§ EU AI Act · Article 20
AI Act Article 20: Obligations, Deadlines & Penalties
At a glance
Article 20 of the AI Act imposes 5 obligations on provider. At least one obligation carries an explicit compliance deadline.
§ Obligations
All obligations under Article 20
Obligation 1
Providers of high-risk AI systems must immediately take necessary corrective actions to bring the system into conformity, withdraw it, disable it, or recall it if they consider or have reason to consider it is not in conformity.
Regulation (EU) 2024/1689, Article 20, Article 20
- Obligated entity
-
provider
- Sector scope
- high-risk AI systems
- Action required
-
take corrective actions
- Deadline
-
immediately
- Penalty
-
—
Obligation 2
Providers must inform distributors of the high-risk AI system concerned, and where applicable, the deployers, the authorised representative, and importers about the non-conformity and corrective actions.
Regulation (EU) 2024/1689, Article 20, Article 20
- Obligated entity
-
provider
- Sector scope
- high-risk AI systems
- Action required
-
inform
- Deadline
-
immediately
- Penalty
-
—
Obligation 3
Where the high-risk AI system presents a risk and the provider becomes aware of it, the provider must immediately investigate the causes in collaboration with the reporting deployer, where applicable.
Regulation (EU) 2024/1689, Article 20, Article 20
- Obligated entity
-
provider
- Sector scope
- high-risk AI systems
- Action required
-
investigate
- Deadline
-
immediately
- Penalty
-
—
Obligation 4
The provider must inform the market surveillance authorities competent for the high-risk AI system concerned about the nature of the non-compliance and any relevant corrective action taken.
Regulation (EU) 2024/1689, Article 20, Article 20
- Obligated entity
-
provider
- Sector scope
- high-risk AI systems
- Action required
-
inform
- Deadline
-
immediately
- Penalty
-
—
Obligation 5
The provider must inform the notified body that issued a certificate for the high-risk AI system, where applicable, about the nature of the non-compliance and any relevant corrective action taken.
Regulation (EU) 2024/1689, Article 20, Article 20
- Obligated entity
-
provider
- Sector scope
- high-risk AI systems
- Action required
-
inform
- Deadline
-
immediately
- Penalty
-
—
§ Deadlines
EU AI Act compliance deadlines
-
2025-02-02
Article 4 AI literacy
in_force
-
2025-02-02
Article 5 prohibitions (unacceptable risk)
in_force
-
2025-08-02
GPAI model obligations (Articles 51 to 56)
in_force
-
2026-08-02
Article 50(2) machine-readable marking (watermarking) of AI-generated content
provisionally_amended
-
2026-08-02
Article 50 transparency obligations OTHER than the 50(2) marking grace (for example disclosure that a user is interacting with an AI system)
scheduled
-
2026-08-02
Annex III stand-alone high-risk obligations
provisionally_amended
-
2026-08-02
National AI regulatory sandboxes (establishment deadline)
provisionally_amended
-
2026-12-02
NEW Article 5 prohibition: AI generation of non-consensual intimate imagery (NCII) and CSAM
provisionally_amended
-
2027-08-02
Annex I embedded (regulated-product) high-risk obligations
provisionally_amended
§ Frequently asked
Questions about Article 20
Who must comply with Article 20 of the AI Act?
+
provider.
What does Article 20 of the AI Act require?
+
take corrective actions inform investigate
What is the compliance deadline for AI Act Article 20?
+
immediately