Trusq

factual analysis · traceable to primary sources

Topics Opportunities Take the check Work with us LinkedIn NLยทEN
Financial district skyline at night
Explainer

High-risk AI mapped: classification and obligations in one overview

Adopted 2026-06-12 ยท ≈ 2 min read ยท Dirk Baaijen

The high-risk regime is the centre of gravity of the AI Act. This overview explains the two classification routes (Annex I and Annex III), the obligations of providers and deployers, the filter provision of Article 6, and what the expected delay to December 2027 does and does not mean.

Download the regime cheat sheet (PDF) ↓

The high-risk regime of Chapter III is the centre of gravity of the AI Act: by far the most obligations, the conformity assessment and the CE marking hang from it. It is also the part whose date of application is expected to shift, under the Digital Omnibus agreement of 7 May 2026 (see the timeline), to 2 December 2027 (Annex III) and 2 August 2028 (Annex I). What has to be done does not change โ€” only when.

Two routes into the high-risk classification

Route 1 โ€” Annex I: the AI system is a safety component of a product already covered by European product legislation (machinery, medical devices, toys, lifts), or is such a product itself, and requires third-party conformity assessment under that legislation.

Route 2 โ€” Annex III: the system falls within one of eight listed areas, including biometrics, critical infrastructure, education, recruitment and employment decisions, access to essential services (including creditworthiness and insurance), law enforcement, migration and the administration of justice.

The filter provision (Article 6(3)): an Annex III system is nevertheless not high-risk if it poses no significant risk to health, safety or fundamental rights โ€” for instance because it performs a narrow procedural task or merely prepares a human assessment. Whoever invokes the filter must document that assessment; profiling of natural persons always counts as high-risk.

Provider obligations

The provider carries the heaviest package (Articles 8 through 17): a continuous risk management system; requirements on training, validation and test data including bias controls; technical documentation; automatic logging; transparent instructions for use to the deployer; design for effective human oversight; accuracy, robustness and cybersecurity; and a quality management system. Then follow the conformity assessment, the EU declaration of conformity, CE marking and registration in the EU database (Article 49).

Deployer obligations

Whoever puts a high-risk system to use has its own list (Article 26): use in accordance with the instructions, assignment of competent human oversight, relevant and representative input data, monitoring of operation, retention of logs and informing workers when deployed in the workplace. Public bodies and providers of essential private services must in addition carry out a fundamental rights impact assessment (FRIA, Article 27) before first use. For financial institutions, the bridging provisions connect these duties to existing governance โ€” see the separate analysis on the interplay with DORA.

What the delay does and does not mean

Until the Digital Omnibus appears in the Official Journal, 2 August 2026 formally remains the applicable date; thereafter 2 December 2027 becomes the planning horizon for Annex III. Not delayed are the provisions that already apply โ€” the prohibitions, the literacy obligation and the GPAI regime. The content of the high-risk package does not change either. Organisations that build the components now (register, risk management, data quality, documentation) do no work that will be lost; they merely spread the load.

Sources

  1. https://eur-lex.europa.eu/eli/reg/2024/1689/oj
    Regulation (EU) 2024/1689: Article 6 and Annexes I and III (classification), Articles 8-27 (obligations), Article 49 (registration).
  2. https://artificialintelligenceact.eu/chapter/3/
    Chapter III of the AI Act in the unofficial rendering by the Future of Life Institute.
  3. https://www.hoganlovells.com/en/publications/eu-legislators-agree-to-delay-for-highrisk-ai-rules
    Analysis of the Digital Omnibus agreement of 7 May 2026 shifting the high-risk dates.

Share on LinkedIn

Read next

A

Which AI systems are high-risk? The Commission's draft Article 6 guidelines

On 19 May 2026 the Commission published draft guidelines on which AI systems are high-risk under Article 6: the two routes (Annex I and Annex III), the Article 6(3) filter and practical examples. Non-binding; the targeted consultation was extended to 23 July 2026, final text expected later in 2026.

A

Provider or deployer in HR AI: who is what?

In HR AI the builder of the ATS or HR tech is usually the provider and the employer the deployer. But an employer can become a provider itself through own branding or substantial modification (Art. 25). The role determines which duties apply.

A

AI matching in temporary agency work and secondment: who is responsible for what?

Matching AI in agency work and secondment is high-risk (recruitment). The tool vendor is usually provider, the agency deployer; the hirer can become co-responsible. The GDPR demands a clear allocation of roles.

Dirk Baaijen

About this knowledge base

Compiled and maintained by YRproject โ€” programme and project direction at the intersection of digital transformation, AI and regulation. Every factual claim is traceable to its primary source. YRproject is led by Dirk Baaijen About & method โ†’

A project or programme? Work with YRproject โ†’

The monthly briefing

AI regulation in five minutes: what changed, what is coming and what it means. No spam, unsubscribe anytime.

Your address is used for this only and stored on our own servers.