the-Loop”

In regulatory terms, the level of human involvement matters.

Human-in-the-Loop: The AI cannot act without human approval. This is common in high-stakes decision-making (e.g., granting a visa). The UX must facilitate a quick and clear approval process.
Human-on-the-Loop: The AI acts autonomously but is monitored by a human who can intervene. This is common in industrial automation. The UX must provide effective monitoring tools (e.g., dashboards that highlight anomalies, not just raw data streams).

A common compliance pitfall is assuming a system is “Human-on-the-Loop” when the speed of the AI makes human intervention impossible. If an algorithmic trading system executes thousands of trades per second, a human cannot oversee it effectively. In such cases, the regulatory burden shifts entirely to the pre-deployment testing and the system’s self-monitoring capabilities. If the manufacturer claims “human oversight” is the safety mechanism, but the UI updates only once a minute, they are misrepresenting the safety architecture.

National Implementation and Cross-Border Nuances

While the AI Act and the PLD are EU Regulations (directly applicable), the implementation of safety requirements often involves national standards bodies. For instance, Germany’s VDE (Verband der Elektrotechnik) and France’s AFNOR publish technical standards that interpret broad legal requirements into specific engineering criteria.

When designing a product for the European market, it is dangerous to aim for the “lowest common denominator.” Instead, manufacturers often look to the strictest interpretations, typically found in the German or Nordic markets, to ensure pan-European compliance.

For example, regarding warnings and labeling, German law is very specific about the language used. Warnings must be clear, unambiguous, and located close to the hazard. For an AI product, this might mean that the software interface must display warnings in the user’s native language, and these warnings must be “sticky” (i.e., they cannot be permanently dismissed if the risk persists).

Furthermore, the GDPR intersects with product safety. If an AI product relies on biometric data (e.g., facial recognition for access control), the “human factors” include privacy. A user might misuse the system by trying to bypass it with a photo, but the manufacturer must have implemented “liveness detection” (a technical measure) and clear instructions on how to use the system without violating the privacy of others.

The Burden of Proof and Documentation

In the event of an accident, the burden of proof is shifting. Under the revised PLD, if a victim proves the product caused the damage and the product was defective, the manufacturer is liable unless they can prove the defect did not exist or was not attributable to them.

For AI, this means the “technical documentation” required by the AI Act (Annex IV) is a shield. It must contain:

The general description of the AI system.
Elements of the AI system and the development process.
The risk management system.
Details on data governance.
Information about oversight measures (UX/UI design).
Details on robustness, accuracy, and cybersecurity.

If a manufacturer cannot produce documentation showing that they considered “foreseeable misuse” during the design phase—for example, no minutes from user testing sessions where users were observed making errors—their legal defense is significantly weakened.

We are moving into an era where Design Records are as legally binding as Source Code. The “human factors” analysis must be a formal deliverable in the compliance dossier.

Practical Steps for Compliance Professionals

For professionals working in AI, robotics, and data systems, the integration of human factors into the compliance workflow requires a structured approach. It cannot be an afterthought.

1. Early Integration of Human Factors Engineering (HFE)

HFE must be part of the risk assessment from day one. This involves:

User Profiling: Who are the users? What is their training level? What is their likely mental state (e.g., fatigue, stress)?
Task Analysis: What tasks will the user perform? Where are the opportunities for error?
Environment Analysis: Where will the product be used? (e.g., noise, lighting, distractions).

If the user profile includes “laypeople” (e.g., a consumer smart home device), the safety requirements for the interface are higher than for a “professional user” (e.g., a factory engineer), who is assumed to have higher competence.

2. Simulating Misuse

Standard testing verifies that the product works when used correctly. Compliance testing must verify that the product is safe when used incorrectly. This involves adversarial testing of the human interface.

Can a user bypass a safety interlock easily?
Does the system accept nonsensical inputs that lead to dangerous outputs?
Is the “override” button too easy to press accidentally, causing operational hazards?

Documenting these tests and the subsequent design changes is vital evidence of due diligence.

3. The “Black Box” Dilemma

Users often distrust what they

Table of Contents

AI in Education: Fundamentals & Tools

Understanding AI Basics

Practical AI Tools for Educators

Integrating AI into Teaching

Case Studies & Success Stories

Ethical AI & Inclusive Practices

Ethical & Legal Frameworks for AI Systems

Equity & Inclusion

Transparency & Trust

Algorithmic Bias, Discrimination & Legal Risk

AI Errors, Accountability & Legal Responsibility

Institutional AI Governance & Policy Design

AI, Security & GDPR Compliance

Data Protection & Privacy

Cybersecurity in AI

EU Regulations & Policies

Engaging Parents & Guardians

Data Protection, Privacy & AI Governance

Additional Resources

Glossary of Terms

Templates & Guides

Webinars & Research

AI for Administrative & Pedagogical Support

AI for Time Management

AI in Student Performance Tracking

AI for Automated Communication

AI for Document Management

AI, Robotics & Biotech Regulation in Europe

EU AI Act Explained: Scope, Risk Levels, Obligations

AI-Enabled Products: Robots, Medical Software, Smart Devices

Machinery Regulation & Safety Standards for Intelligent Systems

AI in Healthcare & Biotech: MDR, IVDR, EMA

Liability & Responsibility for AI-Driven Systems

Compliance in Practice: From Risk Assessment to CE Marking

Country-Specific AI Regulation & Enforcement

How EU AI Law Is Applied at National Level

Different Compliance Models

National AI Sandboxes & Regulatory Experiments

Public Sector AI Rules Across Europe

Cross-Border AI Deployment Challenges

When National Law Overrides EU Guidance

Legal Cases, Enforcement & Real-World Precedents

AI Act, GDPR & Algorithmic Decision-Making Cases

Liability Disputes Involving Automated Systems

Robotics Accidents & Legal Responsibility

Medical & Biotech AI Failures: Lessons Learned

What Enforcement Trends Tell Us About Future Regulation