Article 71: EU database for high-risk AI systems listed in Annex III

Article 71 states that the Commission sets up and maintains an EU database with information on high-risk AI systems listed in Annex III. The database is publicly accessible and searchable.

The EU database is publicly accessible. Providers, deployers and the public can consult the registered high-risk AI systems.

Article 71 of the AI Act does not provide a general exemption for SMEs. However, the AI Act includes supportive measures and potentially lighter obligations for small and medium-sized enterprises, depending on their role in the AI value chain.

Article 71 of the AI Act complements the GDPR. While the GDPR protects personal data, the AI Act focuses on the safety and trustworthiness of AI systems. Organisations must comply with both regulations when their AI system processes personal data.

The AI Act follows a phased implementation. Prohibited AI practices apply from February 2025, obligations for high-risk AI systems from August 2026, and other provisions take effect gradually. The specific deadline for Article 71 depends on the category of the obligation.

Yes, Article 71 of the AI Act may also be relevant when you purchase AI systems. As a deployer, you have your own obligations under the AI Act, regardless of whether you developed the system yourself or purchased it from a provider.

Under Article 71 of the AI Act, the provider is the entity that develops or places the AI system on the market, while the deployer is the entity that uses the system under its own authority. Both roles carry different obligations.

Article 71 of the AI Act requires that relevant documentation is maintained as part of the compliance process. This may include technical documentation, instructions for use, logs or declarations of conformity, depending on the classification of the AI system.

The EU database for high-risk AI systems must be operational before the application date of 2 August 2026. The European Commission manages the database, which will be partly publicly accessible so citizens and organisations can see which high-risk AI systems are registered.

For high-risk AI systems in most domains, registration is publicly accessible. Exception: registrations of high-risk AI systems for law enforcement, migration and border control (Annex III, points 1, 6 and 7) are only accessible to the European Commission and national supervisory authorities.