EU AI Act Art.81: Compliant AI Systems Presenting Risk — Invitation Procedure, Commission Escalation, and Developer Response Guide (2026)
EU AI Act Article 81 addresses the most counterintuitive enforcement scenario in the regulation: an AI system that has passed every conformity assessment, completed all required documentation, operates an active post-market monitoring programme under Art.72, and is fully registered in the EU AI Act database — yet still presents an unacceptable risk to health, safety, or fundamental rights in real-world deployment.
This is the invitation procedure: the enforcement mechanism the Commission uses when technically compliant AI produces demonstrated real-world harm that pre-deployment conformity assessment did not capture. Art.81 is structurally distinct from both the non-compliance track (Art.82) and the direct mandatory enforcement track (Art.80(3)). Under Art.81, the Commission does not issue binding corrective orders — it invites the provider to take voluntary measures. But the invitation carries real consequences: failure to respond credibly triggers escalation under Art.80, converting a cooperative procedure into mandatory EU-wide enforcement.
For developers, Art.81 reframes the compliance question. Technical compliance — verified conformity assessment, complete Annex IV documentation, functioning QMS — is necessary but not sufficient. What matters post-deployment is whether the system performs as designed across the full population of real-world users and contexts. Art.81 is the enforcement tool for the gap between designed-for conditions and deployed reality.
Art.81 became applicable on 2 August 2026 as part of the Chapter VIII market surveillance enforcement framework.
Art.81 in the Chapter VIII Enforcement Architecture
Art.81 sits in the enforcement sequence between Art.79 national risk procedures and Art.82 formal non-compliance. Its position matters because it occupies a distinct enforcement track — one that applies exclusively to compliant systems and follows a different procedural path:
| Article | Role | Art.81 Interface |
|---|---|---|
| Art.72 | Post-market monitoring | PMM data revealing operational risk is the primary Art.81(1) trigger — provider's own monitoring flags the risk before MSA does |
| Art.73 | Serious incident reporting | Accumulated Art.73 reports for a compliant system trigger Art.81(1) compound finding |
| Art.74 | MSA investigative powers | MSA uses Art.74 access powers during Art.79 investigation; Art.81(1) finding is the output when compliance is confirmed but risk remains |
| Art.79 | National risk procedure | Art.79 is the procedural vehicle — Art.81(1) finding emerges from Art.79 investigation where compliance is confirmed |
| Art.81 | Compliant systems presenting risk | This guide |
| Art.80 | Union safeguard procedure | Art.81(5) and Art.81(6) mirror Art.80(2)/(3) — both lead to Commission-backed EU-wide harmonisation or national measure withdrawal |
| Art.82 | Formal non-compliance | Art.82 applies when system is non-compliant but no confirmed risk; Art.81 and Art.82 are mutually exclusive paths triggered by the compliance determination |
| Art.41 | Common specifications | Art.81 may lead to standardisation body involvement and ultimately new common specifications if voluntary measures reveal a standards gap |
The Art.79 → Art.81 → Art.82 procedural decision tree:
| MSA Finding After Art.79 Investigation | Applicable Article | Commission Procedure |
|---|---|---|
| System presents risk AND is non-compliant | Art.79 → Art.80 direct escalation | Mandatory corrective action; Art.80(2) EU-wide extension if justified |
| System presents risk AND is compliant | Art.79 → Art.81 | Invitation procedure; voluntary measures; escalation under Art.80 if invitation refused |
| System is non-compliant BUT no confirmed risk | Art.82 notification | Formal non-compliance track; no Art.81 involvement |
| System is compliant AND presents no risk | Art.79 closes | No escalation; MSA documents investigation outcome |
Art.81(1): The MSA Compound Finding
Art.81(1) activates when a national market surveillance authority reaches a compound finding during or after an Art.79 investigation:
Finding 1 — Compliance confirmed: The AI system meets the EU AI Act's applicable obligations. The conformity assessment (Art.43) is valid, Annex IV technical documentation is complete, the system is registered in the EU AI Act database under Art.49, the Art.9 risk management system was functioning at deployment, and the Art.17 quality management system is in operation. The MSA has checked the compliance record and found no documentary or procedural deficiency.
Finding 2 — Risk nonetheless present: Despite confirmed compliance, the AI system presents a risk to:
- The health or safety of natural persons (Art.81(1)(a))
- Compliance with obligations under Union or national law intended to protect fundamental rights (Art.81(1)(b))
This compound structure is operationally significant. It means the MSA has exhausted the standard non-compliance investigation route and concluded that the problem is not documentation failure or process deficiency — it is emergent operational risk that manifests under deployment conditions the conformity assessment did not replicate.
What Generates the Art.81(1) Compound Finding
The MSA compound finding has four primary origin paths:
Path 1 — Serious incident accumulation (Art.73): High-risk AI system providers must report serious incidents — AI malfunctions causing death, serious injury, significant property damage, or fundamental rights violations — to the MSA within 15 working days (Art.73(1)). When a system with valid conformity assessment accumulates Art.73 reports at a rate inconsistent with its risk management system predictions, the MSA has grounds for Art.81(1) investigation. This is the most common trigger.
Path 2 — Provider-generated PMM data (Art.72): The provider's mandatory post-market monitoring plan (Art.72(1)) must collect data on system performance under real-world conditions. If PMM data reveals risk patterns — elevated false positive rates in consequential decisions, demographic performance disparities causing harm, unexpected behaviour under distribution shift — the provider must report to the MSA. The provider's own PMM data becomes the Art.81(1) trigger. This is the Art.81 scenario every developer should build for: your monitoring detects the risk before the MSA does.
Path 3 — Independent MSA monitoring: MSAs conduct independent market surveillance under Art.74. They may commission third-party technical testing, review operator complaints, analyse court judgments involving AI decisions, or conduct sector-specific monitoring in Annex III categories. MSA-originated findings typically involve risk patterns not visible from individual incident reports.
Path 4 — Cross-border AI Office intelligence: The AI Office coordinates cross-border risk data under Art.64-70. A system operating across multiple Member States may produce Art.81-level risk patterns only visible when incident data from several MSAs is aggregated. The Commission may use this aggregated intelligence to initiate Art.81 consultation directly, bypassing the national Art.79 stage.
Art.81(1) Corrective Measures Available to MSA
When the MSA establishes the Art.81(1) compound finding, it requires the provider to take appropriate measures proportionate to the nature and severity of the risk. The regulation provides three escalating response options:
| MSA Measure | Triggering Condition | Provider Timeline |
|---|---|---|
| Technical corrective action | Risk can be mitigated by technical modification — retraining, parameter adjustment, additional safeguard, updated training data | Provider proposes; MSA validates |
| Use restriction | Risk specific to deployment context, use case, or user population; system safe in other contexts | Effective upon MSA decision |
| Market withdrawal or recall | Risk systemic; no technical mitigation feasible within proportionate timeframe | MSA sets "reasonable period" based on risk severity |
Under Art.81(1), the provider is invited to propose these measures voluntarily before the MSA issues a formal order. This creates a negotiation window: providers can propose phased withdrawal, technical modifications, enhanced monitoring (with committed PMM thresholds), or contextual restrictions that address the MSA's concern without full market withdrawal. Credible voluntary proposals are the most effective Art.81 response strategy.
Art.81(2): Scope of the Corrective Obligation
Art.81(2) extends the corrective obligation beyond the specific AI system instance or version under investigation. The provider must ensure corrective action is taken across all AI systems concerned that it has made available on the Union market, within the timeline established by the MSA.
Scope dimensions:
| Dimension | Art.81(2) Application |
|---|---|
| Same system, multiple versions | If the risk is present in v1.0 and v2.0 shares the same risk-generating component, the Art.81(2) obligation covers both versions |
| Same system, multiple deployers | All deployer instances across the Union must implement corrective measures — the obligation flows through the supply chain via Art.25 importer and Art.26 deployer obligations |
| Same system, multiple MS | Correction is not limited to the investigating MSA's territory — all Union market instances are in scope |
| Similar systems (same model lineage) | If the risk originates in a shared foundation component (base model, shared module), the Art.81(2) scope extends to all systems in the lineage that use the affected component |
For multi-product AI portfolios, Art.81(2) can trigger an obligation cascade. A risk finding in one system may require audit and potential corrective action across every system sharing the affected component. Providers should maintain a component-level risk registry that maps corrective obligations to all affected products.
Art.81(3): Commission and Member State Notification
Art.81(3) requires the Member State that established the Art.81(1) finding to immediately notify the Commission and all other Member States of:
- The corrective measures required
- The technical reasons for the Art.81(1) finding (why compliance does not exclude risk)
- Any information relevant to identifying equivalent compliant-but-risky systems in other MS
The Art.81(3) notification initiates the Commission consultation process under Art.81(4). From the provider's perspective, this notification means that 26 other Member States have received detailed information about the risk finding — before any Commission decision. Any of those 26 MSAs may begin their own Art.79 investigations of the same system in parallel with the Art.81 Commission process.
Provider response to Art.81(3) notification:
- Monitor for parallel Art.79 investigations in other MS (RAPEX/ICSMS feed)
- Ensure the corrective measures proposed to the investigating MSA are implementable Union-wide (avoid proposing MS-specific solutions that cannot scale)
- Prepare Commission-level technical documentation before Art.81(4) consultation begins
Art.81(4): Commission Consultation and Invitation Procedure
Art.81(4) is the operational core of Art.81. The Commission, having received the Art.81(3) notification, must:
-
Consult Member States and operators: The Commission conducts a structured consultation, inviting other MSAs to share data on the same or similar systems, and providing operators (deployers using the AI system) the opportunity to submit evidence about deployment conditions, risk mitigation measures they have already taken, and contextual information about how the system is used.
-
Evaluate whether the MSA measure is justified: The Commission assesses whether the Art.81(1) compound finding — compliance confirmed, risk nonetheless present — is substantiated by the available evidence and proportionate to the risk identified.
-
Issue an invitation: If the Commission considers the measure justified, it issues an invitation to the provider to take voluntary measures proportionate to the risk and proportionate to the necessity of avoiding the risk being realised.
Why "invitation" rather than "order":
The invitation structure reflects the compliance architecture. Under Art.80 (for non-compliant systems), the Commission can issue binding mandatory decisions. Under Art.81 (for compliant systems), the Commission recognises that the provider has met all legal obligations — the risk is a product of deployment reality, not regulatory non-compliance. The invitation mechanism preserves the provider's ability to propose tailored technical solutions before mandatory withdrawal is imposed.
What the invitation contains:
| Invitation Element | Description |
|---|---|
| Risk characterisation | Commission's assessment of the nature, severity, and scope of the identified risk |
| Proposed measures | Commission's view of appropriate corrective measures (technical modification, restriction, withdrawal) |
| Response window | Timeline for provider response (typically 30 days from invitation) |
| Evidence requirements | Technical documentation the provider must provide to demonstrate that proposed voluntary measures are sufficient |
| Escalation trigger | Explicit statement that inadequate response or refusal triggers Art.80 escalation |
Provider response strategy for Art.81(4) invitation:
Unlike Art.80(3) (where the system is non-compliant and the strategic posture is remediation-first), Art.81(4) requires a cooperative, evidence-based response. The provider's compliance record is not in dispute. What is at issue is whether the provider can:
- Identify the specific deployment conditions generating the risk
- Propose measures that address those conditions proportionately
- Demonstrate, through technical evidence, that the proposed measures will reduce the risk to acceptable levels
- Commit to enhanced PMM thresholds with MSA-reportable triggers
A credible voluntary response that directly addresses the Commission's risk characterisation is the most effective path to avoiding Art.81(5) EU-wide escalation.
Art.81(5): Justified Measure — Harmonised EU-Wide Enforcement
If the Commission, after consultation under Art.81(4), finds the MSA measure justified — meaning the Art.81(1) compound finding is substantiated and the provider has not taken sufficient voluntary measures — Art.81(5) requires all Member States to take equivalent measures.
What Art.81(5) means in practice:
| Impact Dimension | Art.81(5) Consequence |
|---|---|
| Geographic scope | All 27 Member States must require the same corrective measures |
| Enforcement timeline | Member States must implement Art.81(5) measures without undue delay |
| Provider exposure | De facto Union-wide market restriction or withdrawal for the affected system |
| Supply chain effect | All deployers in the Union market must receive and implement corrective measure instructions |
| Precedent value | Art.81(5) Commission decision is legally binding and functions as precedent for similar AI systems |
Art.81(5) vs Art.80(2) — The parallel with non-compliant systems:
Art.81(5) (compliant systems) produces the same geographic outcome as Art.80(2) (non-compliant systems): EU-wide harmonised enforcement. The procedural path is different — Art.81 requires an invitation stage, Art.80 allows direct mandatory action — but the market impact is identical. For developers, this means the Art.81 route is not inherently less severe than the non-compliance track; it is simply slower, allowing more time for voluntary corrective action before mandatory EU-wide enforcement applies.
Standardisation bodies involvement under Art.81(5):
When the Commission issues an Art.81(5) justified decision, it may simultaneously request standardisation bodies — in particular CEN and CENELEC — to review existing harmonised standards that the AI system relied on for its conformity assessment. If the Art.81(1) finding reveals a structural gap in how the harmonised standard addresses the risk category, the Commission's Art.81(5) decision can initiate a standards revision that affects all AI systems in the same product category.
This is the Art.81 cascade effect: a single compliant-but-risky AI system triggers a standards review that reshapes conformity requirements for an entire class of AI systems across the Union. For developers working within product categories with active standardisation bodies (ISO/IEC JTC1 SC42, CEN-CENELEC, ETSI), Art.81(5) decisions warrant immediate impact assessment.
Art.81(6): Unjustified Measure — Member State Withdrawal
If the Commission, after Art.81(4) consultation, finds the MSA measure unjustified — meaning the Art.81(1) compound finding is not substantiated or the corrective measures imposed are disproportionate — Art.81(6) requires the Member State to withdraw the measure.
Art.81(6) for providers:
An Art.81(6) unjustified finding is the best procedural outcome in an Art.81 proceeding. It means:
- The Commission has reviewed the risk evidence and found it insufficient to support the MSA's compound finding
- The national corrective measure must be withdrawn — the system regains unrestricted market access in the investigating MS
- The Art.81(3) notifications to other MS lose their evidentiary basis — parallel Art.79 investigations should close
Using Art.81(6) decisions in other MS:
Unlike CJEU judgments, Commission Art.81(6) decisions are not automatically binding on other Member States' MSAs. However, they carry substantial weight as evidence in parallel Art.79 proceedings. A provider that obtains an Art.81(6) unjustified decision should immediately communicate it to:
- All MSAs that opened parallel Art.79 investigations following the Art.81(3) notification
- Operators who restricted system deployment pending Commission review
- Notified bodies involved in the original conformity assessment
Art.81 × Art.80(3): The Compliance Fork
The most operationally important distinction in Chapter VIII enforcement is the fork between systems that present risk while being non-compliant versus systems that present risk while being compliant:
| Dimension | Art.80(3) — Non-Compliant + Risk | Art.81 — Compliant + Risk |
|---|---|---|
| Compliance status at investigation start | Non-compliant: documentation gaps, QMS failures, Art.9 deficiencies | Fully compliant: conformity assessment valid, Annex IV complete |
| Commission procedure | Direct mandatory corrective action — no invitation stage | Invitation procedure — voluntary measures precede mandatory action |
| Prior Art.79 required | No — Commission may act independently on non-compliance evidence | Yes — Art.81(1) finding emerges from Art.79 investigation outcome |
| Mandatory withdrawal trigger | Commission can order immediately upon justified finding | Only if provider refuses invitation or voluntary measures are insufficient |
| Provider strategic posture | Remediation-first: demonstrate compliance urgently | Cooperative: propose credible voluntary measures addressing specific risk |
| Art.99 fine exposure | Yes — non-compliance + risk = Tier 2 exposure (Art.99(3)) | Limited — Art.99 applies only if corrective measures under Art.81 are not taken |
| Standardisation bodies involvement | Not standard — compliance failure, not standards gap | Yes — Commission may request standards review under Art.81(5) |
| EU-wide result if justified | Art.80(2): all MS must withdraw/restrict | Art.81(5): all MS must take equivalent measures |
| Provider's key document for defence | Compliance evidence: corrective action plan | Risk evidence: PMM data, incident analysis, proposed risk reduction measures |
For providers receiving an enforcement notice, the first question is always: which track am I on? The answer determines everything about the response strategy.
PMM as the Art.81 Early Warning System
Art.81's most significant implication for developers is that it makes the post-market monitoring plan (Art.72) the primary risk management instrument — not just a compliance obligation.
Under Art.81, the risk that triggers enforcement is by definition not captured in the conformity assessment. It only appears in deployment data. The provider's Art.72 PMM plan is the system that should detect this risk before the MSA does. A PMM plan that generates an Art.73 serious incident report before an MSA investigation is a PMM plan that works as intended. A PMM plan that misses the risk the MSA later identifies is a PMM plan that will not survive scrutiny under Art.81(4) consultation.
PMM design for Art.81 risk detection:
| PMM Design Element | Art.81 Relevance |
|---|---|
| Performance metric baselines | Establish expected performance ranges in conformity assessment; PMM detects deviation triggering Art.81 risk |
| Distribution shift monitoring | Deployed population may differ from conformity assessment test population — PMM flags statistical divergence |
| Demographic performance monitoring | Performance disparities across protected groups (Art.10) that manifest post-deployment are the leading Art.81 risk for Annex III category AI |
| Near-miss logging | AI system outputs that did not cause harm but approached Art.73 thresholds — leading indicator for Art.81(1) compound finding |
| Deployer feedback loop | Operators observing unexpected system behaviour in specific contexts — Art.26(5) requires deployers to inform providers of serious incidents |
| Escalation triggers | PMM plan must include defined escalation thresholds that trigger Art.72 → Art.73 notification chain automatically |
CLOUD Act Intersection at Art.81 Commission Level
Art.81(4) consultation requires providers to submit technical evidence to the Commission — the same cross-jurisdictional data-sharing challenge that applies throughout Chapter VIII enforcement, but now at EU institution level.
Four documentation categories at Art.81 Commission level:
| Documentation Category | Art.81 Context | CLOUD Act Risk |
|---|---|---|
| PMM data and risk analytics | Core evidence for Art.81(4) — demonstrates or refutes Art.81(1) compound finding | If PMM data stored on US-cloud infrastructure, US government can compel disclosure under CLOUD Act |
| Art.73 serious incident reports | Historical record of pre-Art.81 incidents — Commission reviews to assess risk pattern | Incident reports containing PII or user behaviour data face GDPR + CLOUD Act dual compellability |
| Conformity assessment documentation (Annex IV) | Commission reviews to confirm compliance determination (precondition for Art.81 vs Art.82 fork) | Annex IV technical docs submitted to Commission may be compelled from US cloud by US government |
| Voluntary corrective action technical proposals | Provider's Art.81(4) response — core submission to Commission | Commission submission materials on US infrastructure subject to US government compellability concurrent with EU review |
EU-sovereign infrastructure as Art.81 risk mitigation:
For developers operating in Annex III high-risk categories, hosting PMM infrastructure, incident reporting systems, and Annex IV documentation on EU-incorporated, EU-operated infrastructure eliminates the dual compellability exposure. The practical benefit is most acute during Art.81(4) consultation: materials submitted to the Commission cannot be simultaneously compelled by a non-EU government if they reside on infrastructure not subject to that government's jurisdiction.
Python Implementation: CompliantRiskEvaluationRequest
from __future__ import annotations
from dataclasses import dataclass, field
from datetime import date, timedelta
from enum import Enum
from typing import Optional
class Art81Phase(str, Enum):
PRE_INVESTIGATION = "pre_investigation"
ART79_ACTIVE = "art79_investigation_active"
COMPOUND_FINDING = "art81_1_compound_finding"
ART81_3_NOTIFICATION = "commission_member_state_notification"
ART81_4_CONSULTATION = "commission_consultation_active"
INVITATION_ISSUED = "commission_invitation_issued"
VOLUNTARY_RESPONSE_SUBMITTED = "voluntary_response_submitted"
ART81_5_JUSTIFIED = "art81_5_justified_eu_wide"
ART81_6_UNJUSTIFIED = "art81_6_unjustified_ms_withdrawal"
CLOSED = "closed"
class Art81Outcome(str, Enum):
PENDING = "pending"
VOLUNTARY_MEASURES_ACCEPTED = "voluntary_measures_accepted"
JUSTIFIED_EU_WIDE = "art81_5_justified_eu_wide_harmonised"
UNJUSTIFIED_MEASURE_WITHDRAWN = "art81_6_unjustified_national_measure_withdrawn"
ESCALATED_TO_ART80 = "escalated_to_art80_invitation_refused"
class RiskCategory(str, Enum):
HEALTH_SAFETY = "health_or_safety_natural_persons"
FUNDAMENTAL_RIGHTS = "fundamental_rights_union_national_law"
BOTH = "health_safety_and_fundamental_rights"
@dataclass
class Art81PMMRiskSignal:
signal_type: str # "serious_incident_accumulation" | "pmm_distribution_shift" | "demographic_disparity" | "msa_monitoring"
detection_date: date
detected_by: str # "provider_pmm" | "msa_investigation" | "ai_office_cross_border" | "operator_report"
description: str
art73_reports_linked: int = 0
pmm_deviation_pct: Optional[float] = None
@dataclass
class Art81VoluntaryMeasure:
measure_type: str # "technical_modification" | "use_restriction" | "enhanced_monitoring" | "phased_withdrawal"
description: str
implementation_timeline_days: int
addresses_risk_category: RiskCategory
pmm_commitment: Optional[str] = None # enhanced PMM threshold commitment
@dataclass
class CompliantRiskEvaluationRequest:
system_id: str
investigating_ms: str
art79_investigation_start: Optional[date] = None
art81_1_finding_date: Optional[date] = None
risk_category: RiskCategory = RiskCategory.HEALTH_SAFETY
pmm_signals: list[Art81PMMRiskSignal] = field(default_factory=list)
voluntary_measures: list[Art81VoluntaryMeasure] = field(default_factory=list)
phase: Art81Phase = Art81Phase.PRE_INVESTIGATION
outcome: Art81Outcome = Art81Outcome.PENDING
commission_invitation_date: Optional[date] = None
invitation_response_deadline: Optional[date] = None
standardisation_review_requested: bool = False
other_ms_parallel_investigations: list[str] = field(default_factory=list)
cloud_act_risk_assessed: bool = False
INVITATION_RESPONSE_WINDOW_DAYS: int = 30
def add_pmm_signal(self, signal: Art81PMMRiskSignal) -> None:
self.pmm_signals.append(signal)
if self.phase == Art81Phase.PRE_INVESTIGATION:
self.phase = Art81Phase.ART79_ACTIVE
def record_art81_1_finding(self, finding_date: date) -> None:
self.art81_1_finding_date = finding_date
self.phase = Art81Phase.COMPOUND_FINDING
def trigger_commission_notification(self, notification_date: date) -> None:
self.phase = Art81Phase.ART81_3_NOTIFICATION
def enter_commission_consultation(self, consultation_start: date) -> None:
self.phase = Art81Phase.ART81_4_CONSULTATION
def receive_invitation(self, invitation_date: date) -> None:
self.commission_invitation_date = invitation_date
self.invitation_response_deadline = invitation_date + timedelta(days=self.INVITATION_RESPONSE_WINDOW_DAYS)
self.phase = Art81Phase.INVITATION_ISSUED
def submit_voluntary_response(self, measures: list[Art81VoluntaryMeasure]) -> None:
self.voluntary_measures.extend(measures)
self.phase = Art81Phase.VOLUNTARY_RESPONSE_SUBMITTED
def record_outcome(self, outcome: Art81Outcome) -> None:
self.outcome = outcome
if outcome == Art81Outcome.JUSTIFIED_EU_WIDE:
self.phase = Art81Phase.ART81_5_JUSTIFIED
elif outcome == Art81Outcome.UNJUSTIFIED_MEASURE_WITHDRAWN:
self.phase = Art81Phase.ART81_6_UNJUSTIFIED
elif outcome in (Art81Outcome.VOLUNTARY_MEASURES_ACCEPTED, Art81Outcome.ESCALATED_TO_ART80):
self.phase = Art81Phase.CLOSED
@property
def days_until_invitation_deadline(self) -> Optional[int]:
if self.invitation_response_deadline is None:
return None
return (self.invitation_response_deadline - date.today()).days
@property
def invitation_overdue(self) -> bool:
if self.invitation_response_deadline is None:
return False
return date.today() > self.invitation_response_deadline
def provider_action_required(self) -> list[str]:
actions = []
if self.phase == Art81Phase.ART79_ACTIVE:
actions.append("Monitor Art.79 investigation progress; prepare Art.81 compound finding contingency")
actions.append("Escalate PMM monitoring frequency during active Art.79 investigation")
if self.phase == Art81Phase.COMPOUND_FINDING:
actions.append("Prepare voluntary corrective measure proposals before Art.81(3) notification")
actions.append("Notify internal compliance team: Art.81 scope extends to all Union market instances (Art.81(2))")
if self.phase == Art81Phase.ART81_3_NOTIFICATION:
actions.append("Monitor RAPEX/ICSMS for parallel Art.79 openings in other Member States")
actions.append("Prepare Commission-level technical documentation for Art.81(4) consultation")
if self.phase == Art81Phase.INVITATION_ISSUED:
days_left = self.days_until_invitation_deadline
if days_left is not None and days_left <= 10:
actions.append(f"URGENT: Commission invitation response due in {days_left} days — draft voluntary measures now")
actions.append("Engage EU-qualified legal counsel for Art.81(4) submission preparation")
actions.append("Prepare technical evidence: PMM data demonstrating risk detection + proposed mitigation measures")
if self.phase == Art81Phase.ART81_5_JUSTIFIED:
actions.append("Initiate Union-wide corrective measure implementation across all Art.81(2) scope systems")
actions.append("Notify all Union market deployers of corrective measures under Art.25/Art.26 supply chain obligations")
if self.standardisation_review_requested:
actions.append("Monitor CEN/CENELEC standards review triggered by Art.81(5) decision — assess impact on conformity assessment basis")
if self.phase == Art81Phase.ART81_6_UNJUSTIFIED:
actions.append("Communicate Art.81(6) unjustified decision to all MSAs with parallel Art.79 investigations")
actions.append("Restore unrestricted market access in investigating Member State")
if not self.cloud_act_risk_assessed:
actions.append("Complete CLOUD Act risk assessment for Commission consultation documentation infrastructure")
return actions
def evaluation_summary(self) -> dict:
return {
"system_id": self.system_id,
"investigating_ms": self.investigating_ms,
"risk_category": self.risk_category.value,
"pmm_signals": len(self.pmm_signals),
"provider_detected_signals": sum(1 for s in self.pmm_signals if s.detected_by == "provider_pmm"),
"art73_reports_total": sum(s.art73_reports_linked for s in self.pmm_signals),
"phase": self.phase.value,
"outcome": self.outcome.value,
"voluntary_measures_proposed": len(self.voluntary_measures),
"invitation_response_days_remaining": self.days_until_invitation_deadline,
"invitation_overdue": self.invitation_overdue,
"parallel_ms_investigations": len(self.other_ms_parallel_investigations),
"standardisation_review": self.standardisation_review_requested,
"cloud_act_assessed": self.cloud_act_risk_assessed,
"provider_actions": self.provider_action_required(),
}
Usage example:
# PMM detects risk pattern 2026-09-15 — before MSA investigation
evaluation = CompliantRiskEvaluationRequest(
system_id="EUID-2026-HR-AI-00199",
investigating_ms="Netherlands"
)
# Provider PMM detected risk before MSA — good practice
evaluation.add_pmm_signal(Art81PMMRiskSignal(
signal_type="demographic_disparity",
detection_date=date(2026, 9, 15),
detected_by="provider_pmm",
description="Annex III para.4 employment AI: false negative rate 3.2x higher for non-native language CVs vs native language CVs under distribution shift after Q2 2026 labour market data update",
art73_reports_linked=2,
pmm_deviation_pct=220.0
))
# Art.79 investigation opened; Art.81(1) compound finding confirmed
evaluation.record_art81_1_finding(date(2026, 10, 20))
evaluation.trigger_commission_notification(date(2026, 10, 22))
evaluation.enter_commission_consultation(date(2026, 11, 05))
# Commission issues invitation 2026-11-12
evaluation.receive_invitation(date(2026, 11, 12))
print(f"Response deadline: {evaluation.invitation_response_deadline}")
print(f"Days remaining: {evaluation.days_until_invitation_deadline}")
# Provider submits voluntary measures
evaluation.submit_voluntary_response([
Art81VoluntaryMeasure(
measure_type="technical_modification",
description="Retrain with language-balanced dataset; add linguistic bias test to Art.72 PMM plan",
implementation_timeline_days=45,
addresses_risk_category=RiskCategory.FUNDAMENTAL_RIGHTS,
pmm_commitment="Quarterly demographic performance report to NCA with alert threshold at 1.5x disparity ratio"
)
])
summary = evaluation.evaluation_summary()
print(f"Provider PMM detected: {summary['provider_detected_signals']} of {summary['pmm_signals']} signals")
for action in summary["provider_actions"]:
print(f"ACTION: {action}")
Chapter VIII Series Navigation
| Article | Topic | Relation to Art.81 |
|---|---|---|
| Art.72 | Post-market monitoring | PMM plan is the primary Art.81 early warning — failure to detect leads to MSA-triggered Art.81 |
| Art.73 | Serious incident reporting | Art.73 accumulation is the most common Art.81(1) compound finding trigger |
| Art.74 | MSA investigative powers | MSA uses Art.74 powers during Art.79 investigation that generates Art.81(1) finding |
| Art.79 | National risk procedure | Art.79 is the procedural vehicle for Art.81(1) — Art.81 finding is Art.79 output where compliance confirmed |
| Art.80 | Union safeguard procedure | Art.81(4) mirrors Art.80 consultation; Art.81(5)/(6) mirror Art.80(2)/(3) outcomes |
| Art.81 | Compliant systems presenting risk | This guide |
| Art.82 | Formal non-compliance | Art.82 is the mutually exclusive track when MSA finds non-compliance without risk confirmation |
Art.81 Developer Preparedness Checklist
| # | Preparedness Item | Evidence Required |
|---|---|---|
| 1 | PMM plan designed for Art.81 risk detection: thresholds for demographic performance disparities, distribution shift, near-miss accumulation — all configured to trigger Art.73 reporting before MSA investigation | PMM plan document with automated alert thresholds and Art.73 escalation workflow |
| 2 | Art.81(2) scope mapping: registry of all AI systems that share components with each deployed system — corrective obligation cascade map for any Art.81(1) finding | Component-level risk registry linking systems to shared modules/models |
| 3 | Art.81(3) notification monitoring: RAPEX/ICSMS subscription for Annex III category; process to detect when other MS receive Art.81(3) notification about equivalent systems | RAPEX monitoring subscription + category alert configuration |
| 4 | Art.81(4) consultation preparation: designated Commission-facing compliance lead; pre-drafted voluntary measure framework by risk category (technical modification, restriction, withdrawal) | Internal SOP + named Commission consultation lead |
| 5 | Commission invitation response protocol: 30-day response window documented; EU-qualified legal counsel retained for Art.81(4) submissions | Incident response playbook with Art.81 track + legal counsel contact |
| 6 | Voluntary measure design library: pre-prepared measure templates for each PMM risk signal type — ready to customise for Commission invitation | Measure templates: demographic retraining, use restriction, enhanced monitoring, phased withdrawal |
| 7 | Art.81(5) standardisation radar: process for detecting CEN/CENELEC Art.81(5)-triggered standards reviews in product category; assessment of conformity impact | OJEU standards mandate monitoring + conformity assessment impact assessment procedure |
| 8 | Art.81(5) Union-wide implementation plan: documented procedure for simultaneous corrective measure implementation across all deployer instances following Art.81(5) justified decision | Business continuity plan: deployer notification templates + corrective SLA by deployer tier |
| 9 | CLOUD Act risk assessment for Commission documentation: inventory of PMM infrastructure, incident reporting systems, and Annex IV documentation — mapped to infrastructure jurisdiction | Infrastructure inventory + data residency classification + EU-sovereign hosting policy |
| 10 | Art.81(6) unjustified decision propagation: process for communicating unjustified finding to all parallel MS investigations and operators who restricted deployment pending Commission decision | Communication plan + operator notification template for Art.81(6) outcome |