Responsible AI Platform
Article 15 of 11313%
🇳🇱 Nederlands

Article 15: Accuracy, robustness and cybersecurity

EU Official:
Applies from 2 Aug 2026
Title III: High-Risk AI SystemsEntry into force: 2026-08-02

Official text

||

Source: EUR-Lex, Regulation (EU) 2024/1689 — text reproduced verbatim.

📥 Download AI Act (PDF)

✅ Compliance Checklist

  • Accuracy, robustness and cybersecurity ensured
  • System resilient to errors and inconsistencies
  • Protected against unauthorised access
  • Redundancy solutions available
  • Performance consistent under expected conditions

Want to save your progress? Create a free account

Related Recitals

808182

⚖️ Related Enforcement

No enforcement actions for this article yet. Follow developments via the Enforcement Tracker.

Cross-references

Articles

Art. 9Art. 42Art. 43

Recitals

7475

Frequently asked questions

What does Article 15 AI Act require regarding accuracy?
Article 15 requires high-risk AI systems to achieve an appropriate level of accuracy, robustness and cybersecurity, and perform consistently throughout their lifecycle.
Does Article 15 set cybersecurity requirements for AI?
Yes, Article 15 requires high-risk AI systems to be resilient against attempts at manipulation by unauthorised third parties, including adversarial attacks and data poisoning.
Do SMEs also need to comply with Article 15 of the AI Act?
Article 15 of the AI Act does not provide a general exemption for SMEs. However, the AI Act includes supportive measures and potentially lighter obligations for small and medium-sized enterprises, depending on their role in the AI value chain.
How does Article 15 of the AI Act relate to the GDPR?
Article 15 of the AI Act complements the GDPR. While the GDPR protects personal data, the AI Act focuses on the safety and trustworthiness of AI systems. Organisations must comply with both regulations when their AI system processes personal data.
What are the deadlines for Article 15 of the AI Act?
The AI Act follows a phased implementation. Prohibited AI practices apply from February 2025, obligations for high-risk AI systems from August 2026, and other provisions take effect gradually. The specific deadline for Article 15 depends on the category of the obligation.
Does Article 15 of the AI Act also apply to AI systems I purchase?
Yes, Article 15 of the AI Act may also be relevant when you purchase AI systems. As a deployer, you have your own obligations under the AI Act, regardless of whether you developed the system yourself or purchased it from a provider.
What is the difference between provider and deployer under Article 15 of the AI Act?
Under Article 15 of the AI Act, the provider is the entity that develops or places the AI system on the market, while the deployer is the entity that uses the system under its own authority. Both roles carry different obligations.
What documentation does Article 15 of the AI Act require?
Article 15 of the AI Act requires that relevant documentation is maintained as part of the compliance process. This may include technical documentation, instructions for use, logs or declarations of conformity, depending on the classification of the AI system.

📬 AI Act Weekly

Get the most important AI Act developments in your inbox every week.

Subscribe