Article 22 — Authorised Representatives of Providers

Article 22
Authorised representatives of providers of high-risk AI systems

1. Prior to making their high-risk AI systems available on the Union market, providers established in third countries
shall, by written mandate, appoint an authorised representative which is established in the Union.

2. The provider shall enable its authorised representative to perform the tasks specified in the mandate received from the
provider.

3. The authorised representative shall perform the tasks specified in the mandate received from the provider. It shall
provide a copy of the mandate to the market surveillance authorities upon request, in one of the official languages of the
institutions of the Union, as indicated by the competent authority. For the purposes of this Regulation, the mandate shall
empower the authorised representative to carry out the following tasks:

(a) verify that the EU declaration of conformity referred to in Article 47 and the technical documentation referred to in
Article 11 have been drawn up and that an appropriate conformity assessment procedure has been carried out by the
provider;

(b) keep at the disposal of the competent authorities and national authorities or bodies referred to in Article 74(10), for
a period of 10 years after the high-risk AI system has been placed on the market or put into service, the contact details
of the provider that appointed the authorised representative, a copy of the EU declaration of conformity referred to in
Article 47, the technical documentation and, if applicable, the certificate issued by the notified body;

(c) provide a competent authority, upon a reasoned request, with all the information and documentation, including that
referred to in point (b) of this subparagraph, necessary to demonstrate the conformity of a high-risk AI system with the
requirements set out in Section 2, including access to the logs, as referred to in Article 12(1), automatically generated by
the high-risk AI system, to the extent such logs are under the control of the provider;

(d) cooperate with competent authorities, upon a reasoned request, in any action the latter take in relation to the high-risk
AI system, in particular to reduce and mitigate the risks posed by the high-risk AI system;

(e) where applicable, comply with the registration obligations referred to in Article 49(1), or, if the registration is carried
out by the provider itself, ensure that the information referred to in point 3 of Section A of Annex VIII is correct.

The mandate shall empower the authorised representative to be addressed, in addition to or instead of the provider, by the
competent authorities, on all issues related to ensuring compliance with this Regulation.

4. The authorised representative shall terminate the mandate if it considers or has reason to consider the provider to be
acting contrary to its obligations pursuant to this Regulation. In such a case, it shall immediately inform the relevant market
surveillance authority, as well as, where applicable, the relevant notified body, about the termination of the mandate and the
reasons therefor.