Trusq

factual analysis · traceable to primary sources

Topics Opportunities Take the check Work with us LinkedIn NLยทEN
Lecture hall with an audience
Explainer

Article 4 AI Act: the literacy obligation that already applies

Adopted 2026-06-11 ยท ≈ 3 min read ยท Dirk Baaijen

Since 2 February 2025, providers and deployers must take measures to support the development of AI literacy in everyone who works with AI systems on their behalf. The norm is open, but not optional; from 2 August 2026 national supervisors can enforce it.

Download the regime cheat sheet (PDF) ↓

Article 4 of the AI Act is one of the least conspicuous but most broadly applicable provisions of the law. It has applied since 2 February 2025, it touches virtually every organisation that uses AI systems โ€” including those that merely deploy a generative AI assistant โ€” and it was not postponed by the Digital Omnibus agreement of May 2026.

What the provision requires

Providers and deployers of AI systems must take measures to ensure, to their best extent, a sufficient level of AI literacy among their staff and other persons operating and using AI systems on their behalf. They must take into account the technical knowledge, experience and training of those involved, the context in which the systems are used, and the persons on whom the systems are used.

Three elements deserve emphasis. The obligation rests on two roles at once: providers and deployers. The circle is wider than an organisation's own staff: contractors and hired workers using AI on the organisation's behalf are covered too. And the yardstick is relative: what counts as sufficient depends on the system, the user's role and the group affected. A development team building a credit scoring model needs a different level of literacy than a customer service team using a chat assistant.

What the provision does not require

The regulation prescribes no mandatory number of training hours, no specific course and no certificate. The European Commission confirms that open norm in its questions-and-answers document: organisations decide for themselves how to reach the required level. The AI Office supports this with a living repository of AI literacy practices, which serves as a reference but has no normative status.

Enforcement: an open norm, not a hollow one

Article 99 of the regulation, which governs administrative fines, does not list Article 4 as an independent ground for a fine. That does not make the provision toothless. The national market surveillance authorities had to be designated by 2 August 2025; from the general date of application of 2 August 2026 they can take Article 4 compliance into account in their supervision; in the Netherlands the Data Protection Authority and the RDI take a coordinating role. Demonstrable literacy also weighs into the assessment of other obligations โ€” whoever must organise human oversight of a high-risk system (Articles 14 and 26) cannot do so without staff who understand the system โ€” and into civil liability for damage caused by AI use.

A workable approach

The provision and the Commission document suggest a sober approach: map which AI systems the organisation uses and who works with them; determine per role what level of knowledge is needed; organise training or instruction tailored to that; and record what was done, for whom and when. That record is not a formal requirement of Article 4, but it is the only way to make a plausible case to a supervisor that the open norm has been met.

The Digital Omnibus agreement of 7 May 2026 softens the provision's wording slightly, but leaves the obligation itself and its date of application untouched. Organisations that have been waiting are already more than a year behind on a live obligation.

Sort it now? Our AI literacy course trains your team in 45 minutes โ€” role-specific, with a certificate as evidence for your file.

Sources

  1. https://eur-lex.europa.eu/eli/reg/2024/1689/oj
    Regulation (EU) 2024/1689, Article 4 and recital 20; date of application in Article 113.
  2. https://digital-strategy.ec.europa.eu/en/faqs/ai-literacy-questions-answers
    European Commission questions and answers on the interpretation and scope of Article 4.
  3. https://www.autoriteitpersoonsgegevens.nl/actueel/toezicht-op-ai-wordt-concreet-sleutelrol-voor-de-ap-en-de-rdi
    Dutch Data Protection Authority on the design of Dutch AI supervision.
  4. https://www.aiactblog.nl/nl/ai-geletterdheid
    Practice-oriented overview of Article 4 and the consequences of the Digital Omnibus agreement for the literacy obligation.

Share on LinkedIn

Read next

W

AI literacy for HR and recruitment teams

The literacy duty (Art. 4) already applies and weighs heavily for HR: a recruiter operating a high-risk system can only exercise human oversight (Art. 14) if they understand the system. This guide describes what an HR team must know and how to make it demonstrable.

U

Procuring an AI model (GPAI): what duties do you have as a deployer?

The heaviest GPAI duties fall on the provider, not on you. As a deployer your obligations centre on AI literacy (Article 4), transparency (Article 50) and โ€” for high-risk use โ€” the deployer duties in Article 26.

W

AI use policy: a ready-to-use template to adopt

A directly usable template for an internal AI use policy โ€” what is and isn't allowed, which data may go into AI tools, approval of new tools, and the link to AI literacy (art. 4). Adopt it and adapt it to your organisation.

Dirk Baaijen

About this knowledge base

Compiled and maintained by YRproject โ€” programme and project direction at the intersection of digital transformation, AI and regulation. Every factual claim is traceable to its primary source. YRproject is led by Dirk Baaijen About & method โ†’

A project or programme? Work with YRproject โ†’

The monthly briefing

AI regulation in five minutes: what changed, what is coming and what it means. No spam, unsubscribe anytime.

Your address is used for this only and stored on our own servers.