Skip to content
Confir.
Free trial
Blog

EU AI Act Article 17: Quality Management System Requirements

Guide23 May 2026· 11 min read· 2,253 words

Article 17 requires providers of high-risk AI systems to document a QMS covering 12 elements. Deadline 2 December 2027. Fines up to €15M or 3% of turnover.

Article 17 of Regulation (EU) 2024/1689 requires every provider of a high-risk AI system to put in place a documented quality management system (QMS). The obligation is not optional and it cannot be delegated to a third party. It applies to the legal entity that places the system on the market or puts it into service under its own name. Under the Digital Omnibus agreed in May 2026, the deadline for stand-alone high-risk AI systems (the Annex III list) is 2 December 2027; for high-risk AI embedded in Annex I regulated products the deadline is 2 August 2028. That is a deferral from the original August 2026 date — breathing room, not a reprieve, because assembling the QMS record alone takes months.

What Article 17 Requires

Article 17(1) sets out the framework: the QMS must be documented, it must be proportionate to the size of the provider and the nature of the AI system, and it must be designed to ensure compliance with the Act throughout the system's lifecycle. The proportionality clause is real and legally meaningful — a 15-person startup developing a recruitment-ranking tool does not need the same documentation mass as a 3,000-person industrial group. Both need substance; neither needs padding.

Article 17(2) lists what the QMS must cover at minimum. The Act names these elements explicitly:

  • A regulatory compliance strategy, including the approach to conformity assessment (Article 43) and post-market change management
  • Techniques and procedures for designing and developing the AI system
  • Design verification and validation procedures and techniques
  • Testing procedures and the technical standards applied
  • Data management procedures that meet Article 10 requirements for training, validation, and test datasets
  • The risk management system required by Article 9
  • Post-market monitoring procedures under Article 72
  • Procedures for reporting serious incidents under Article 73
  • Procedures for communicating with competent authorities and, where relevant, notified bodies
  • Record-keeping practices covering all of the above
  • Resource management, including how compliance competence is maintained within the organisation
  • An accountability framework — who is responsible for each element of the QMS

That last item is often underweighted. Regulators inspecting a QMS will ask not only whether procedures exist but whether named individuals own them and whether decisions are traceable.

The Article 9 Connection

The risk management system required by Article 9 is not a separate document that sits alongside the QMS. Article 17 makes the Article 9 system an integral component of the QMS. Practically, this means the risk register, the residual risk assessments, and the review cycle mandated by Article 9 must appear in or be explicitly cross-referenced within the QMS documentation.

Article 9 requires providers to identify and analyse foreseeable risks associated with the intended purpose of the high-risk AI system across its entire lifecycle — including reasonably foreseeable misuse. Risks that cannot be eliminated must be mitigated to an acceptable level, and residual risks must be evaluated and disclosed. The QMS formalises all of that: it is where the risk-management outputs live and where the process that generates them is documented.

For a 30-person credit-scoring startup, the Article 9 risk register might run to eight identified risks (algorithm drift, input data quality failures, model bias by age cohort, inadequate human review triggers, among others). The Article 17 QMS wraps a documented process around those risks — who reviews them, at what frequency, how mitigation is tested, and what threshold triggers escalation.

Data Governance Under Article 10

Article 10 sets standards for training, validation, and test datasets: they must be relevant, representative, free of errors, and of sufficient quality. The Article 17 QMS must document how those standards are met. This is not a once-at-launch exercise — Article 10(4) requires ongoing attention to data quality as the system evolves.

What the QMS documentation should capture:

  • A dataset inventory covering sources, collection method, labelling protocols, and coverage of demographic groups relevant to the intended use
  • A representativeness assessment: evidence that the training data reflects the population the system will encounter in production
  • Bias and fairness test results, documented before deployment and after each material model update
  • A data retention and versioning policy that would allow a regulator to reconstruct the dataset used to train the deployed version

A medical-device manufacturer embedding diagnostic AI in a product subject to MDR 2017/745 should note that the conformity assessment route differs: that system is high-risk via Article 6(1) and Annex I, not via Annex III, and the Annex I deadline is 2 August 2028. The data-governance obligations under Article 10 are the same; the timeline and conformity-assessment route are not.

Post-Market Monitoring and Incident Reporting

Article 72 requires providers to actively monitor the performance of deployed high-risk AI systems. The QMS must document the monitoring plan: what data is collected, how often it is reviewed, what thresholds trigger corrective action, and how corrective actions are logged.

Article 73 handles serious incidents — events that result in death, serious harm to health, damage to property, or violations of fundamental rights attributable to a high-risk AI system. The QMS must contain a documented incident-reporting procedure: how incidents are identified, who evaluates severity, and how reports reach the relevant market surveillance authority. Article 73 reporting obligations apply to providers; deployers have separate obligations to notify providers when they become aware of an incident.

The overlap between Article 72 monitoring and Article 73 reporting is intentional. A well-designed QMS treats ongoing monitoring as the early-warning system that surfaces potential incidents before they become reportable events.

Proportionality in Practice: What Smaller Providers Actually Need

The proportionality principle in Article 17(1) is the practical lifeline for companies that are not large organisations with a hundred-person compliance team. It permits a scaled implementation without sacrificing regulatory substance. The key is that all twelve elements listed in Article 17(2) must be addressed — proportionality governs how thoroughly they are documented, not whether they appear.

A realistic QMS for a company with 20 to 50 people deploying one or two high-risk AI systems might look like:

  • A single QMS manual of 25–40 pages covering all required elements, rather than a library of separate procedure documents
  • A consolidated risk register covering all Article 9 risks, rather than departmental registers
  • A data-governance section within the QMS manual rather than a standalone data-management system
  • A designated compliance lead (part-time or combined with another role) rather than a full compliance function
  • Post-market monitoring on a quarterly cycle rather than continuous automated surveillance, provided the system's risk profile supports that frequency

A 15-person HR-tech company whose product ranks job applicants falls under Annex III point 4(a) (employment, workers management). Proportionate implementation means the compliance lead — likely the CTO or a senior engineer with a defined compliance brief — maintains the QMS documentation in a version-controlled folder, runs bias tests quarterly, reviews the risk register bi-annually, and has a documented procedure for escalating any incident to the market surveillance authority. That is not a heavy lift. It does, however, require starting now.

ISO/IEC 42001 and ISO 9001: Useful Frameworks, Not Substitutes

ISO/IEC 42001 — the international standard for AI management systems (AIMS) — shares structural DNA with Article 17's QMS: documented policies, risk integration, post-market consideration, resource and accountability frameworks. If your organisation has implemented or is implementing ISO/IEC 42001, that work translates meaningfully into the Article 17 QMS structure.

The critical caveat: ISO/IEC 42001 certification does not equal Article 17 compliance. The standard is broader in some dimensions and narrower in others. It does not map one-to-one onto every Article 17(2) element, and it does not address EU AI Act-specific requirements such as the Article 73 serious-incident reporting channel or the Article 43 conformity assessment linkage. Think of an AIMS as QMS scaffolding that reduces the drafting burden, not a finished building.

ISO 9001 (the general quality management standard) provides a familiar documentation framework. Companies that already operate a ISO 9001-certified QMS can extend that system to cover the AI-specific requirements. The extension is more significant than often assumed — Article 17's requirements are substantively specific to AI systems and their risk profile — but the disciplined documentation culture of a 9001-compliant organisation is a genuine advantage.

Neither standard can be submitted to a competent authority as evidence of Article 17 compliance on its own. What the authority will inspect is whether your QMS, as documented and implemented, actually addresses each element of Article 17(2).

How Confir Helps

Building the Article 17 QMS documentation from scratch — without external consultants — is feasible for most providers, but it requires knowing what to document and in what form. The bottleneck is usually not willingness but structure: which fields does the QMS need, how does the risk register connect to the data-governance section, what does a proportionate post-market monitoring plan look like for a two-person team?

Confir's AIGM module (Governance and Post-Market Monitoring) walks providers through the Article 9 risk management system and the Article 72 monitoring plan, generating a structured documentation scaffold with no GRC vocabulary required. The rule-based, deterministic engine derives your obligations from your intake answers — same inputs always produce the same output, no hallucination, no inference. For QMS purposes the output is a record that explains which rule fired and why, making the compliance rationale auditable.

The Compliance Health Score shows which of the twelve Article 17(2) elements are documented and which are open, so the compliance lead always knows where the gaps are. Self-serve, from €600 per year.

Frequently Asked Questions

Does Article 17 apply to deployers as well as providers?

No. Article 17 is a provider obligation under Article 16. Deployers — organisations that use a high-risk AI system provided by a third party, under their own authority, without modifying it — are governed by Article 26. Article 26 requires deployers to follow the instructions of use, ensure human oversight, monitor for risks, keep logs for at least six months (Article 26), and, in certain cases, notify workers' representatives before deployment (Article 26). Article 17 does not appear in the deployer obligation list.

What is the deadline for Article 17 compliance?

For stand-alone high-risk AI systems in the Annex III categories — biometrics, employment, credit scoring, law enforcement, and the other six areas — the deadline is 2 December 2027, under the Digital Omnibus agreed in May 2026. For high-risk AI systems that are safety components of Annex I regulated products (machinery, medical devices, etc.), the deadline is 2 August 2028. The original 2 August 2026 date has been formally deferred.

What are the penalties for not having a QMS?

Non-compliance with Article 17 falls under Article 99(4): a maximum fine of €15,000,000 or 3% of total worldwide annual turnover, whichever is higher. For companies that qualify as SMEs or start-ups, Article 99(6) caps the fine at the lower of the percentage or the fixed sum — a genuine proportionality protection, but not an exemption from the obligation.

Does ISO/IEC 42001 certification satisfy Article 17?

Not by itself. ISO/IEC 42001 (the AI management system standard) is structurally aligned with Article 17 and reduces drafting effort significantly. But certification does not map one-to-one onto every Article 17(2) element — in particular the Article 73 incident-reporting channel and the Article 43 conformity assessment linkage are not covered by the standard. A certified AIMS is strong evidence of a quality management culture and is valuable during a regulatory inspection, but the authority will still verify that your documentation addresses each Article 17(2) element specifically.

How does the Article 17 QMS relate to the technical documentation under Article 11?

They are distinct but interconnected. Article 11 requires providers to draw up technical documentation in accordance with Annex IV — a specific record covering the AI system's description, design, development methodology, training data, validation results, and intended purpose. The Article 17 QMS contains the procedures that generate and maintain that documentation. Think of the QMS as the management framework and the Annex IV technical file as one of its key outputs.

Can a company use a consultant to build the QMS and then hand it over internally?

Yes, and many smaller providers do exactly that for the initial build. The legal requirement is that the QMS is implemented and maintained, not that it was built in-house. Two practical considerations: first, the QMS must actually reflect how the organisation operates — a document imported wholesale from a consultant template and never touched again will not withstand inspection. Second, Article 17's accountability framework requires named individuals inside the organisation to own each element. External drafting is fine; internal accountability is mandatory.

What records must be retained, and for how long?

Article 18 specifies that the technical documentation and QMS documentation must be kept for ten years after the AI system is placed on the market, or three years for smaller providers where the Act provides a specific exemption. Post-market monitoring logs, risk assessments, test results, and incident reports are part of the QMS record and fall under the same retention obligation. The monitoring logs mandated by Article 19 (automatically generated logs that the provider controls) must be kept for at least six months.

Related guides

Manage your EU AI Act compliance in one place

Confir automates risk classification, technical documentation, and audit trails for any company. No consultants. No 6-month projects. 7-day free trial.

Start free trial →

Related guides

Guide

EU AI Act Compliance Budget Planning: Cost Drivers for High-Risk AI

Budget for EU AI Act compliance: Article 9, Annex IV technical documentation, Article 43 conformity assessment, Article 72 monitoring. Dec 2027.

Guide

Who Owns EU AI Act Compliance in Your Organisation

EU AI Act creates obligations, not a job title. Who owns Art 9, 11, 14, 72, 73 duties — RACI structure, DPO/CISO split, and the small-company reality.

Guide

Building an AI Data-Governance Program Under Article 10

How to implement Article 10 EU AI Act in practice: dataset provenance, bias assessment, the Art 10(5) exception, GDPR overlap, and Annex IV docs.