The EU AI Act deadline is moving. The obligation is not.
In May 2026, EU lawmakers reached a provisional political agreement to move the compliance deadline for high-risk AI systems under Annex III — recruitment, credit scoring, biometric identification, and law enforcement — from 2 August 2026 to 2 December 2027. This is a deferral, not a repeal — and it is not yet law.
The short answer
The agreement still requires formal adoption and publication in the Official Journal to take legal effect, expected before August 2026. Until then, 2 August 2026 technically remains the deadline on the books. The risk-based architecture of the EU AI Act is intact, and the evidence documentation obligations under Articles 9–17 and Article 26 are unchanged. Only the timing is moving.
What is moving
| Change | Was | Now (provisional) |
|---|---|---|
| Standalone Annex III high-risk systems | 2 August 2026 | 2 December 2027 |
| AI embedded in regulated products (Annex I) | 2 August 2027 | 2 August 2028 |
| National AI regulatory sandboxes | 2 August 2026 | 2 August 2027 |
| Article 50(2) AI-content watermarking | 2 August 2026 | 2 December 2026 |
What is not moving
The deferral shifts the timing of one set of high-risk obligations. A great deal continues unchanged:
- General Article 50 transparency (deployer disclosure): still 2 August 2026.
- Prohibited practices under Article 5: in force since February 2025.
- New Article 5 prohibitions added by the Omnibus: AI-generated non-consensual intimate imagery and CSAM ("nudifiers").
- GPAI model obligations (Articles 51–55): in force since August 2025.
- The substance of Articles 9–17 and Article 26: unchanged.
- ISO 42001: no EU Act dependency — active now.
- NYC Local Law 144: unchanged — in effect since July 2023.
- NIST AI RMF: unchanged.
What to do now
The deferral removes the panic, not the obligation.
- Audit your AI systems now. The Annex III / Annex I classification has not changed.
- Start documentation while there is time to do it well. Evidence packs assembled under deadline pressure in late 2027 will show it; documentation built over 18 months will not.
- Don't treat the EU AI Act delay as permission to ignore ISO 42001, NIST AI RMF, or NYC Local Law 144 — those apply now, and because the deferral isn't yet law, 2 August 2026 technically still stands.
Non-compliance penalties under EU AI Act Article 99 reach €15 million or 3% of global annual turnover for high-risk breaches.
AuditEvidenceAI turns each AI-assisted decision into a structured, versioned, audit-ready evidence pack — aligned to the EU AI Act, ISO 42001, NIST AI RMF, and NYC Local Law 144. Build the documentation now, while there is time to do it properly. 14-day free trial, no card needed.
Start your free trial →Want to see what a completed evidence pack looks like first? The Meridian Financial Group demo pack covers EU AI Act Article 26 deployer obligations in full.
See a completed evidence pack →References: EU AI Act, Official Journal of the European Union, L-series, 2024. AI Omnibus provisional political agreement, May 2026; formal adoption pending. This article does not constitute legal advice.