EU AI Act Scope & Exclusions: Who Does It Apply To?

Art 2(1)(a) — Providers

Providers placing AI systems on the EU market or putting them into service, OR providers of general-purpose AI models in the EU — regardless of whether they are established in the EU or in a third country.

Art 2(1)(b) — Deployers

Deployers with their place of establishment or location in the EU. Unlike providers, this is establishment-based — a US-based company deploying an AI system for EU customers from US servers is a provider but may not be a deployer under this limb.

Art 2(1)(c) — Third-country providers and deployers

Providers AND deployers established in third countries where the AI system's output is used in the EU. This is the extraterritoriality limb: if an AI system processes data and produces outputs consumed in the EU, the provider and deployer are in scope.

Art 2(1)(d) — Importers and distributors

Importers and distributors of AI systems — these are supply chain entities that bring non-EU AI systems into the EU market or make non-EU systems available in the EU.

Art 2(1)(e) — Product manufacturers

Product manufacturers who place an AI system on the market or put it into service under their own name or trademark as part of their product.

Art 2(1)(f) — Authorised representatives

Authorised representatives of non-EU providers — legal entities established in the EU appointed to act on behalf of non-EU providers, giving EU regulators a point of contact.

Art 2(1)(g) — Affected persons in EU

Affected persons located in the EU. This limb establishes that persons who are subject to the output or decision of an AI system located in the EU are within the protective scope of the Regulation.

AI systems placed on the market, put into service, or used exclusively for military, defence or national security purposes are entirely excluded — regardless of whether this is carried out by a public or private entity. There is no condition of proportionality or necessity here; the exclusion is unconditional.

Third-country public authorities or international organisations acting in the framework of international agreements with the EU on law enforcement and judicial cooperation are excluded — provided adequate safeguards for the protection of fundamental rights and freedoms of individuals are provided for.

Providers of intermediary services under Chapter II of the Digital Services Act are not affected — the AI Act does not add to or derogate from their DSA obligations. This is a clarification, not an exclusion from the AI Act entirely.

AI systems specifically developed and put into service solely for scientific research and development are excluded. If the same system is later placed on the market or used for non-R&D purposes, the exclusion no longer applies.

The AI Act does not override GDPR, the e-Privacy Directive, or other Union data protection rules, nor does it affect obligations of professional secrecy (e.g., legal privilege). Both the AI Act and data protection law apply concurrently.

Research, testing or development of AI systems or models prior to being placed on the market or put into service is excluded. CRITICAL: testing in real-world conditions is expressly NOT excluded — it is a separate activity governed by Arts 57–63 (regulatory sandboxes and real-world testing rules).

The AI Act does not affect consumer protection and product safety legislation. Both apply concurrently — an AI system that constitutes a defective product for product liability purposes remains so regardless of AI Act compliance.

Natural persons deploying AI systems in the course of a purely personal, non-professional activity are excluded as deployers. This is a deployer-only exclusion: providers placing those systems on the market are still fully in scope.

Member States may maintain or introduce more favourable worker protection rules than those in this Regulation. This is a floor, not a ceiling — national employment law can be stricter.

AI systems released under free and open-source licences are excluded — UNLESS: (a) placed on the market or put into service as high-risk (Art 6); (b) placed on the market or put into service as falling under Art 5 (prohibited practices); or (c) placed on the market or put into service as falling under Art 50 (transparency obligations, including chatbot disclosure and deep fake marking). Open-source models used in a chatbot or high-risk product lose this exclusion.

Key elements of the definition

• ▸Machine-based: implemented in software or hardware
• ▸Varying autonomy: need not be fully autonomous — even supervised AI qualifies
• ▸May exhibit adaptiveness: not required to actually adapt — the design capacity is sufficient
• ▸Infers outputs from inputs: the key distinguishing element — not explicit rule-following but inference from data
• ▸Outputs that can influence environments: predictions, content, recommendations, or decisions affecting the real or virtual world

What is NOT an AI system under Article 3(1)

Traditional rules-based software, lookup tables, pure automation workflows, simple calculators, and any system that outputs a pre-defined result via explicit logic (rather than inference) do not qualify. The definition targets systems that learn, reason about, or predict — not systems that execute deterministic code.

AI systems that are components of large-scale IT systems listed in Annex X (including SIS II, Eurodac, EES, ETIAS, VIS, ECRIS-TCN) that were placed on the market or put into service before 2 August 2027 must comply by 31 December 2030.

High-risk AI systems placed on the market or put into service before 2 August 2026 are not subject to the Act — unless they undergo a significant change in design after that date. Public authority deployers of such systems must comply by 2 August 2030, regardless of whether the design changed.

General-purpose AI models placed on the market before 2 August 2025 must comply with the GPAI obligations in Chapter V by 2 August 2027.