Who must comply with the EU AI Act?

The Act assigns obligations by role. Providers, who develop an AI system and place it on the EU market or put it into service under their own name, carry most of the duties for high-risk systems. Deployers, who use an AI system under their own authority, have their own duties such as ensuring human oversight and operating the system per the provider's instructions. The same organisation can hold both roles, and modifying a system you did not build can make you a provider.

Does the EU AI Act apply outside the EU?

Yes. The Act has extraterritorial reach. It can apply to providers and deployers established outside the EU where the output produced by the AI system is used in the EU, regardless of where the system runs. Verify the precise scope against the current official text for your situation.

For builders shipping AI in or to the EU

The EU AI Act for engineers and architects

Q: What is a high-risk AI system?

A high-risk AI system is one used in a defined sensitive context, such as certain uses in employment, education, essential services, and law enforcement, or as a safety component of a regulated product. High-risk systems carry the bulk of the Act's engineering obligations, including risk management, data governance, logging, human oversight, robustness and accuracy, and technical documentation. Exact classification depends on the use and the current text of the Act.

By Wibo · Amsterdam 26 Jun 2026 ~8 min read

Short answer

Which risk tier your system falls into determines almost everything else. The EU AI Act (Regulation (EU) 2024/1689) is risk-based: it imposes near-nothing on minimal-risk systems and heavy obligations on high-risk ones. Classify first, then design to the strictest tier that plausibly applies to any part of your system.

If you build or place an AI system on the EU market, or your system's output is used in the EU, this applies to you regardless of where your servers are. Most certification prep ignores regulation entirely. Designing for compliance is a genuine architect differentiator, and in the EU it is increasingly table stakes.

The four risk tiers

The Act sorts AI systems into four bands. The obligations that attach to each are very different, so the classification step is where your architecture decisions begin.

Unacceptable risk (banned)

A short list of practices is prohibited outright. These include things like certain manipulative or exploitative systems, untargeted scraping for facial-recognition databases, and some forms of social scoring. If your design lands here, there is no compliance path. You change the design.

High risk (strict obligations)

Systems used in defined sensitive contexts, such as some uses in employment, education, essential services, law enforcement, and safety components of regulated products. High-risk systems carry the bulk of the Act's engineering obligations: risk management, data governance, logging, human oversight, robustness and accuracy targets, and technical documentation.

Limited risk (transparency duties)

Systems that interact with people or generate content carry transparency obligations rather than the full high-risk regime. The headline example is Article 50: disclose that a user is dealing with AI, and label AI-generated or manipulated content. More on that below.

Minimal risk (largely unregulated)

Most everyday AI, such as spam filters or recommendation features, falls here and is largely unregulated by the Act. The risk in practice is misclassifying a system as minimal when one component pushes it higher.

Design to the strictest tier that applies

A system is rarely one clean tier. A minimal-risk product can contain a feature that is high-risk, or a chat surface that triggers Article 50. Classify each component, then design the whole system to satisfy the strictest tier any part of it touches. It is far cheaper to build logging and human oversight in from the start than to retrofit them after a classification surprise.

Provider vs deployer

The Act assigns obligations by role, and the same organisation can hold both. A provider develops an AI system, or has one developed, and places it on the market or puts it into service under its own name. A deployer uses an AI system under its own authority. The two carry different duties.

Providers shoulder most of the heavy obligations for high-risk systems: conformity work, technical documentation, the quality and risk-management processes, and the information that has to flow downstream. Deployers have their own duties, which can include operating the system per the provider's instructions, ensuring meaningful human oversight, and monitoring in use. If you fine-tune, rebrand, or substantially modify a system you did not originally build, you may take on provider obligations. Know which hat you are wearing, because it changes what you are accountable for.

Transparency (Article 50)

Article 50 sets transparency duties that apply broadly, not only to high-risk systems. Two are most relevant to builders. First, when people interact directly with an AI system, they should be made aware they are dealing with AI unless it is obvious from context. Second, providers of systems that generate synthetic audio, image, video, or text should mark outputs as artificially generated or manipulated in a detectable way, and deployers of certain content, such as deepfakes, have disclosure duties of their own.

For engineers this turns into concrete work: an honest AI-disclosure surface in your UI, and a content-provenance or watermarking approach for generated media. Treat these as product requirements, not afterthoughts.

General-purpose AI (GPAI) models

On top of the risk tiers, the Act places obligations on providers of general-purpose AI models, with additional duties where a model is judged to carry systemic risk. These cover things like technical documentation, information to downstream providers who build on the model, and copyright and training-data transparency expectations. If you build on top of a foundation model you are usually a downstream provider relying on the model provider's compliance, but you should know these obligations exist and sit alongside, not instead of, the risk-tier rules.

Mapping obligations to your architecture

The high-risk obligations are not abstract legal text. They map onto system components you, the engineer, already control:

Logging and record-keeping. Automatic recording of events over the system's lifetime, enough to trace behaviour and support post-incident review. This is observability with a retention and auditability mandate.
Human oversight. The system has to be designed so a person can understand it, intervene, and override or stop it. That is an architecture and UX decision: surface state, expose a stop control, gate irreversible actions behind a human.
Data governance. Training, validation, and test data managed for relevance, representativeness, and bias. This reaches into your data pipeline, not just your model.
Robustness and accuracy. Appropriate levels of accuracy, robustness, and cybersecurity, declared and maintained. This is your eval suite, your adversarial testing, and your security posture.
Technical documentation. Documentation drawn up before the system is placed on the market and kept current. Architecture decision records and model and dataset documentation feed straight into this.

If you already practise observability, least privilege, testing, and documentation, you are most of the way there. The Act gives those practices a regulatory edge in the EU.

Where GDPR fits

The EU AI Act sits alongside the General Data Protection Regulation (GDPR, Regulation (EU) 2016/679). It does not replace it. Wherever your AI system processes personal data, GDPR still governs that processing in full. The pieces engineers hit most often:

Lawful basis. You need a valid legal ground to process personal data, before you process it.
Data minimisation. Collect and retain only what you need for the stated purpose. This pushes back directly on the instinct to hoard training data.
Purpose limitation. Data collected for one purpose cannot be freely repurposed, which constrains reusing operational data for model training.
Article 22. Restrictions on decisions based solely on automated processing that produce legal or similarly significant effects on a person. Relevant whenever an agent or model makes consequential decisions without a human in the loop.

In short: the Act tells you what obligations attach to the AI system; GDPR tells you how you may handle the personal data flowing through it. You design for both at once.

Risk tier	Examples	What you must do
Unacceptable	Certain manipulative or exploitative uses, untargeted facial-recognition scraping, some social scoring	Prohibited. There is no compliance path; redesign the system.
High	Some uses in employment, education, essential services, law enforcement; safety components of regulated products	Risk management, data governance, logging, human oversight, robustness and accuracy, technical documentation, conformity work.
Limited	Chatbots and assistants; systems generating synthetic media	Transparency duties (Article 50): disclose AI interaction; label AI-generated or manipulated content.
Minimal	Spam filters, recommendation features, most everyday AI	Largely unregulated by the Act. Watch for components that push the system into a higher tier.

Tier examples are illustrative, not exhaustive. Classification depends on the specific use and the current text of the Act.

This is an architect differentiator

Almost all cert-prep teaches you to build the system and stops there. Very few engineers can take a working AI system and make it classifiable, documented, overseeable, and defensible under EU law. That is scarce, it is where real deployments stall, and in the EU it is the difference between a demo and something you can put in front of customers. Lead with it.

A note on timelines

The Act's obligations are phased in over time rather than all at once, and the detail, including guidance and standards, is still evolving. Do not treat any specific enforcement date as fixed. Before you make a compliance decision, check the current official text and the European Commission's guidance for the dates and duties that apply to your situation.

Sources & provenance

EU AI Act - Regulation (EU) 2024/1689 (the official consolidated text of the Act).
European Commission - Shaping Europe's digital future (AI Act) for the risk-based framing and official guidance.
GDPR - Regulation (EU) 2016/679 for the data-protection obligations that sit alongside the Act.

The Act's obligations are phased and the surrounding guidance is still evolving; this is a conceptual overview, not legal advice, and dates are not fixed here. Verify against the current official text before acting. Corrections: hello@aiarch.dev.

Make compliance part of how you architect.

AI Architect Academy teaches governance, data handling, human oversight, and documentation as first-class architecture skills, alongside the Anthropic, AWS, and Cloudflare engineering work.

Browse the curriculum → Try a sample lesson