Annex III point 5High-risk domain

AI in essential services and benefits

For banks, insurers, public service providers and emergency services where AI can affect access to basic services or financial opportunities.

Annex III point 5 concerns decisions about credit, insurance, public benefits, healthcare and emergency triage. Correct classification also determines whether Article 27 FRIA becomes relevant.

Scope according to the guidelines

The routes are essential public assistance benefits and services, creditworthiness/credit score, life and health insurance risk assessment/pricing, and emergency first response dispatch or triage.

Classification question

Does the AI affect access, price, priority or eligibility for an essential service?

Read Article 6 classification rules Open Annex III legal text View Article 27 FRIA Use the Annex III classifier

Sources and status

This route is based on the Commission draft guidelines for high-risk classification, published on 19 May 2026. The examples are not exhaustive and may change when the guidance is finalised.

Always check Article 6 and Annex III of Regulation (EU) 2024/1689 as well. This page supports classification and evidence work, but it is not a supervisory decision.

Commission draft guidelines Official EU AI Act Article 6 on RAIP Annex III on RAIP 2026 guidance overview on RAIP

High-risk obligations

If an AI system is high-risk under Annex III, classification and evidence should be linked to the relevant obligations for providers and deployers.

Article 9: Risk management system Article 10: Data and data governance Article 11: Technical documentation Article 12: Logging Article 13: Transparency and instructions for use Article 14: Human oversight Article 15: Accuracy, robustness and cybersecurity Article 26: Deployer obligations Article 27: FRIA where Article 27 applies

Use case guidance

Point 5(a)

Public assistance benefits and services

AI by or on behalf of public authorities for eligibility, granting, reducing, revoking or reclaiming essential public benefits and services.

Point 5(b)

Creditworthiness and credit score

AI that evaluates the creditworthiness of natural persons or establishes their credit score, except fraud detection.

Point 5(c)

Life and health insurance risk assessment/pricing

AI for risk assessment and pricing in life and health insurance for natural persons.

Point 5(d)

Emergency calls and triage

AI that evaluates/classifies emergency calls or determines dispatch/priority for emergency first response or healthcare triage.

What to document

Intended purpose and context of use.

Why Article 6(2) and Annex III do or do not apply.

Whether the Article 6(3) filter may apply, and whether profiling blocks it.

Which provider and deployer obligations are triggered.

Finance/public services AI Act intake

Review credit scoring, insurance, public eligibility or emergency triage against Annex III point 5 and Article 27 FRIA.

Start risk scan Schedule intake Expert page

Frequently asked questions

Short answers for classification, evidence and next steps under Annex III.

When should essential services be assessed under Annex III?

The routes are essential public assistance benefits and services, creditworthiness/credit score, life and health insurance risk assessment/pricing, and emergency first response dispatch or triage. The practical starting question is: Does the AI affect access, price, priority or eligibility for an essential service?

Which use cases are included in Essential private and public services and benefits?

This domain page expands the main routes: Public assistance benefits and services, Creditworthiness and credit score, Life and health insurance risk assessment/pricing and Emergency calls and triage. For each system, check the intended purpose, the output and the impact on access, rights or safety.

What should be documented before obligations are determined?

Document the intended purpose, use context, relevant Annex III route, Article 6(3) assessment, any profiling, provider/deployer roles and the required safeguards.