§ EU AI Act · Article 55
AI Act Article 55: Obligations, Deadlines & Penalties
At a glance
Article 55 of the AI Act imposes 6 obligations on provider of general-purpose AI models with systemic risk. At least one obligation carries an explicit compliance deadline.
§ Obligations
All obligations under Article 55
Obligation 1
Perform model evaluation in accordance with standardised protocols and tools reflecting the state of the art, including conducting and documenting adversarial testing to identify and mitigate systemic risks.
Regulation (EU) 2024/1689, Article 55, Article 55
- Obligated entity
-
provider of general-purpose AI models with systemic risk
- Action required
-
evaluate
- Deadline
-
—
- Penalty
-
—
Obligation 2
Assess and mitigate possible systemic risks at Union level, including their sources, that may stem from the development, placing on the market, or use of general-purpose AI models with systemic risk.
Regulation (EU) 2024/1689, Article 55, Article 55
- Obligated entity
-
provider of general-purpose AI models with systemic risk
- Action required
-
assess
- Deadline
-
—
- Penalty
-
—
Obligation 3
Keep track of, document, and report, without undue delay, to the AI Office and national competent authorities, relevant information about serious incidents and possible corrective measures.
Regulation (EU) 2024/1689, Article 55, Article 55
- Obligated entity
-
provider of general-purpose AI models with systemic risk
- Action required
-
report
- Deadline
-
without undue delay
- Penalty
-
—
Obligation 4
Ensure an adequate level of cybersecurity protection for the general-purpose AI model with systemic risk and the physical infrastructure of the model.
Regulation (EU) 2024/1689, Article 55, Article 55
- Obligated entity
-
provider of general-purpose AI models with systemic risk
- Action required
-
ensure
- Deadline
-
—
- Penalty
-
—
Obligation 5
Demonstrate alternative adequate means of compliance for assessment by the Commission if they do not adhere to an approved code of practice or comply with a European harmonised standard.
Regulation (EU) 2024/1689, Article 55, Article 55
- Obligated entity
-
provider of general-purpose AI models with systemic risk
- Action required
-
demonstrate
- Deadline
-
—
- Penalty
-
—
- Exemptions
- Providers adhering to an approved code of practice or complying with a European harmonised standard
Obligation 6
Treat any information or documentation obtained pursuant to this Article, including trade secrets, in accordance with the confidentiality obligations set out in Article 78.
Regulation (EU) 2024/1689, Article 55, Article 55
- Obligated entity
-
provider of general-purpose AI models with systemic risk
- Action required
-
treat
- Deadline
-
—
- Penalty
-
—
§ Deadlines
EU AI Act compliance deadlines
-
2025-02-02
Article 4 AI literacy
in_force
-
2025-02-02
Article 5 prohibitions (unacceptable risk)
in_force
-
2025-08-02
GPAI model obligations (Articles 51 to 56)
in_force
-
2026-08-02
Article 50(2) machine-readable marking (watermarking) of AI-generated content
provisionally_amended
-
2026-08-02
Article 50 transparency obligations OTHER than the 50(2) marking grace (for example disclosure that a user is interacting with an AI system)
scheduled
-
2026-08-02
Annex III stand-alone high-risk obligations
provisionally_amended
-
2026-08-02
National AI regulatory sandboxes (establishment deadline)
provisionally_amended
-
2026-12-02
NEW Article 5 prohibition: AI generation of non-consensual intimate imagery (NCII) and CSAM
provisionally_amended
-
2027-08-02
Annex I embedded (regulated-product) high-risk obligations
provisionally_amended
§ Frequently asked
Questions about Article 55
Who must comply with Article 55 of the AI Act?
+
provider of general-purpose AI models with systemic risk.
What does Article 55 of the AI Act require?
+
evaluate assess report
What is the compliance deadline for AI Act Article 55?
+
without undue delay