Skip to main content
Risk level: high Title III — High-Risk AI Systems Notifying Authorities

Article 28 — Notifying Authorities

Notifying authorities 1. Each Member State shall designate or establish at least one notifying authority responsible for setting up and carrying out the necessary procedures for the assessment, designation and notification of conformity assessment bodies and for their monitoring. Those procedures shall be developed in cooperation between the notifying authorities of all Member States. 2....

Article 28
Notifying authorities
1. Each Member State shall designate or establish at least one notifying authority responsible for setting up and carrying
out the necessary procedures for the assessment, designation and notification of conformity assessment bodies and for their
monitoring. Those procedures shall be developed in cooperation between the notifying authorities of all Member States.
2. Member States may decide that the assessment and monitoring referred to in paragraph 1 is to be carried out by
a national accreditation body within the meaning of, and in accordance with, Regulation (EC) No 765/2008.
3. Notifying authorities shall be established, organised and operated in such a way that no conflict of interest arises with
conformity assessment bodies, and that the objectivity and impartiality of their activities are safeguarded.
4. Notifying authorities shall be organised in such a way that decisions relating to the notification of conformity
assessment bodies are taken by competent persons different from those who carried out the assessment of those bodies.
5. Notifying authorities shall offer or provide neither any activities that conformity assessment bodies perform, nor any
consultancy services on a commercial or competitive basis.
6. Notifying authorities shall safeguard the confidentiality of the information that they obtain, in accordance with
Article 78.
7. Notifying authorities shall have an adequate number of competent personnel at their disposal for the proper
performance of their tasks. Competent personnel shall have the necessary expertise, where applicable, for their function, in
fields such as information technologies, AI and law, including the supervision of fundamental rights.
Previous
Article 27 — Fundamental Rights Impact Assessme...
Next
Article 29 — Application of a Conformity Assess...

Related Articles in This Chapter

Related Blog Articles

HR & Recruitment AI: The Most Common High-Risk Category Under the EU AI Act

How Annex III employment use cases trigger high-risk obligations and what HR teams should impleme...

High-Risk AI Systems: Are You Affected?

Many companies are closer to Annex III obligations than they think. Here is how to assess your ex...

FRIA Guide for High-Risk AI Deployments

What a Fundamental Rights Impact Assessment includes, when it applies, and how SMEs can run FRIA ...

Check Your Compliance

Find out if this article applies to your AI system.

Take Risk Quiz

Compliance Templates

Download ready-made templates for EU AI Act compliance.

View Templates

Take our free risk assessment

Find out where your company stands under the EU AI Act in 2 minutes.

Start the Quiz