RELEX AI Governance

RELEX AI Commitments

✅ 1. Regulatory Compliance: RELEX products,including Rebot, comply with the EU AI Act and GDPR. 

✅  2. Your data stays yours: Technical and procedural safeguards ensure your data is never used to train AI models that serve your competitors. 

✅ 3. Secure by Design: RELEX products are built to meet enterprise-grade security requirements and pass regular independent assessments. 

✅ 4. Transparent AI Governance: Clear documentation and a dedicated AI governance process to ensure ongoing compliance. 

1. Regulatory Compliance 

RELEX is committed to ensuring that all AI features in the RELEX platform and ancillary AI services like Rebot comply with the EU AI Act: 

• Minimal Risk: Most RELEX products, such as machine learning demand forecasting, are classified as Minimal Risk. The EU AI Act does not impose any regulatory compliance obligations on such AI systems. However, RELEX has an AI Governance process, where it conducts AI risk assessments on all its Products that are considered AI systems. 
• Limited Risk: Our Rebot conversational AI assistant is classified as Limited Risk. It meets the EU AI Act transparency requirements.  
• High Risk: RELEX does not offer any product modules that fall under this high-risk classification in the EU AI Act.   
• Unacceptable Risk: RELEX has and will not develop, provide or deploy any AI systems prohibited under the EU AI Act. 

As RELEX continues to develop existing AI systems or provides new ones, we ensure that our AI systems comply with the obligations set forth by the EU AI Act.  

2. Your data stays yours 

Types of AI Models We Use: 

Specialized AI with Customer-Specific Models: Each customer has their own models. This means your models are trained using only your data and supplementary data (such as weather data) that RELEX purchases from authorized third-party providers. RELEX never uses your data to train models for other customers. 

Gen AI with Pre-trained Models: Gen AI based services like Rebot and RELEX AI Agents use pretrained models provided by trusted sub-processors, namely, Azure OpenAI Service by Microsoft and Google Gemini. Technical and contractual safeguards from these sub-processors ensure your data is:  

• not stored outside your environment 
• not used for AI training 
• not leaked to AI model providers such as OpenAI 
• not used for human reviews 

Learn more on how we process data in RELEX Rebot and AI Agents: Terms and Privacy – Rebot and AI Agents 

3. Secure by Design 

RELEX is committed to meeting rigorous security standards for its AI Platform and Inventory & Supply Chain Software: 

• ISO 27001 certification 
• ISAE SOC 2 Type II compliance 
• Additional Threat Modelling process specific to generative AI applications (Rebot and AI Agents) 

The RELEX AI Platform is expected to be included in the independent audit program during 2025. 

For detailed information and up-to-date audit scopes, please refer to our Security Compliance documentation. 

4. Transparent AI Governance 

RELEX AI Governance framework systematically evaluates all RELEX products and ancillary AI services, whether developed internally or by third parties, before integration into RELEX platform. 

This document reflects RELEX’s AI governance policies as of April 2025 and will be updated as regulatory requirements and our products evolve. For detailed information, please contact your RELEX representative.