Regulation (EU) 2024/1689
The AI Act Explorer
Browse the full EU AI Act — every Chapter, Article and Annex — with plain-language summaries and the obligations each one imposes. Use the interactive Compliance Checker to find out which provisions apply to your AI system or general-purpose AI model.
- Chapters
13
- Articles
113
- Annexes
13
- Enforcement
Aug 2026
Chapters
The Act is organised into 13 chapters. Click any chapter to expand its articles.
Chapter I
General Provisions
Subject matter, scope, definitions, and the AI literacy obligation. Establishes the foundation of the Act and who it applies to.
4 articles
Chapter II
Prohibited AI Practices
Lists AI practices banned outright in the Union — manipulative or exploitative systems, social scoring, untargeted facial-image scraping, real-time biometric ID in public spaces, and more.
1 article
Chapter III
High-Risk AI Systems
The bulk of the Act. Defines what makes an AI system high-risk, the requirements it must meet (risk management, data governance, transparency, human oversight, accuracy, robustness, cybersecurity), the obligations of providers and deployers across the value chain, and the conformity assessment + CE marking framework.
44 articles · 5 sections
Chapter IV
Transparency Obligations for Providers and Deployers of Certain AI Systems
Transparency rules for AI systems that interact with humans, generate synthetic content, perform emotion recognition or biometric categorisation, or create deep fakes — including labelling and disclosure.
1 article
Chapter V
General-Purpose AI Models
Rules for general-purpose AI (GPAI) model providers — documentation, copyright policy, training-data summaries, and the heightened obligations for GPAI models with systemic risk.
6 articles · 4 sections
Chapter VI
Measures in Support of Innovation
AI regulatory sandboxes, real-world testing, derogations and dedicated supports for SMEs and start-ups.
7 articles
Chapter VII
Governance
Governance architecture: the AI Office, the European Artificial Intelligence Board, advisory forum, scientific panel, and national competent authorities.
7 articles · 2 sections
Chapter VIII
EU Database for High-Risk AI Systems
The EU-wide public database where providers must register Annex III high-risk AI systems before placing them on the market.
1 article
Chapter IX
Post-Market Monitoring, Information Sharing and Market Surveillance
Post-market monitoring plans for providers, serious incident reporting, market surveillance powers, fundamental-rights protections, remedies and complaint procedures.
23 articles · 5 sections
Chapter X
Codes of Conduct and Guidelines
Voluntary codes of conduct for non-high-risk systems and Commission guidelines on the implementation of the Regulation.
2 articles
Chapter XI
Delegation of Power and Committee Procedure
How the Commission is empowered to adopt delegated acts and the comitology procedure.
2 articles
Chapter XII
Penalties
Administrative fines — up to €35M or 7% of global turnover for prohibited practices, €15M or 3% for breaches of obligations, and €7.5M or 1% for incorrect or misleading information.
3 articles
Chapter XIII
Final Provisions
Cross-amendments to other EU instruments, transitional provisions for systems already on the market, evaluation, review, and the staged entry-into-force timeline.
12 articles
Annexes
Annexes provide supplementary lists, technical schedules and procedures referenced from the articles.
- I
List of Union Harmonisation Legislation
List of EU product-safety legislation (machinery, toys, medical devices, civil aviation, vehicles, etc.) whose products, when they incorporate or are themselves AI safety components, become high-risk under Article 6(1).
- II
List of Criminal Offences Referred to in Article 5(1), First Subparagraph, Point (h)(iii)
List of serious crimes (terrorism, trafficking, sexual exploitation, murder, kidnapping, organised crime, etc.) for which narrow exceptions to the prohibition on real-time remote biometric identification in public spaces may apply.
- III
High-Risk AI Systems Referred to in Article 6(2)
The eight high-risk domains: (1) biometrics, (2) critical infrastructure, (3) education and vocational training, (4) employment and worker management, (5) access to essential public/private services, (6) law enforcement, (7) migration, asylum and border control, (8) administration of justice and democratic processes.
- IV
Technical Documentation Referred to in Article 11(1)
Mandatory contents of the technical documentation for high-risk AI systems: general description, design specifications, training/validation/testing data, monitoring and control procedures, risk-management documentation, post-market plan, and EU declaration of conformity.
- V
EU Declaration of Conformity
Information that providers must include in the EU declaration of conformity for each high-risk AI system: identifier, provider details, statement of conformity, references to standards used, the notified body where applicable, and signature.
- VI
Conformity Assessment Procedure Based on Internal Control
The Module-A self-assessment procedure that providers may use for most Annex III high-risk systems where harmonised standards or common specifications have been applied.
- VII
Conformity Based on Assessment of the Quality Management System and an Assessment of the Technical Documentation
Third-party conformity assessment procedure (notified body involvement) — required for biometric systems under point 1 of Annex III and where harmonised standards have not been applied.
- VIII
Information to be Submitted upon the Registration of High-Risk AI Systems in Accordance with Article 49
Data fields that must be entered into the EU public database when registering a high-risk AI system: provider/deployer details, system identifier, intended purpose, status, and instructions for use.
- IX
Information to be Submitted upon the Registration of High-Risk AI Systems Listed in Annex III in Relation to Testing in Real World Conditions in Accordance with Article 60
Information required when registering high-risk AI systems for testing in real-world conditions outside an AI regulatory sandbox.
- X
Union Legislative Acts on Large-Scale IT Systems in the Area of Freedom, Security and Justice
List of EU legislation on large-scale IT systems (SIS, VIS, Eurodac, EES, ETIAS, ECRIS-TCN) that interact with high-risk AI systems used in migration, border, justice and security contexts.
- XI
Technical Documentation Referred to in Article 53(1), Point (a) — Technical Documentation for Providers of General-Purpose AI Models
Required technical documentation for providers of general-purpose AI (GPAI) models: tasks the model can perform, architecture, parameters, training, validation, energy consumption and known limitations.
- XII
Transparency Information Referred to in Article 53(1), Point (b) — Technical Documentation for Providers of General-Purpose AI Models to Downstream Providers that Integrate the Model into Their AI System
Information GPAI providers must make available to downstream providers integrating the model: capabilities, limitations, intended use, technical means of integration, and acceptable-use policies.
- XIII
Criteria for the Designation of General-Purpose AI Models with Systemic Risk Referred to in Article 51
Criteria the Commission considers when designating a GPAI model as posing systemic risk: training compute (the 10²⁵ FLOPs presumption), parameter count, dataset size, modality, capabilities, market reach and number of registered EU end-users.