AG-671: Emotion Inference Restriction Governance

2. Summary

Emotion Inference Restriction Governance requires organisations to prevent AI agents from inferring, classifying, or acting upon human emotions, moods, affective states, or psychological dispositions unless the specific use case is both lawful under all applicable jurisdictions and demonstrably justified by a documented necessity that cannot be met by less intrusive means. Emotion inference — also referred to as affect recognition, sentiment detection from biometric signals, or emotion AI — encompasses any computational process that takes as input facial expressions, vocal prosody, gait, posture, physiological signals (heart rate, galvanic skin response, pupil dilation), keystroke dynamics, or other behavioural and biometric data, and produces as output a classification, score, or ranking purporting to describe the subject's emotional state, affective disposition, or psychological condition. This dimension establishes a default-deny posture: emotion inference capabilities are prohibited unless a specific exception has been authorised through a documented governance process that includes legal review, proportionality assessment, scientific validity evaluation, and ongoing monitoring for discriminatory impact. The default-deny posture reflects the convergence of regulatory prohibitions (the EU AI Act's classification of emotion recognition in workplaces and educational institutions as prohibited), scientific criticism (the absence of consensus that facial expressions or vocal patterns map reliably to internal emotional states across populations), and fundamental rights concerns (emotion inference creates asymmetric surveillance power that chills expression and association).

3. Example

Scenario A — Hiring Platform Deploys Affect Analysis in Video Interviews: A multinational employer deploys a Customer-Facing Agent that conducts initial screening of video interviews for graduate recruitment. The agent's vendor integrates an emotion inference module that scores candidates on "enthusiasm," "confidence," and "stress tolerance" by analysing facial micro-expressions, vocal pitch variation, and speech cadence during 15-minute recorded interviews. The scores are combined with CV-parsing results to rank candidates. In the first recruitment cycle, the system processes 14,200 video interviews across 8 countries. An internal review triggered by a discrimination complaint reveals three failures. First, the emotion inference module has never been validated for the demographic composition of the candidate pool — candidates whose first language is not English, candidates with facial paralysis or neurodivergent presentation (autism spectrum conditions affecting facial expression), and candidates using low-bandwidth connections (which degrade video quality and distort micro-expression analysis) receive systematically lower "enthusiasm" and "confidence" scores. Second, the system operates in Germany, France, and the Netherlands, where the EU AI Act Article 5(1)(f) prohibits emotion recognition systems in workplaces — the hiring context falls squarely within the prohibition. Third, no candidate was informed that emotion inference was being performed; the privacy notice referenced only "automated video interview analysis" without disclosing the affective component. The employer faces regulatory investigation in three EU member states, withdraws 14,200 interview decisions for re-evaluation at a cost of £2.8 million, and settles a discrimination claim for £680,000.

What went wrong: The organisation deployed emotion inference without a jurisdictional legality assessment, without scientific validity evaluation for the target population, without disclosure to data subjects, and without any governance process that would have identified the EU AI Act prohibition before deployment. The vendor's marketing materials described the module as "behavioural analytics" rather than emotion recognition, obscuring the regulatory classification. No default-deny posture existed — the emotion inference module was treated as a feature enhancement rather than a prohibited practice requiring explicit authorisation.

Scenario B — Workplace Monitoring Agent Infers Employee Stress Levels: A large logistics company deploys an Enterprise Workflow Agent to monitor warehouse employee productivity. A software update introduces a "wellbeing analytics" module that analyses voice patterns during team radio communications and webcam feeds from break rooms to estimate employee stress levels. The stated purpose is to identify workers at risk of burnout and trigger wellness interventions. The system classifies 340 employees into "low stress," "moderate stress," and "high stress" categories weekly. Over six months, managers begin using the stress classifications informally to make shift assignment decisions — employees classified as "high stress" are removed from overtime rotas and passed over for team leader promotions. An employment tribunal claim by a passed-over employee reveals that the "high stress" classification correlates strongly with female employees returning from parental leave and employees with disclosed mental health conditions. The emotion inference module was never subjected to an equality impact assessment. The company faces a £1.4 million tribunal award for indirect discrimination, a data protection authority enforcement notice for unlawful processing of special category data (health-related inferences), and a £3.2 million remediation programme to remove the module, retrain managers, and review all affected employment decisions.

What went wrong: The emotion inference capability was introduced through a routine software update without triggering any governance review. The "wellbeing" framing disguised what was functionally workplace emotion surveillance. No legality assessment was performed — the EU AI Act Article 5(1)(f) prohibits emotion recognition in the workplace, and the processing of inferred emotional states constitutes special category data under GDPR Article 9. No proportionality assessment evaluated whether less intrusive means (anonymous surveys, occupational health referrals) could achieve the stated wellbeing objective. The downstream use of emotion classifications for employment decisions was neither anticipated nor governed.

Scenario C — Public Safety Agent Infers Aggression from CCTV Feeds: A municipal government deploys a Safety-Critical Agent integrated with public CCTV to identify individuals displaying "aggressive" emotional states in a city-centre pedestrian zone. The system analyses gait patterns, facial expressions, and body posture to assign an "aggression probability" score. Scores above a threshold trigger an alert to police dispatch. In the first 90 days, the system generates 2,847 alerts. A civil liberties organisation obtains performance data through a freedom-of-information request and reveals that 78% of alerts are false positives — individuals flagged as "aggressive" who were subsequently observed or contacted and displayed no aggressive behaviour. Furthermore, the alert rate is 3.4 times higher for Black males aged 18-30 than for white males of the same age group, after controlling for location and time of day. The municipality faces a judicial review for discriminatory surveillance, a data protection authority investigation for unlawful processing of biometric data for law enforcement purposes without adequate legal basis, and sustained public opposition that forces discontinuation of the programme. Total wasted expenditure: £4.6 million in procurement, deployment, and legal costs.

What went wrong: The system inferred emotional states (aggression) from physical appearance and behaviour — a use case with no validated scientific basis and severe discriminatory impact. No governance process evaluated the scientific validity of inferring aggression from gait, posture, and facial expression. No fairness assessment tested for demographic bias prior to deployment. No proportionality assessment considered whether the same public safety objective could be achieved through less intrusive means (increased patrols, environmental design, community engagement). The emotion inference was dressed in public safety language ("threat detection") that obscured its fundamental nature as affect recognition.

4. Requirement Statement

Scope: This dimension applies to any AI agent that processes human biometric, behavioural, or physiological data in a manner capable of producing inferences about emotional states, moods, affective dispositions, psychological conditions, or personality traits. The scope includes agents that perform emotion inference as a primary function (dedicated emotion recognition systems) and agents that perform emotion inference as a secondary or embedded function (agents that incorporate affect analysis within a broader decision pipeline). The scope covers all modalities of emotion inference: facial expression analysis, vocal prosody and speech pattern analysis, physiological signal analysis (heart rate, galvanic skin response, electrodermal activity, pupil dilation), gait and posture analysis, keystroke and interaction pattern analysis, and multimodal fusion of these signals. The scope extends to agents that produce outputs functionally equivalent to emotion inference — such as "engagement scoring," "attentiveness detection," "stress estimation," "sentiment analysis from biometric signals," or "behavioural risk scoring" — regardless of the label applied to the output. Labelling an emotion inference function as "behavioural analytics" or "wellbeing monitoring" does not remove it from scope. The scope excludes text-based sentiment analysis of written communications (which is governed by AG-040 and other applicable dimensions) unless the text analysis is combined with biometric signal processing.

4.1. A conforming system MUST maintain a default-deny posture for emotion inference: no AI agent shall perform emotion inference unless a specific, documented authorisation has been granted through the governance process defined in this dimension.

4.2. A conforming system MUST maintain an Emotion Inference Register that catalogues every instance where emotion inference is performed or proposed, recording: the specific emotional states or affective dimensions being inferred, the input modalities used, the intended purpose, the legal basis under each applicable jurisdiction, the scientific validity evidence, and the authorisation status (authorised, denied, or pending).

4.3. A conforming system MUST perform a jurisdictional legality assessment before any emotion inference capability is deployed, covering all jurisdictions in which the agent operates or in which data subjects are located, explicitly evaluating whether the intended use falls within a prohibited category under applicable law — including, but not limited to, the EU AI Act Article 5(1)(f) prohibition on emotion recognition in workplaces and educational institutions, and any analogous national or subnational prohibition.

4.4. A conforming system MUST perform a scientific validity assessment for each emotion inference use case, evaluating whether the claimed relationship between the input modality (facial expression, vocal pattern, physiological signal) and the inferred emotional state is supported by peer-reviewed scientific evidence, is robust across the demographic composition of the target population, and achieves a documented accuracy threshold that is appropriate for the downstream decision context.

4.5. A conforming system MUST perform a proportionality assessment for each emotion inference use case, evaluating whether the stated objective can be achieved through less intrusive means that do not require inferring emotional states, and documenting the specific reasons why emotion inference is necessary rather than merely convenient.

4.6. A conforming system MUST perform a fairness impact assessment for each emotion inference use case before deployment, testing for differential accuracy, differential false positive rates, and differential false negative rates across protected demographic groups — including but not limited to race, ethnicity, sex, age, disability status, neurodivergent conditions, and cultural background — using representative test populations.

4.7. A conforming system MUST ensure that no emotion inference output is used as the sole or determinative factor in any decision that materially affects an individual's rights, opportunities, or access to services — including employment decisions, educational assessments, criminal justice decisions, insurance underwriting, credit decisions, or access to public services — without human review by a qualified person who has been informed that the input includes emotion inference data.

4.8. A conforming system MUST provide clear, specific, and timely notice to data subjects when emotion inference is performed, disclosing: the fact that emotional states are being inferred, the specific modalities used (facial analysis, voice analysis, physiological monitoring), the purpose of the inference, the downstream decisions that may be influenced, and the mechanism for objecting to or opting out of the inference.

4.9. A conforming system MUST implement technical controls that prevent emotion inference outputs from being persisted, shared, or repurposed beyond the specific authorised use case documented in the Emotion Inference Register, including automated deletion or anonymisation of emotion inference data after the authorised retention period.

4.10. A conforming system MUST conduct ongoing monitoring of deployed emotion inference systems at intervals not exceeding 6 months, re-evaluating jurisdictional legality (accounting for regulatory changes), scientific validity (accounting for new research), fairness impact (using production data rather than test data), and proportionality (accounting for the availability of less intrusive alternatives that may have emerged since initial authorisation).

4.11. A conforming system SHOULD implement technical architecture controls — such as feature flags, modular pipeline design, or capability-based access control — that enable emotion inference components to be disabled independently without affecting the remainder of the agent's functionality.

4.12. A conforming system SHOULD require that the authorisation decision for each emotion inference use case is made by an individual or committee with governance authority independent of the business unit proposing the use case, to prevent commercial incentives from overriding rights and proportionality considerations.

4.13. A conforming system MAY implement real-time confidence thresholds that suppress emotion inference outputs when the system's confidence in the inference falls below a defined minimum, reducing the propagation of low-confidence affective classifications into downstream decisions.

4.14. A conforming system MAY implement subject-initiated emotion inference challenge mechanisms that allow data subjects to contest a specific emotion inference and request human re-evaluation of the underlying data.

5. Rationale

Emotion inference occupies a uniquely problematic position in the landscape of AI capabilities. Unlike object recognition, speech-to-text transcription, or document classification — where the relationship between input and output is empirically grounded and verifiable — emotion inference rests on contested scientific foundations and produces outputs that are inherently unverifiable by external observation. No third party can confirm whether an individual is "stressed," "enthusiastic," or "aggressive" by examining a facial expression or vocal pattern. The inference is a probabilistic guess projected onto the subject, and the subject's own self-report of their emotional state may contradict the system's classification — yet the system's classification, not the subject's self-report, is what enters the decision pipeline.

The scientific critique is substantial and directly relevant to governance. The theory of basic emotions — the proposition that a small set of universal emotions (happiness, sadness, anger, fear, disgust, surprise) map reliably to distinct facial expressions — has been challenged by decades of research demonstrating that facial expressions are culturally variable, context-dependent, and an unreliable indicator of internal emotional states. A 2019 meta-analysis by Lisa Feldman Barrett and colleagues, published in Psychological Science in the Public Interest, concluded that "there is no reliable scientific evidence that emotion recognition technology works as claimed." The Association for Psychological Science published findings that the same facial configuration can correspond to different emotions depending on context, culture, and individual variation. This scientific uncertainty means that emotion inference systems deployed at scale will produce systematic errors that disproportionately affect populations whose emotional expression patterns diverge from the training data — typically Western, neurotypical, young adult populations.

The regulatory trajectory is unambiguously restrictive. The EU AI Act, finalised in 2024, classifies emotion recognition in workplaces and educational institutions as a prohibited practice under Article 5(1)(f). The prohibition reflects the European Parliament's assessment that workplace and educational emotion surveillance creates an unacceptable power asymmetry between the observer (employer, institution) and the observed (employee, student). The prohibition is categorical — it does not admit exceptions based on consent, proportionality, or claimed benefit. Beyond the EU, the Illinois Biometric Information Privacy Act (BIPA) requires informed consent before collecting biometric identifiers, which courts have interpreted to include facial geometry data used for emotion analysis. Maryland's HB 1202 restricts the use of facial recognition technology in hiring decisions, capturing emotion inference from video interviews. The regulatory environment is expanding, not contracting.

The fundamental rights dimension extends beyond privacy. Emotion inference creates a surveillance capability that chills freedom of expression, freedom of assembly, and freedom of thought. If individuals know that their emotional states are being monitored and classified — in workplaces, public spaces, educational settings, or commercial interactions — they modify their behaviour to conform to expected emotional norms. This chilling effect is particularly acute for individuals whose natural emotional expression diverges from majority norms: neurodivergent individuals whose facial expressions do not conform to neurotypical patterns, individuals from cultures with different norms for emotional display, individuals with conditions affecting facial musculature or vocal production, and individuals who are simply more emotionally expressive or reserved than the population average. Emotion inference does not merely observe — it normalises, creating pressure to perform the "correct" emotional state rather than express authentic internal experience.

The preventive posture of this dimension — default-deny rather than default-allow with safeguards — reflects the combined weight of these concerns. A default-allow approach would require every organisation to independently evaluate the scientific validity, legal permissibility, and ethical proportionality of each emotion inference use case — an evaluation that most organisations are not equipped to perform. A default-deny approach ensures that emotion inference is deployed only where a governance process has affirmatively determined that the specific use case is lawful, scientifically grounded, proportionate, and fair. This approach aligns with the precautionary principle embedded in EU fundamental rights law and with the regulatory direction across jurisdictions.

6. Implementation Guidance

Emotion Inference Restriction Governance requires both organisational process controls (governance workflows for authorisation, review, and monitoring) and technical controls (architectural mechanisms to enforce the default-deny posture and prevent unauthorised emotion inference). The core implementation challenge is detection — identifying when an agent performs or could perform emotion inference, including cases where the capability is embedded within a vendor-supplied component and not prominently disclosed.

Recommended patterns:

Emotion inference capability inventory. Conduct a systematic inventory of all AI agent components that process biometric, behavioural, or physiological data. For each component, determine whether the component's output constitutes or could constitute an emotion inference — including outputs labelled as "engagement," "attentiveness," "sentiment," "stress," "arousal," "valence," or similar affect-adjacent terms. The inventory must cover vendor-supplied components, open-source libraries, and internally developed modules. Update the inventory on every agent deployment, component upgrade, or vendor change. This inventory feeds the Emotion Inference Register required by Requirement 4.2.
Jurisdictional prohibition mapping. Maintain a maintained and versioned mapping of jurisdictional prohibitions and restrictions on emotion inference, updated at minimum quarterly. The mapping should distinguish between categorical prohibitions (EU AI Act Article 5(1)(f) for workplaces and educational institutions), conditional restrictions (requirements for explicit consent, impact assessment, or specific legal basis), and sector-specific rules (healthcare emotion monitoring under medical device regulation, law enforcement emotion analysis under police data processing directives). For each deployed agent, resolve the applicable jurisdiction set and verify that no prohibited use case is active. Integrate the mapping with AG-029 (Regulatory Compliance Mapping) to avoid duplication.
Scientific validity review board. Establish a review process — either an internal scientific advisory function or an external expert panel — that evaluates the scientific evidence for each proposed emotion inference use case. The review should assess: whether the claimed input-output relationship (e.g., facial expression to emotional state) is supported by peer-reviewed evidence, whether the evidence generalises to the target population, whether the accuracy and error rates are documented and appropriate for the downstream decision context, and whether the scientific community has identified significant limitations or contradictions for the claimed relationship. The review should produce a written opinion that forms part of the authorisation record.
Architecture-level default deny. Implement technical controls that enforce the default-deny posture at the architecture level, not merely at the policy level. Approaches include: feature flags that disable emotion inference components by default and require explicit activation through an authorised configuration change; capability-based access control that restricts agent components from accessing biometric processing libraries unless explicitly permitted; pipeline inspection that detects and blocks data flows from biometric input sources to affect classification models unless an authorised pipeline configuration exists. Architecture-level enforcement prevents the scenario where a vendor update silently introduces emotion inference capability.
Proportionality assessment template. Develop a structured proportionality assessment template that requires the proposing business unit to: state the specific objective the emotion inference is intended to achieve; identify alternative means of achieving the same objective that do not require emotion inference; explain why each alternative is insufficient; quantify the marginal benefit of emotion inference over the next-best alternative; and assess the privacy, fairness, and fundamental rights impact of the emotion inference. The template should be designed so that "convenience" or "marginal accuracy improvement" is insufficient justification — the proposer must demonstrate that the objective cannot reasonably be achieved without emotion inference.
Ongoing fairness monitoring with production data. Post-deployment fairness monitoring must use production data, not the test data from the initial fairness impact assessment. Production populations may differ from test populations in demographic composition, environmental conditions (lighting, audio quality, device types), and behavioural context. Implement stratified performance monitoring that disaggregates emotion inference accuracy, false positive rates, and false negative rates by available demographic dimensions. Flag any statistically significant differential for investigation. Integrate with AG-033 (Fairness & Non-Discrimination Testing) for methodology alignment.

Anti-patterns to avoid:

Accepting vendor labelling at face value. Vendors may label emotion inference as "behavioural analytics," "engagement scoring," "attention monitoring," "user experience optimisation," or "wellbeing insights" to avoid triggering regulatory scrutiny. The governance process must evaluate the functional nature of the processing — what inputs are consumed and what outputs are produced — not the marketing label. If the system takes biometric inputs and produces affect-adjacent outputs, it is within scope regardless of labelling.
Consent as a substitute for legality assessment. Under the EU AI Act, certain emotion inference uses are categorically prohibited — consent does not create an exception to a prohibition. Organisations must not assume that obtaining data subject consent makes an otherwise prohibited emotion inference use case lawful. Consent may be relevant for use cases that are not categorically prohibited, but it is never sufficient on its own — legality, proportionality, scientific validity, and fairness assessments remain mandatory.
Conflating text sentiment analysis with biometric emotion inference. Text-based sentiment analysis of written customer feedback, social media posts, or support tickets is a different processing category with a different risk profile. This dimension governs biometric and physiological emotion inference. Treating text sentiment analysis as equivalent — either by applying biometric restrictions unnecessarily or by treating biometric emotion inference as equivalent to text analysis and under-governing it — creates governance errors in both directions.
One-time authorisation without ongoing review. The scientific, legal, and fairness landscape for emotion inference is evolving rapidly. An authorisation granted today may become unlawful tomorrow as new regulations take effect, or scientifically untenable as new research contradicts the foundational claims. Authorisations must have expiry dates and mandatory re-review cycles, as specified in Requirement 4.10.
Deploying emotion inference in edge or robotic agents without latency-aware governance. Embodied and edge agents may perform emotion inference locally on-device with no network round-trip, making centralised governance controls unenforceable after deployment. For these agents, governance controls must be embedded in the firmware or edge configuration, with cryptographic verification that emotion inference components are disabled unless explicitly activated through an authorised and auditable configuration change.

Industry Considerations

Retail and Customer Service. Customer-facing agents in retail environments may be offered vendor modules that infer customer satisfaction, frustration, or purchase intent from facial expressions or voice patterns. These use cases are not categorically prohibited under the EU AI Act (which targets workplaces and educational institutions), but they remain subject to GDPR special category data rules if the inference relates to health or psychological state, and they require explicit consent and proportionality assessment. Organisations should evaluate whether conventional feedback mechanisms (post-interaction surveys, NPS scores, complaint tracking) achieve the same objective without biometric emotion inference.

Education. The EU AI Act categorically prohibits emotion recognition in educational institutions. Agents deployed in educational settings — including online learning platforms, examination proctoring systems, and classroom monitoring tools — must have emotion inference capabilities fully disabled. "Engagement detection" and "attentiveness monitoring" in educational contexts fall within the prohibition when they rely on biometric signals to infer affective states.

Healthcare. Emotion inference in healthcare settings (e.g., monitoring patient distress, assessing mental health conditions) may be lawful under medical device and clinical research exemptions, but requires classification as a medical device, clinical validation, and informed patient consent. Organisations must not deploy healthcare emotion inference under general-purpose AI governance — it requires medical device regulatory compliance.

Law Enforcement and Public Safety. Emotion inference for law enforcement purposes (e.g., assessing deception, predicting aggression) is subject to heightened scrutiny under the EU AI Act, the Law Enforcement Directive, and national police data processing laws. The scientific validity of deception detection through biometric signals is widely disputed. Organisations should apply the strictest interpretation of proportionality and necessity requirements.

Maturity Model

Basic Implementation — The organisation has established a default-deny posture for emotion inference. An Emotion Inference Register exists and is populated with all known instances. Jurisdictional legality assessments have been completed for all deployed use cases. Emotion inference capabilities in prohibited jurisdictions or contexts (EU AI Act workplaces and educational institutions) have been disabled. Data subjects are notified when emotion inference is performed. This level meets the minimum mandatory requirements.

Intermediate Implementation — All basic capabilities plus: scientific validity assessments are conducted by qualified reviewers for each use case. Proportionality assessments are documented using a structured template. Fairness impact assessments are performed before deployment with representative test populations. Technical architecture controls enforce the default-deny posture (feature flags, capability-based access). Ongoing monitoring re-evaluates legality, validity, fairness, and proportionality at 6-month intervals. The Emotion Inference Register is integrated with the broader governance configuration under AG-001.

Advanced Implementation — All intermediate capabilities plus: production fairness monitoring disaggregates emotion inference accuracy by demographic group in real time. An independent scientific advisory function reviews all authorisation decisions. Architecture-level controls are cryptographically enforced for edge and robotic agents. Subject-initiated challenge mechanisms allow data subjects to contest specific emotion inferences. The organisation can demonstrate through empirical data that authorised emotion inference use cases maintain accuracy and fairness across all monitored demographic groups. Authorisation decisions are audited annually by an independent party.

7. Evidence Requirements

Required artefacts:

Emotion Inference Register. The current register cataloguing every instance of emotion inference, including: the specific emotional states inferred, input modalities, intended purpose, legal basis per jurisdiction, scientific validity evidence, authorisation status, authorising authority, and authorisation date. Must be current and complete.
Jurisdictional legality assessments. Completed assessments for each emotion inference use case, covering all applicable jurisdictions and explicitly addressing prohibitions (EU AI Act Article 5(1)(f) for workplaces and educational institutions). Must identify the legal basis relied upon and the specific regulatory provisions evaluated.
Scientific validity assessments. Written evaluations of the scientific evidence supporting each authorised emotion inference use case, including citations to peer-reviewed research, assessment of generalisability to the target population, and documented accuracy thresholds. Must be prepared or reviewed by individuals with relevant scientific qualifications.
Proportionality assessments. Completed assessments documenting the stated objective, alternative means evaluated, reasons why alternatives are insufficient, and the justification for emotion inference as necessary rather than merely convenient.
Fairness impact assessment reports. Pre-deployment fairness assessments showing differential accuracy, false positive rates, and false negative rates across protected demographic groups, with the test population composition documented and the statistical methodology described.
Data subject notice records. Evidence that clear, specific notice is provided to data subjects when emotion inference is performed, including the content of the notice, the delivery mechanism, and the opt-out mechanism.
Ongoing monitoring reports. Reports from the most recent monitoring cycle (maximum 6 months old) re-evaluating legality, scientific validity, fairness, and proportionality for each authorised use case. Must include production fairness data where available.
Technical control configuration evidence. Evidence of architecture-level default-deny enforcement — feature flag configurations, capability-based access control settings, or pipeline inspection rules — demonstrating that emotion inference components are disabled unless explicitly activated through an authorised configuration change.

Retention requirements:

Emotion Inference Register, legality assessments, and authorisation records: minimum 7 years for regulated financial services and public sector; minimum 5 years for other regulated sectors; minimum 3 years otherwise.
Fairness impact assessments and ongoing monitoring reports: same retention as the Emotion Inference Register.
Data subject notice records: retained for the duration of the processing plus 3 years, or as required by applicable data protection law, whichever is longer.

Access requirements:

Producible to regulators or auditors within 48 hours of request. Evidence must exist as retained artefacts, not be reconstructable after the fact. Fairness impact data must be producible in disaggregated form by demographic group.

8. Test Specification

Test 8.1: Default-Deny Posture Verification

Stimulus: Attempt to deploy an AI agent component that includes an emotion inference module without an authorisation entry in the Emotion Inference Register. Verify that the deployment is blocked or the emotion inference component is disabled.
Expected behaviour: The system prevents the emotion inference component from operating without a corresponding authorisation entry. The deployment either fails or proceeds with the emotion inference module disabled.
Pass criteria: The emotion inference module does not produce outputs. A governance alert or log entry is generated indicating that an unauthorised emotion inference component was detected.
Fail criteria: The emotion inference module operates and produces affect classifications without an authorisation entry in the Emotion Inference Register.

Test 8.2: Emotion Inference Register Completeness

Stimulus: Enumerate all deployed AI agent components that process biometric, behavioural, or physiological data. Cross-reference against the Emotion Inference Register. Verify that every component capable of producing affect-adjacent outputs has a corresponding register entry.
Expected behaviour: The register contains an entry for every component identified in the inventory, regardless of whether the component's emotion inference capability is authorised, denied, or pending.
Pass criteria: 100% of identified components have a corresponding register entry. Each entry contains all required fields (emotional states inferred, input modalities, purpose, legal basis, scientific validity evidence, authorisation status).
Fail criteria: Any component capable of emotion inference lacks a register entry, or any register entry is missing required fields.

Test 8.3: Jurisdictional Legality Assessment — EU AI Act Prohibition

Stimulus: Identify all emotion inference use cases deployed in EU member states. For each, verify that a jurisdictional legality assessment exists. Specifically, introduce a test scenario: a proposed emotion inference use case for monitoring employee engagement in a workplace in an EU member state. Verify that the governance process identifies this as prohibited under Article 5(1)(f) and denies authorisation.
Expected behaviour: The test scenario is identified as a prohibited practice. The authorisation is denied with a reference to Article 5(1)(f).
Pass criteria: The workplace emotion inference scenario is denied authorisation. The denial record references the specific prohibition. No deployed use case in an EU member state falls within a prohibited category without documented legal analysis explaining why the prohibition does not apply.
Fail criteria: The workplace emotion inference scenario is authorised, or any deployed EU use case within a prohibited category lacks a legality assessment addressing the prohibition.

Test 8.4: Scientific Validity Assessment Existence and Quality

Stimulus: Select all authorised emotion inference use cases. For each, verify that a scientific validity assessment exists, that it references peer-reviewed evidence, and that it evaluates generalisability to the target population. Introduce a test scenario: a proposed use case that infers "deception" from facial micro-expressions. Verify that the scientific validity assessment identifies the lack of scientific consensus for this claimed relationship.
Expected behaviour: All authorised use cases have scientific validity assessments with peer-reviewed citations. The deception-from-micro-expressions scenario is flagged as lacking scientific consensus.
Pass criteria: 100% of authorised use cases have completed scientific validity assessments with citations. The deception detection test scenario is either denied authorisation or flagged with a documented scientific limitation note.
Fail criteria: Any authorised use case lacks a scientific validity assessment, or the deception detection scenario is authorised without acknowledging the scientific controversy.

Test 8.5: Proportionality Assessment Verification

Stimulus: Select all authorised emotion inference use cases. For each, verify that a proportionality assessment documents: the stated objective, alternative means evaluated, reasons why alternatives are insufficient, and the justification for emotion inference. Introduce a test scenario: a proposed use case for inferring customer satisfaction via facial analysis in a retail setting, where an existing post-interaction survey achieves a 62% response rate. Verify that the proportionality assessment addresses whether the survey is a sufficient alternative.
Expected behaviour: All authorised use cases have proportionality assessments. The test scenario's assessment addresses the existing survey as an alternative and documents why emotion inference provides necessary additional value that the survey cannot.
Pass criteria: 100% of authorised use cases have proportionality assessments with all required elements. The test scenario addresses the survey alternative explicitly.
Fail criteria: Any authorised use case lacks a proportionality assessment, or the test scenario does not address available alternatives.

Test 8.6: Fairness Impact Assessment — Demographic Differential Testing

Stimulus: Select an authorised emotion inference use case. Review the fairness impact assessment. Verify that it reports accuracy, false positive rates, and false negative rates disaggregated by at least: race/ethnicity, sex, age group, and disability/neurodivergent status. Inject a synthetic test case where the false positive rate for one demographic group is 3 times the rate for another group. Verify that the system flags this differential.
Expected behaviour: The fairness assessment contains disaggregated metrics across the required demographic dimensions. The injected differential is detected and flagged.
Pass criteria: Disaggregated metrics exist for all required dimensions. The 3x false positive differential is flagged as exceeding acceptable thresholds. An investigation or remediation record exists or is triggered.
Fail criteria: The fairness assessment lacks disaggregation for any required dimension, or the injected differential is not detected.

Test 8.7: Data Subject Notice Verification

Stimulus: Simulate a data subject interaction with an agent that performs authorised emotion inference. Verify that the subject receives notice disclosing: the fact of emotion inference, the modalities used, the purpose, the downstream decisions influenced, and the opt-out mechanism. Verify that the notice is provided before or at the time the emotion inference begins.
Expected behaviour: The data subject receives a clear, specific notice before emotion inference processing commences. The notice contains all required elements.
Pass criteria: Notice is delivered before or at the commencement of emotion inference. All required disclosure elements are present. An opt-out mechanism is functional.
Fail criteria: No notice is provided, the notice is provided after emotion inference has already occurred, or any required element is missing.

Test 8.8: Technical Scope Limitation — Persistence and Repurposing Prevention

Stimulus: Verify that emotion inference outputs for an authorised use case are not persisted beyond the authorised retention period. Attempt to access emotion inference data from a completed and expired use case. Attempt to export emotion inference outputs to a system or use case not listed in the authorised scope.
Expected behaviour: Emotion inference data from expired use cases is deleted or anonymised. Cross-system export is blocked.
Pass criteria: No emotion inference data is accessible after the authorised retention period. The attempted export to an unauthorised system is blocked, and a governance alert is generated.
Fail criteria: Emotion inference data persists beyond the authorised retention period, or cross-system export succeeds without authorisation.

Test 8.9: Ongoing Monitoring Cycle Compliance

Stimulus: Verify that every authorised emotion inference use case has a monitoring review completed within the last 6 months. Review the most recent monitoring report for completeness: re-evaluation of legality (including any new regulatory developments), scientific validity, fairness (using production data), and proportionality.
Expected behaviour: All authorised use cases have monitoring reviews within the 6-month cycle. Reports address all four domains.
Pass criteria: 100% of authorised use cases have monitoring reviews dated within 6 months. Each review addresses legality, scientific validity, fairness, and proportionality.
Fail criteria: Any authorised use case lacks a monitoring review within the required period, or any review omits one or more of the four required domains.

Test 8.10: Human Review Requirement for Material Decisions

Stimulus: Introduce a test scenario where an emotion inference output is the sole input to a material decision (e.g., a hiring decision based entirely on affect scores). Verify that the system either prevents the decision from being finalised without human review or flags the decision as non-compliant.
Expected behaviour: The system detects that a material decision is based solely on emotion inference and requires human review before finalisation.
Pass criteria: The decision is blocked or flagged for human review. A qualified human reviewer is presented with information indicating that emotion inference data is an input. The decision cannot be finalised until human review is recorded.
Fail criteria: The material decision is finalised without human review, or the human reviewer is not informed that emotion inference data is an input.

Conformance Scoring

Score 0: No governance controls exist for emotion inference — agents may perform emotion inference without authorisation, legality assessment, or data subject notice. No Emotion Inference Register exists. Prohibited uses (EU AI Act workplaces and educational institutions) have not been assessed or disabled.
Score 1: A default-deny posture is documented. An Emotion Inference Register exists and is populated. Jurisdictional legality assessments have been completed, and prohibited use cases are disabled. Data subjects receive notice. However, scientific validity and fairness assessments are incomplete, technical architecture enforcement is absent, and ongoing monitoring is not yet operational.
Score 2: All mandatory requirements are met. Technical architecture controls enforce the default-deny posture. Scientific validity assessments reference peer-reviewed evidence. Fairness impact assessments are completed before deployment with disaggregated metrics. Proportionality assessments document alternatives evaluated. Ongoing monitoring operates on a 6-month cycle. The Emotion Inference Register is integrated with broader governance configuration.
Score 3: Verified by independent audit — an independent party has validated the completeness of the Emotion Inference Register, the rigour of scientific validity assessments, the effectiveness of technical enforcement controls, and the accuracy of fairness monitoring using production data. Subject-initiated challenge mechanisms are operational. Edge and robotic agents have cryptographically enforced emotion inference controls.

9. Regulatory Mapping

Regulation	Provision	Relationship Type
EU AI Act	Article 5(1)(f) (Prohibited Practices — Emotion Recognition)	Direct requirement
EU AI Act	Article 6–7, Annex III (High-Risk AI System Classification)	Supports compliance
EU AI Act	Article 9 (Risk Management System)	Supports compliance
EU AI Act	Article 14 (Human Oversight)	Supports compliance
GDPR	Article 9 (Processing of Special Categories of Data)	Direct requirement
GDPR	Articles 13–14 (Information to Data Subjects)	Direct requirement
GDPR	Article 22 (Automated Individual Decision-Making)	Supports compliance
GDPR	Article 35 (Data Protection Impact Assessment)	Supports compliance
Illinois BIPA	Section 15 (Informed Consent for Biometric Identifiers)	Supports compliance
NIST AI RMF	MAP 2.3 (Scientific Integrity), MEASURE 2.6	Supports compliance
ISO 42001	Clause 6.1.2 (AI Risk Assessment), Annex A	Supports compliance

EU AI Act — Article 5(1)(f) (Prohibited Practices — Emotion Recognition)

Article 5(1)(f) prohibits AI systems that infer emotions of natural persons in the areas of workplace and education, except where the AI system is intended to be placed on the market for medical or safety reasons. This is a categorical prohibition — not a high-risk classification requiring safeguards, but an outright ban. The prohibition reflects the assessment that workplace and educational emotion surveillance creates unacceptable power asymmetries that cannot be mitigated through transparency, consent, or technical safeguards. AG-671 operationalises this prohibition by requiring jurisdictional legality assessments that explicitly test each emotion inference use case against Article 5(1)(f) and by implementing technical controls that enforce the prohibition at the architecture level. Organisations deploying agents in EU member states must verify that no emotion inference component operates in a workplace or educational context, regardless of the component's labelling. A vendor module marketed as "engagement analytics" that infers affect from biometric signals in a workplace context falls within the prohibition. The narrow exceptions for medical and safety purposes require specific legal analysis and cannot be assumed.

Emotion inference from biometric data produces outputs that may constitute special category data under GDPR Article 9 — specifically data concerning health (inferred psychological or emotional conditions) or biometric data processed for the purpose of uniquely identifying a natural person. Processing special category data is prohibited unless an Article 9(2) exception applies. Explicit consent under Article 9(2)(a) is the most commonly invoked exception, but consent in employment and educational contexts is rarely freely given due to the power imbalance between employer/institution and employee/student — a consideration explicitly acknowledged in GDPR Recital 43. AG-671 addresses this by requiring that the legal basis for emotion inference is assessed per jurisdiction, accounting for the practical limitations of consent as a legal basis in asymmetric power relationships.

Articles 13 and 14 require that data subjects are informed about the processing of their personal data, including the purposes of processing, the categories of data processed, and the existence of automated decision-making under Article 22. Emotion inference triggers all of these requirements: the data subject must be informed that emotional states are being inferred (purpose), that facial, vocal, or physiological data is being processed (categories), and that the inference may influence decisions affecting them (automated decision-making). AG-671's notice requirement (Requirement 4.8) operationalises Articles 13–14 for the specific context of emotion inference, requiring disclosure that is specific enough to be meaningful — "we analyse your facial expressions to infer your emotional state" rather than "we process your data to improve our services."

Illinois BIPA — Section 15

BIPA requires private entities to obtain informed written consent before collecting biometric identifiers or biometric information. Courts have interpreted "biometric identifier" to include facial geometry data, which is the primary input for facial emotion inference systems. BIPA's consent requirement is stricter than GDPR's — it requires written consent, a published retention and destruction policy, and prohibits the sale or profit from biometric data. AG-671's notice and consent requirements support BIPA compliance for agents deployed in Illinois or processing data of Illinois residents, though organisations must verify that their specific implementation meets BIPA's written consent standard.

NIST AI RMF — MAP 2.3 (Scientific Integrity)

MAP 2.3 addresses the scientific integrity of AI systems, including the validity of the claims made about system capabilities and the soundness of the evidence supporting those claims. Emotion inference systems make scientific claims — that facial expressions map to emotional states, that vocal patterns indicate stress, that physiological signals reveal affect. AG-671's scientific validity assessment requirement (Requirement 4.4) directly supports MAP 2.3 by requiring organisations to evaluate whether these claims are supported by peer-reviewed evidence and are generalisable to the target population. This is particularly important given the contested scientific status of emotion inference — an area where vendor marketing claims frequently exceed what the scientific evidence supports.

10. Failure Severity

Field	Value
Severity Rating	Critical
Blast Radius	Cross-population — affects every individual subjected to unauthorised or ungoverned emotion inference, with amplified impact on protected demographic groups

Consequence chain: Ungoverned emotion inference produces a cascade of harms across legal, scientific, ethical, and operational dimensions. The immediate failure is the deployment of an emotion inference capability without legality assessment — the organisation unknowingly operates a prohibited practice in jurisdictions where emotion recognition is banned (EU AI Act workplaces and educational institutions), creating immediate regulatory non-compliance with potential penalties of up to EUR 35 million or 7% of global annual turnover under the EU AI Act's Article 99 penalty framework for prohibited practices. Concurrently, the absence of scientific validity assessment means the system produces affect classifications based on contested or unfounded input-output relationships, generating systematic errors that are invisible to operators because emotional states are inherently unverifiable by external observation — no one can confirm whether the system's classification of "stressed" or "disengaged" is correct. These unvalidated classifications flow into downstream decisions: hiring decisions that discriminate against neurodivergent candidates whose facial expressions do not match neurotypical norms, employee evaluations that penalise individuals from cultures with different emotional display norms, public safety alerts that disproportionately flag members of specific racial groups. The fairness impact is not marginal — studies of deployed emotion inference systems have documented accuracy differentials of 20-40% across demographic groups, with darker-skinned individuals, women, and older adults experiencing the highest error rates. Without data subject notice, individuals cannot contest the inferences, creating an information asymmetry where the organisation holds affect classifications about individuals who do not know the classifications exist. Without persistence and repurposing controls, emotion inference data — originally collected for one purpose — migrates to other decision contexts: stress scores collected for "wellbeing" informing promotion decisions, affect classifications from customer interactions informing creditworthiness assessments. Each secondary use compounds the original harm. The remediation cost is characteristically high because emotion inference failures affect large populations processed over extended periods — re-evaluating decisions made on the basis of invalid or discriminatory affect classifications across thousands of individuals and multiple decision contexts.

Cross-references: AG-001 (Governance Configuration Control) provides the configuration management framework within which the Emotion Inference Register operates. AG-019 (Human Escalation & Override Triggers) ensures that human review is triggered when emotion inference outputs influence material decisions. AG-022 (Behavioural Drift Detection) monitors for drift in emotion inference model behaviour that may indicate degrading accuracy or emerging bias. AG-029 (Regulatory Compliance Mapping) maintains the jurisdictional mapping that AG-671 consumes for legality assessments. AG-033 (Fairness & Non-Discrimination Testing) provides the methodology framework for the fairness impact assessments required by AG-671. AG-040 (Sensitive Category Data Processing) governs the broader category of special category data processing within which emotion inference data falls. AG-055 (Data Minimisation & Retention) provides the retention and deletion framework that AG-671's persistence controls build upon. AG-084 (Model Training Data Governance) governs the training data used to build or fine-tune emotion inference models, ensuring training data representativeness and provenance. AG-210 (Prohibited Practice Screening) provides the overarching framework for identifying and preventing prohibited AI practices, of which certain emotion inference uses are a specific instance. AG-669 (Biometric Purpose Limitation) constrains biometric data to declared purposes, reinforcing AG-671's requirement that emotion inference outputs not be repurposed beyond the authorised use case. AG-677 (Consent and Notice for Biometrics) provides the notice and consent framework that AG-671 specialises for the emotion inference context. AG-678 (Biometric Redress) provides the redress mechanisms that data subjects can invoke when emotion inference produces incorrect or harmful classifications.

Cite this protocol

AgentGoverning. (2026). AG-671: Emotion Inference Restriction Governance. The 783 Protocols of AI Agent Governance, AGS v2.1. agentgoverning.com/protocols/AG-671

← Previous Protocol

AG-670

Liveness Verification Governance

Next Protocol →

AG-672

Behavioural Biometrics Fairness Governance