A standardized disclosure document accompanying an AI model that describes its intended use, training data, evaluation results, limitations, and known failure modes.
Explainer
A model card is a standardized disclosure document that accompanies a trained AI model and describes its intended use, training and evaluation data, performance results across conditions, limitations, and known failure modes. The format originated in Mitchell et al., "Model Cards for Model Reporting," presented at the ACM Conference on Fairness, Accountability, and Transparency (FAT*/FAccT) in 2019 (arXiv:1810.03993). The paper frames model cards as short accompanying documents whose purpose is to clarify a model's intended use cases—reporting benchmarked evaluation across cultural, demographic, or phenotypic groups—and to minimize use in contexts for which a model is not well suited. The stated goal is increased transparency into how well a model works and for whom.
In the years since, the model card has become a de facto industry convention. It is the default template for models published on the Hugging Face Hub and has been promoted as a transparency practice by Google's PAIR initiative and Microsoft's Responsible AI program. It is useful to distinguish the model card from adjacent artifacts: a system card wraps a model card with deployment-level context (OpenAI has used this framing for its GPT-4 family of releases); a datasheet, in the sense of Gebru et al. (2018), documents a dataset rather than a model; and "fact sheet" is IBM's term for a comparable disclosure. These formats overlap but target different units of analysis.
In policy, model-card-style disclosure appears predominantly as a voluntary or soft-law mechanism. The U.S. NIST AI Risk Management Framework references model cards as a transparency tool under its GOVERN function (GOVERN 1.4, which cites Mitchell et al.), and the ISO/IEC 23894 AI-risk-management standard endorses analogous documentation; international frameworks such as the G7 Hiroshima Process and the OECD AI Principles, alongside jurisdiction-level instruments including Singapore's and Japan's AI guidance and U.S. subnational measures (NYC Local Law 144 of 2021 and Colorado SB 24-205), incorporate documentation or disclosure expectations of varying bindingness. The EU AI Act's Article 53 is the first binding equivalent for general-purpose AI models: it requires providers to maintain technical documentation (Annex XI) covering intended tasks, training and testing data, and evaluation results, and to publish a sufficiently detailed training-data summary—obligations further elaborated for general-purpose models through the EU's GPAI Code of Practice (2025). Outside this regime, model cards remain largely voluntary across jurisdictions.
A recurring caveat is completeness. Cards may omit training compute, dataset composition, or evaluation methodology, and providers can invoke trade-secret or confidential-business-information claims. Article 53 acknowledges such interests—its downstream-disclosure duty operates "without prejudice" to intellectual property and trade secrets, and information obtained under the article is subject to the Act's confidentiality regime—while channeling those protections through defined legal limits rather than a blanket exemption. Policy Window records the editorial read on this concept as settled: the model card is an established, well-defined documentation primitive with a clear origin and broad adoption. That read should be held provisionally—it reflects the convergence of the format's definition and uptake, not a claim that disclosure contents are uniform or independently verified across providers.
Definition & scope
Model cards originated in Mitchell et al. (2019) 'Model Cards for Model Reporting' (FAccT). The pattern was adopted by Hugging Face Hub (default model template), Google PAIR, and Microsoft Responsible AI. EU AI Act Art. 53 codifies model-card-style disclosures for general-purpose AI models — providers must document training-data summary, capabilities, limitations, intended use, and evaluation methodology. NIST AI RMF cites model cards as a transparency mechanism under GOVERN 1.4 (which references Mitchell et al.); model-card-style measurement documentation otherwise maps to the MEASURE 2.x subcategories (iter-436 correction: the prior 'Govern 1.3, Map 5.1' citation was wrong — those subcategories cover risk-tolerance and impact-assessment, not model cards, per the NIST AI RMF Playbook). ISO/IEC 23894 (AI risk management) endorses analogous documentation. Distinguish from: (a) 'system card' — wraps a model card with deployment-context information (OpenAI uses this term for GPT-4 family); (b) 'data sheet' — Gebru et al. 2018, focuses on training datasets rather than models; (c) 'fact sheet' — IBM's term for similar disclosure. Model cards remain voluntary in most jurisdictions; the EU AIA Art. 53 disclosure is the first binding equivalent.
Anatomy and Conceptual Distinctions
A model card is a structured disclosure artifact: as defined by Mitchell et al. (2019), 'Model Cards for Model Reporting' (FAccT '19), it pairs a model with sections on intended use, training data, evaluation results, limitations, and known failure modes. Its analytical value lies in disaggregated evaluation — reporting performance across demographic and contextual subgroups rather than a single headline metric. The concept must be distinguished from adjacent artifacts: a 'system card' wraps the model card in deployment context (OpenAI's GPT-4 usage); a 'datasheet' 1 documents the dataset, not the model; and IBM's 'fact sheet' covers analogous disclosure. These siblings address overlapping but non-identical accountability gaps, and conflating them obscures whether a disclosure speaks to data provenance, model behavior, or deployed-system risk. Crucially, the card is one input to a wider accountability apparatus: it presupposes verification through algorithmic audits, whose own political economy can entrench rather than constrain power without underlying governance 2, and it only matters to affected people insofar as it feeds meaningful contestation and redress 3.
From Voluntary Norm to Binding Codification
Model cards spread first as voluntary infrastructure — the Hugging Face Hub default template, Google PAIR, and Microsoft Responsible AI — before regulators engaged. NIST AI RMF cites model cards as a transparency mechanism under GOVERN 1.4 (referencing Mitchell et al.), with measurement documentation mapping to the MEASURE 2.x subcategories; ISO/IEC 23894 endorses analogous documentation. The pivotal shift is EU AI Act Art. 53, the first binding equivalent: providers of general-purpose AI models must document a training-data summary, capabilities, limitations, intended use, and evaluation methodology — part of a broader generative-AI compliance lattice spanning liability, privacy, copyright and cybersecurity 4. The 2025 GPAI Code of Practice (published 2025-07-10, voluntary) operationalizes this via a model-documentation form and mandatory training-data-summary template, with AI Office enforcement powers activating 2026-08-02 (AI Office 2025). Soft-law instruments (G7 Hiroshima, OECD AI Principles) reinforce the same disclosure expectation across jurisdictions, though documentation mandates risk becoming rubber-stamp formalities unless effectiveness conditions are explicitly designed in 5.
Definitional Instability of the Regulated Object
Model-card mandates inherit the instability of the legal category they attach to. Fernández-Llorca et al. (2025) trace how the AI Act's text shifted across versions among 'AI system, general purpose AI system, foundation model, and generative AI' 6, so what counts as the documented object under Art. 53 is itself contested. Hulok (2025) notes the risk-based model strains where 'autonomous content generation challenges legal categories of authorship, accountability, and control' 7, while Hacker, Engel & Mauer (2023) argue regulation 'has primarily focused on conventional AI models, not LGAIMs' and should target applications rather than 'the pre-trained model itself' 8. The instability is partly definitional: existing GPAIS definitions 'do not provide sufficient guidance,' prompting calls for a functional definition to anchor governance 9. A disclosure document is only as stable as the entity it characterizes, complicating cross-provider normalization.
Limits, Evidence, and Open Questions
Though the concept's empirical status is settled, its sufficiency as governance is contested. Completeness is the core weakness: cards may omit training-compute, dataset composition, or evaluation methodology under trade-secret claims, which EU AI Act Art. 53 carves out only narrowly. Olsen et al. (2024) find that with 'no mature standard for documenting AI models,' public-sector transparency stays limited 10, and Ruschemeier (2025) shows models that 'memorize and leak pieces of training data' resist clean data-summary disclosure 11. Disclosure also presupposes capability evidence: Phuong et al. (2024) pilot dangerous-capability evaluations finding 'early warning signs' 12, and Anderljung et al. (2023) argue self-regulation is a 'first step' but 'government intervention will be needed' 13. Whether cards convert into redress — meaningful contestability 3 — remains open.
Use in governance
How instruments operationalise this concept
| Instrument | Jurisdiction | Status |
|---|---|---|
| EU AI Act | EU | in force |
| NIST AI Risk Management Framework | US | in force |
| G7 Hiroshima AI Process Code of Conduct | G7 | in force |
| OECD AI Principles (Recommendation) | OECD | in force |
| Singapore Model AI Governance Framework for Generative AI | SG | in force |
| Japan METI AI Guidelines for Business | JP | in force |
| EU General-Purpose AI Code of Practice | EU | in force |
Appears in topic articles
Editorial note
When comparing model cards across providers, normalize for completeness: cards may omit training-compute, dataset composition, or evaluation methodology under trade-secret claims. EU AIA Art. 53 carves out trade-secret exemptions narrowly. Currency (2026-06-21): Definition remains accurate; the EU AIA Art. 53 / GPAI Code of Practice (published 2025-07-10, voluntary) now operationalizes model-card-style disclosure via a model-documentation form + mandatory training-data-summary template, with AI Office enforcement powers activating 2026-08-02 — the article's "first binding equivalent" framing still holds.
See also
Further reading
Sources on the broader topics this concept relates to — complementing, not standing in for, the primary sources cited inline above. 64 academic & grey-literature sources; catalogued metadata with a primary link; one-line findings are ✦ AI-generated summaries, labeled as such (charter §7.9). Browse the full literature index.
- An interdisciplinary account of the terminological choices by EU policymakers ahead of the final agreement on the AI Act: AI system, general purpose AI system, foundation model, and generative AI Peer-reviewed✦ AITraces how the AI Act's legal text shifted across versions among the terms 'AI system, general purpose AI system, foundation model, and generative AI', exposing definitional instability in the regime.
- The EU model of AI governance: regulating artificial intelligence through law and policy Peer-reviewed✦ AIAnalyses how the AI Act's risk-based model handles general-purpose and foundation models whose 'autonomous content generation challenges legal categories of authorship, accountability, and control'.
- Generative AI and data protection Peer-reviewed✦ AIExamines friction between foundation-model training and the GDPR, noting models that 'memorize and leak pieces of training data' cannot be treated as anonymous.
- Identifying Algorithmic Decision Subjects' Needs for Meaningful Contestability Peer-reviewed✦ AIEmpirically elicits what decision subjects need for contestation to be 'meaningful', informing the design of effective remedies and appeal mechanisms for ADM.
- Two Means to an End Goal: Connecting Explainability and Contestability in the Regulation of Public Sector AI Preprint✦ AIInterview study with 14 regulation experts distinguishes judicial vs non-judicial and individual vs collective contestation channels for public-sector AI remedies.
- GPTs are GPTs: Labor market impact potential of LLMs Peer-reviewed✦ AIFinds around 80% of the U.S. workforce "could have at least 10% of their work tasks affected" by LLMs, which exhibit "traits of general-purpose technologies".
- Generative AI in EU law: Liability, privacy, intellectual property, and cybersecurity Peer-reviewed✦ AIExamines how the EU AI Act, liability regimes, GDPR, copyright and cybersecurity rules apply to generative AI, identifying gaps and proposing targeted regulatory refinements.
- Evaluating Frontier Models for Dangerous Capabilities Preprint✦ AIPilots dangerous-capability evaluations (persuasion, cyber, self-proliferation) on frontier models, finding 'early warning signs' but no strong present danger — grounding evaluation-based gating.
- The Right to Transparency in Public Governance: Freedom of Information and the Use of Artificial Intelligence by Public Agencies Peer-reviewed✦ AIFinds freedom-of-information regimes "generally only grant access to existing documents" and that with "no mature standard for documenting AI models," public-sector AI transparency is limited.
- On the Quest for Effectiveness in Human Oversight: Interdisciplinary Perspectives Peer-reviewed✦ AISynthesises interdisciplinary evidence to argue that legally mandated human oversight of AI is often ineffective ('rubber-stamp') unless effectiveness conditions are explicitly designed for.
- Law and the Emerging Political Economy of Algorithmic Audits Peer-reviewed✦ AIAnalyses how AI-audit mandates create a new political economy of auditing, warning that audit markets can entrench rather than constrain power without underlying governance.
- Understanding Contestability on the Margins: Implications for the Design of Algorithmic Decision-making in Public Services Peer-reviewed✦ AIField study shows marginalized public-service users need intermediaries and informal channels for contestation, challenging individualistic right-to-contest designs.
+ 52 more across this concept's topics — see the literature index.
References
Sources cited inline in the analysis (linked from the superscript markers), then the primary instrument sources behind the classifications.
- Buolamwini & Gebru (2018) Gender Shades: Intersectional Accuracy Disparities in Commercial Gender Classification, PMLR (FAT* 2018). source — Audit of commercial classifiers showing "darker-skinned females are the most misclassified group (with error rates of up to 34.7%)" versus 0.8% for lighter-skinned males. ↩
- Petros Terzis, Michael Veale, Noëlle Gaumann (2024) Law and the Emerging Political Economy of Algorithmic Audits, Proceedings of the 2024 ACM Conference on Fairness, Accounta. 10.1145/3630106.3658970 — Analyses how AI-audit mandates create a new political economy of auditing, warning that audit markets can entrench rather than constrain power without underlying governance. ↩
- Mireia Yurrita, Himanshu Verma, Agathe Balayn, Kars Alfrink, Ujwal Gadiraju, and Alessandro Bozzon (2025) Identifying Algorithmic Decision Subjects' Needs for Meaningful Contestability, Proceedings of the ACM on Human-Computer Interaction (CSCW). 10.1145/3757415 — Empirically elicits what decision subjects need for contestation to be 'meaningful', informing the design of effective remedies and appeal mechanisms for ADM. ↩
- Novelli, Casolari, Hacker, Spedicato & Floridi (2024) Generative AI in EU law: Liability, privacy, intellectual property, and cybersecurity, Computer Law & Security Review. 10.1016/j.clsr.2024.106066 — Examines how the EU AI Act, liability regimes, GDPR, copyright and cybersecurity rules apply to generative AI, identifying gaps and proposing targeted regulatory refinements. ↩
- Sarah Sterz, Kevin Baum, Sebastian Biewer, Holger Hermanns, Anne Lauber-Rönsberg, Philip Meinel, Markus Langer (2024) On the Quest for Effectiveness in Human Oversight: Interdisciplinary Perspectives, Proceedings of the 2024 ACM Conference on Fairness, Accounta. 10.1145/3630106.3659051 — Synthesises interdisciplinary evidence to argue that legally mandated human oversight of AI is often ineffective ('rubber-stamp') unless effectiveness conditions are explicitly designed for. ↩
- David Fernández-Llorca, Emilia Gómez, Ignacio Sánchez, Gabriele Mazzini (2025) An interdisciplinary account of the terminological choices by EU policymakers ahead of the final agreement on the AI Act: AI system, general purpose AI system, foundation model, and generative AI, Artificial Intelligence and Law. 10.1007/s10506-024-09412-y — Traces how the AI Act's legal text shifted across versions among the terms 'AI system, general purpose AI system, foundation model, and generative AI', exposing definitional instability in the regime. ↩
- Martina Hulok (2025) The EU model of AI governance: regulating artificial intelligence through law and policy, ERA Forum. 10.1007/s12027-025-00869-1 — Analyses how the AI Act's risk-based model handles general-purpose and foundation models whose 'autonomous content generation challenges legal categories of authorship, accountability, and control'. ↩
- Hacker, Engel & Mauer (2023) Regulating ChatGPT and other Large Generative AI Models, ACM FAccT '23. 10.1145/3593013.3594067 — Argues AI regulation "has primarily focused on conventional AI models, not LGAIMs" and should target "concrete high-risk applications, and not the pre-trained model itself". ↩
- Gutierrez, Aguirre, Uuk, Boine & Franklin (2023) A Proposal for a Definition of General Purpose Artificial Intelligence Systems, Digital Society. 10.1007/s44206-023-00068-w — Finds existing GPAIS definitions "do not provide sufficient guidance" and proposes "a functional definition of the term that facilitates its governance within the EU". ↩
- Henrik Palmer Olsen, Thomas Troels Hildebrandt, Cornelius Wiesener, Matthias Smed Larsen, Asbjørn William Ammitzbøll Flügge (2024) The Right to Transparency in Public Governance: Freedom of Information and the Use of Artificial Intelligence by Public Agencies, Digital Government: Research and Practice. 10.1145/3632753 — Finds freedom-of-information regimes "generally only grant access to existing documents" and that with "no mature standard for documenting AI models," public-sector AI transparency is limited. ↩
- Hannah Ruschemeier (2025) Generative AI and data protection, Cambridge Forum on AI: Law and Governance. 10.1017/cfl.2024.2 — Examines friction between foundation-model training and the GDPR, noting models that 'memorize and leak pieces of training data' cannot be treated as anonymous. ↩
- Mary Phuong, Matthew Aitchison, Elliot Catt, et al. (Google DeepMind) (2024) Evaluating Frontier Models for Dangerous Capabilities, arXiv (cs.LG). arXiv:2403.13793 — Pilots dangerous-capability evaluations (persuasion, cyber, self-proliferation) on frontier models, finding 'early warning signs' but no strong present danger — grounding evaluation-based gating. ↩
- Anderljung, Barnhart, Korinek, et al. (2023) Frontier AI Regulation: Managing Emerging Risks to Public Safety, arXiv. arXiv:2307.03718 — Argues "industry self-regulation is an important first step" but "government intervention will be needed", proposing safety standards, registration and reporting, and compliance mechanisms. ↩
- Mitchell et al. (2019), 'Model Cards for Model Reporting,' FAccT '19
Cite this article 8 formats · BibTeX, RIS, APA, Chicago, … · 1-click copy
Persistent identifier: https://policywindow.org/wiki/model-card — committed-stable URL with content-versioning via ?asOf= (rollout pending per methodology §7). DOIs via Zenodo are on the roadmap.
Article tools — track changes, suggest an edit
View history — every captured revision of this article · What links here
Social-science evidence — the “so-what”
What the peer-reviewed social science shows: whether the harm this concept addresses is empirically real, and whether governance of it works. The badge is the epistemic status of the evidence(not the policy debate) — “thin” or “absent” efficacy evidence is itself a finding (the “second silence”). Each epistemic-status label is Policy Window's editorial assessment of the cited evidence base (a structured classification), not a verdict any single source issues.
Model cards are a real, coherently-defined instrument and the documentation gap they target is empirically demonstrated: Mitchell et al. 2019 introduced the standardized template (intended use, evaluation, limitations) and it is now near-ubiquitous on model hubs, yet Liang et al.'s systematic analysis of 32,111 Hugging Face model cards (Nature Machine Intelligence 2024) shows the substantive sections are the least completed — limitations, evaluation, and environmental-impact fields have the lowest fill rates while training details are most consistently reported. Caveat: this establishes that the instrument and the under-documentation it names are real, not that the cards as written convey adequate information.
Sources: Mitchell et al. 2019 (Model Cards for Model Reporting, ACM FAT* 2019, pp.220-229; arXiv:1810.03993); Liang et al. 2024 (Systematic analysis of 32,111 AI model cards characterizes documentation practice in AI, Nature Machine Intelligence 6(7):744-753; arXiv:2402.05160); Gebru et al. 2021 (Datasheets for Datasets, Communications of the ACM 64(12):86-92; DOI 10.1145/3458723)
There is no replicated impact evaluation showing that model cards reduce downstream harm or measurably improve real-world deployment outcomes; adoption is high but completeness and specificity are low (Liang et al. 2024), and interventions to improve documentation are studied as usability/uptake/decision-process rather than harm outcomes — DocML nudging modestly raised documentation compliance during development (Bhat et al. 2023, CHI) and RiskRAG improved risk-report preference and encouraged more deliberative model selection in a within-subject user study (Rao et al. 2025, CHI; not 'Dhole et al.' as originally drafted) without demonstrating reduced real-world misuse. The evidence that this disclosure instrument achieves its governance aim is thin.
Sources: Liang et al. 2024 (Systematic analysis of 32,111 AI model cards, Nature Machine Intelligence 6(7):744-753; arXiv:2402.05160); Bhat et al. 2023 (Aspirations and Practice of ML Model Documentation: Moving the Needle with Nudging and Traceability, ACM CHI 2023; arXiv:2204.06425); Rao et al. 2025 (RiskRAG: A Data-Driven Solution for Improved AI Model Risk Reporting, ACM CHI 2025; arXiv:2504.08952; DOI 10.1145/3706598.3713979)