Within Trustworthy AI frameworks, "Certification" is best understood as the formal verification process confirming that an AI system meets defined standards of fitness-for-purpose — whether those standards are set by regulatory bodies, industry consortia, or internal governance frameworks — for the specific context in which the system will be deployed. This is distinct from, though related to, the broader Trustworthy AI principles of ethics (option A), transparency (option B), and legal compliance (option C): certification is the *verification mechanism* that attests a system satisfies applicable standards, rather than being one of those underlying values itself.
The distinction between C and D is subtle and worth being precise about: C describes compliance as an obligation ("must follow laws and regulations"), while D describes certification as a verification activity ("confirming fitness according to standards") — certification is the audit/attestation process, and compliance is one of the things that process may confirm. A system can be legally compliant without having undergone formal certification, and certification processes often assess criteria broader than legal compliance alone, including performance benchmarks, robustness testing, and domain-appropriate validation (e.g., clinical validation standards for a medical imaging model).
In practice, certification connects Trustworthy AI to concrete deployment gates: a healthcare AI model, for instance, may require certification against medical device standards before clinical use — the verification step, not merely the legal requirement, is the "Certification" principle's substance.
[Reference: Trustworthy AI domain — certification, compliance, and verification as distinct governance mechanisms., ]