Roles, risk tiers and the key deadlines
A plain-language guide to the EU AI Act's operator roles, the four risk tiers, and the dates that matter.
Updated 26 June 2026
Operator roles
- Provider — develops an AI system / places it on the market under its name.
- Deployer — uses an AI system under its authority.
- Importer / Distributor — places a third-country or existing system on the EU market.
Risk tiers
- Prohibited (Art. 5) — banned practices.
- High-risk (Annex III / Art. 6) — strict obligations.
- Limited (Art. 50) — transparency duties.
- Minimal — no specific obligations.
Key dates
- 2 Feb 2025 — prohibitions + AI-literacy duties apply.
- 2 Aug 2025 — GPAI obligations, governance, penalties.
- 2 Aug 2026 — Art. 50 transparency obligations apply.
- 2 Dec 2027 — high-risk (Annex III) obligations apply.
Always confirm dates against the registry inside the app — they are kept current.
Need to act on this? Open Veritome →