EU AI Act Article 14: human oversight, line by line

01 · § 1 · THE DESIGN OBLIGATION

The design obligation, verbatim.

High-risk AI systems shall be designed and developed in such a way, including with appropriate human-machine interface tools, that they can be effectively overseen by natural persons during the period in which they are in use. Regulation (EU) 2024/1689 · Article 14(1) · 13 June 2024

The sentence does four things. It binds the system, not the operator's process. It uses shall in the operative regulatory sense. It names the human-machine interface as a load-bearing artefact, which means oversight is a design property, not a documentation artefact bolted on after the fact. It scopes the oversight horizon to the period in which they are in use, which is wider than any audit window and matches the lifetime-of-the-system perimeter that Article 12(1) binds for logging.

Placement matters. Article 14 sits inside Section 2 of Chapter III, the requirements every provider of a high-risk AI system must satisfy before placing the system on the Union market. Article 16(a) reads those requirements back as a provider obligation. Article 99(4)(a) reads Article 16 back as a fineable failure. Three steps from Article 14(1) to the EUR 15 million ceiling.

The verb that does the work is effectively. The five capabilities in Article 14(4)(a) through (e) are how a regulator tests the word. A high-risk system that ships with a screen reading system recommends APPROVE and a single button labelled confirm has not been designed for effective oversight. A high-risk system that ships with the recommendation, the basis on which it was reached, the confidence band, the override path, the interrupt control, and the documented bias-awareness prompt, has been.

"Oversight is a property of the system. The interface is the deliverable. Everything between is engineering."Warrant Compliance · 2026-05-11

02 · § 2 · THE PURPOSE

The purpose · verbatim.

Human oversight shall aim to prevent or minimise the risks to health, safety or fundamental rights that may emerge when a high-risk AI system is used in accordance with its intended purpose or under conditions of reasonably foreseeable misuse, in particular where such risks persist despite the application of other requirements set out in this Section. Regulation (EU) 2024/1689 · Article 14(2) · 13 June 2024

Three constructions in this paragraph carry meaning. Prevent or minimise is the verb pair, not monitor. Oversight is a control function, not an observation function. Health, safety or fundamental rights is the protected interest set, the same triple Article 9 risk management runs against. Reasonably foreseeable misuse extends the perimeter past intended use into the failure modes a competent provider should have anticipated.

The closing clause is the load-bearing one. Article 14 oversight is the residual control. It applies in particular where risks persist despite the application of the other Section 2 requirements. Risk management under Article 9, data and data governance under Article 10, technical documentation under Article 11, record-keeping under Article 12, transparency under Article 13, accuracy under Article 15. When all six controls have done their work and risk remains, Article 14 carries the residue. Oversight is the human standing where the engineering ends.

The drafting choice has a consequence. A provider cannot discharge Article 14 by pointing at a rigorous Article 9 risk-management system. Article 14 attaches independently. The five capabilities in paragraph 4 must be enabled even where the residual risk after Article 9, 10 and 15 is small. The regulator reads paragraph 2 as a why-clause for the design obligation in paragraph 1, not as a permission to omit it.

03 · § 3 · PROVIDER VS DEPLOYER

Provider-side and deployer-side measures.

The oversight measures shall be commensurate with the risks, level of autonomy and context of use of the high-risk AI system, and shall be ensured through either one or both of the following types of measures:

(a) measures identified and built, when technically feasible, into the high-risk AI system by the provider before it is placed on the market or put into service;

(b) measures identified by the provider before placing the high-risk AI system on the market or putting it into service and that are appropriate to be implemented by the deployer. Regulation (EU) 2024/1689 · Article 14(3) · 13 June 2024

Paragraph 3 is the split that most compliance officers misread on first contact. The article does not split oversight between provider and deployer. It splits oversight measures. The provider is responsible for both branches. Branch (a) is the set of measures the provider builds into the system. Branch (b) is the set the provider identifies and documents for the deployer to implement. Either or both. Never neither.

The phrase commensurate with the risks, level of autonomy and context of use is the proportionality test. A high-risk system with low autonomy operating in a tightly bounded use case carries lighter oversight measures than a high-risk system with high autonomy operating across many decision contexts. Regulators read commensurate by reference to the Article 9 risk-management output and the Annex IV technical documentation under Article 11.

The phrase when technically feasible in 14(3)(a) is narrow. It does not relieve the provider of building in measures the provider could have built in. It accommodates the case where a measure can only be exercised at deployer site. A provider of a credit-scoring agent cannot build the deployer's case-management system into the model. The provider can, and must, build the override path, the interrupt control, the explanation surface, and the bias prompt.

Paragraph 3(b) lands at Article 26 in the deployer chapter. Article 26(2) requires deployers to assign human oversight to natural persons who have the necessary competence, training and authority, as well as the necessary support. The provider designs the oversight surface. The deployer staffs it. Both obligations are independent. Both attach to Article 99(4).

04 · § 4 · FIVE CAPABILITIES

The five capabilities · verbatim.

For the purpose of implementing paragraphs 1, 2 and 3, the high-risk AI system shall be provided to the deployer in such a way that natural persons to whom human oversight is assigned are enabled, as appropriate and proportionate: Regulation (EU) 2024/1689 · Article 14(4) chapeau · 13 June 2024

The chapeau is structural. Paragraph 4 lists the five capabilities a natural person must be enabled to exercise. The qualifier as appropriate and proportionate reads back to the proportionality test in paragraph 3. The five sub-clauses, each verbatim:

§ 4(a)

to properly understand the relevant capacities and limitations of the high-risk AI system and be able to duly monitor its operation, including in view of detecting and addressing anomalies, dysfunctions and unexpected performance; IMPLICATION · the human-machine interface must surface model capabilities and known failure modes at decision time, not only in offline documentation.

§ 4(b)

to remain aware of the possible tendency of automatically relying or over-relying on the output produced by a high-risk AI system (automation bias), in particular for high-risk AI systems used to provide information or recommendations for decisions to be taken by natural persons; IMPLICATION · this is the bias-awareness obligation. A click on approve with no recorded basis does not evidence the awareness paragraph (b) requires.

§ 4(c)

to correctly interpret the high-risk AI system's output, taking into account, for example, the interpretation tools and methods available; IMPLICATION · the explanation surface (confidence, feature contribution, counterfactuals where available) is part of the oversight design, not a separate XAI nice-to-have.

§ 4(d)

to decide, in any particular situation, not to use the high-risk AI system or to otherwise disregard, override or reverse the output of the high-risk AI system; IMPLICATION · the override path must be reachable in the same workflow as the recommendation. A separate ticket queue does not satisfy.

§ 4(e)

to intervene in the operation of the high-risk AI system or interrupt the system through a 'stop' button or a similar procedure that allows the system to come to a halt in a safe state. IMPLICATION · the interrupt is a system-level control, not a request-level cancel. Halt in a safe state places a state-machine obligation on the system design.

The chapeau verb is enabled. Paragraph 4 does not require the natural person to exercise each capability on every decision. It requires the system to be designed so the capability can be exercised when the situation calls for it. The evidentiary burden, when a regulator asks, is to show the capability was reachable on the decision in question.

05 · § 5 · FOUR-EYES RULE

The four-eyes biometric rule · verbatim.

For high-risk AI systems referred to in point 1(a) of Annex III, the measures referred to in paragraph 3 of this Article shall be such as to ensure that, in addition, no action or decision is taken by the deployer on the basis of the identification resulting from the system unless that identification has been separately verified and confirmed by at least two natural persons with the necessary competence, training and authority. The requirement for a separate verification by at least two natural persons shall not apply to high-risk AI systems used for the purposes of law enforcement, migration, border control or asylum, where Union or national law considers the application of this requirement to be disproportionate. Regulation (EU) 2024/1689 · Article 14(5) · 13 June 2024

Paragraph 5 attaches to one and only one Annex III category. Point 1(a) of Annex III covers remote biometric identification systems, excluding biometric verification systems whose sole purpose is to confirm a specific natural person is who they claim to be. The article does not extend the four-eyes rule to biometric categorisation under Annex III(1)(b) or to emotion recognition under Annex III(1)(c).

The construction no action or decision is taken sets a bright line. The deployer cannot use the identification to act, even provisionally, before the second natural person has verified and confirmed it. The verification is on the identification, not on the underlying biometric input. The two natural persons each carry the same competence, training and authority qualifier that Article 26(2) imposes generally.

The carve-out is narrow on its face. It applies where Union or national law considers the application of this requirement to be disproportionate in the contexts of law enforcement, migration, border control or asylum. The carve-out is not self-executing. A Member State authority cannot decide locally that the requirement is disproportionate. Union or national law must so provide. Absent that legal basis, the four-eyes rule attaches even in those four contexts.

06 · CROSS-REFERENCE WEB

What Article 14 reads with.

Article 14 does not stand alone. It sits inside a set of Section 2 obligations that together form the high-risk requirements. Reading 14 without reading the cross-references reads it wrong.

Art. 9

Risk management system. The Article 9(2) iterative process feeds Article 14(2) by identifying the residual risks Article 14 oversight is asked to absorb. READ TOGETHER · Article 14 oversight measures are scoped against Article 9 residual risk, and the Article 9(5) testing programme verifies the oversight controls work as intended.

Art. 12

Record-keeping. Article 12(1) requires automatic logging over the lifetime of the system. The logs are how Article 14(4) capability exercise is evidenced. READ TOGETHER · the override under 14(4)(d), the interrupt under 14(4)(e), and the bias-awareness check under 14(4)(b) all generate Article 12 events that Article 26(6) preserves.

Art. 13

Transparency and provision of information to deployers. Article 13(3)(d) requires the instructions for use to specify the human oversight measures referred to in Article 14, including the technical measures put in place to facilitate the interpretation of the outputs. READ TOGETHER · Article 13(3)(d) is the documentary handover from provider to deployer of the Article 14(3)(b) measures. Without it, paragraph 3(b) is non-operative.

Art. 15

Accuracy, robustness and cybersecurity. Article 14(4)(c) interpretation of outputs is read against the accuracy metrics declared under Article 15(2) and the robustness levels declared under Article 15(4). READ TOGETHER · a natural person cannot correctly interpret an output without the declared accuracy and robustness baselines. Misdeclared accuracy under Article 15 propagates into a 14(4)(c) failure.

Art. 26

Obligations of deployers of high-risk AI systems. Article 26(2) requires deployers to assign human oversight to natural persons who have the necessary competence, training and authority, as well as the necessary support. READ TOGETHER · 14(3)(b) and 26(2) are the same obligation read from the two ends. The provider documents the measure. The deployer staffs the measure. Both are independently fineable.

Annex IV pulls the references together. Annex IV(2)(d) requires the technical documentation to describe the human oversight measures needed in accordance with Article 14, including the technical measures put in place to facilitate the interpretation of the outputs of AI systems by the deployers. The Annex IV file is where a regulator under Article 21 looks first when assessing 14 compliance.

07 · AUTOMATION BIAS

Automation bias under 14(4)(b), in plain English.

Paragraph 4(b) is the clause most production teams underestimate. The text names the failure mode in parenthesis · (automation bias). The behavioural literature is settled. Humans presented with a system recommendation will, in the typical case, defer to the recommendation, including when the recommendation is wrong, including when the available evidence contradicts the recommendation, including when the human nominally has the override path. The deference rate rises as the perceived competence of the system rises. It rises further as decision volume rises. It rises further still under time pressure.

Article 14(4)(b) does not ask the provider to eliminate automation bias. It asks the provider to enable the natural person to remain aware of the tendency. The verb is active. The regulator reads the obligation as a documented-evidence obligation, not a one-time training certificate. The five questions a competent compliance officer asks of a 14(4)(b) implementation are, in practice:

One · is the recommendation accompanied by a confidence band the reviewer must read before approving? Two · is the basis for the recommendation surfaced in the same view, not behind a click? Three · is the override path single-click reachable, with no friction asymmetry against approve? Four · does the workflow record the basis on which the reviewer reached the decision, not only the outcome? Five · is the cohort-level accept rate visible to the reviewer in real time, so the reviewer knows when their decision pattern is converging on the system's recommendation rate?

A workflow that ships system recommends APPROVE and a button labelled confirm answers none of the five. A workflow that ships the recommendation, the confidence, the top-three contributing features, the override and disregard paths each as single-click controls, and writes a structured event for each reviewer decision into Article 12 logs, answers all five.

The tickbox does not satisfy. A click on I have reviewed this does not evidence awareness. The Annex IV technical documentation file under Article 11 must show, for the 14(4)(b) measure, both the design and the runtime evidence the design produces.

08 · BIOMETRIC CARVE-OUT

Four-eyes in practice · scope and exemption.

Article 14(5) attaches when three conditions are met. The system is high-risk. The system falls within Annex III point 1(a), remote biometric identification. The deployer takes an action or decision on the basis of the identification. All three are facts about the deployment, not the model.

What counts as separately verified and confirmed. The two natural persons must each form an independent judgement. A workflow where the second person sees the first person's confirmation before forming their own is, on a strict reading, not separate verification. The standard architecture is double-blind · each reviewer sees the system identification and the underlying inputs (where lawful) without seeing the other reviewer's conclusion. Both must confirm. Disagreement routes to a third person or to a documented escalation procedure.

What counts as necessary competence, training and authority. The qualifier is the same one Article 26(2) imposes on all human oversight assignments. For biometric identification the practical reading is that both reviewers must be trained on the specific system's capacities and limitations under 14(4)(a), trained on automation bias under 14(4)(b), and authorised to disregard, override or reverse the identification under 14(4)(d). A junior staff member with no override authority is not a four-eyes participant.

The carve-out for law enforcement, migration, border control and asylum is conditional. Article 14(5) requires Union or national law to consider the application of the requirement disproportionate. The Member State legislator, not the Member State agency, makes that judgement. Absent legislation, the four-eyes rule attaches even in those four contexts. Where legislation does provide for the exemption, the exemption is read narrowly against the protected interests in Article 14(2).

09 · FIELD MAPPING

How Article 14 sub-clauses map to evidence fields.

The Warrant evidence package shapes Article 14 oversight into the same trace structure that carries Article 12 logging and Article 13 transparency. The mapping below is the production schema.

Article 14 clause	What evidence must show	Warrant evidence field
14(1)	system designed for oversight	metadata.oversight_design_id
14(3)(a)	provider-side measures built in	trace.actions[].oversight_built_in
14(3)(b)	deployer-side oversight measures documented	metadata.deployer_oversight_plan
14(4)(a)	natural persons informed of capacities and limits	trace.actions[].operator_understanding
14(4)(b)	automation-bias awareness recorded	trace.actions[].bias_check
14(4)(c)	outputs interpreted correctly	trace.actions[].output_interpretation
14(4)(d)	override and disregard right exercisable	trace.actions[].override_path
14(4)(e)	intervention and interruption capability proven	trace.actions[].intervention_log
14(5)	two-natural-persons biometric verification	trace.actions[].four_eyes_check

The pattern that holds across all nine rows is a separation between design evidence and runtime evidence. The 14(1) and 14(3) rows live in the metadata block of the trace, attaching once per system version. The 14(4) and 14(5) rows live in the per-action array, attaching to every in-scope decision. A regulator reading the package under Article 21 reads the design rows for the system, then samples the per-action rows for the decisions in question.

Sample Article 14 evidence package · Warrant registerA RECORD MAPPED TO ARTICLE 14 · INDEPENDENTLY VERIFIABLE WITHOUT CONTACTING WARRANT

→ /v/7de85ceaeac42a47

10 · FAQ

Questions a compliance officer asks first.

What does effective oversight actually mean under Article 14(1)?

Article 14(1) binds the provider to design and develop the high-risk AI system, including its human-machine interface, so that natural persons can effectively oversee it during the period in which it is in use. Effective oversight is read against paragraphs 2, 3 and 4. The five capabilities in Article 14(4)(a) through (e) are the operative test. A system that does not enable a natural person to understand its capacities, remain aware of automation bias, interpret its output, override the output, and interrupt operation has not been designed for effective oversight.

Does a tickbox human in the loop satisfy Article 14(4)(b)?

No. Article 14(4)(b) requires the natural person to remain aware of the possible tendency of automatically relying or over-relying on the output produced by the high-risk AI system, in particular for systems used to provide information or recommendations for decisions to be taken by natural persons. A workflow that records a click on an approve button without recording the basis on which the reviewer reached the decision does not evidence awareness of automation bias. Regulators read 14(4)(b) as a documented-evidence obligation. The Annex IV file under Article 11 must show both the design and the runtime evidence the design produces.

Who is the natural person under Article 14, the deployer staff or the provider QA team?

Article 14(3) splits the obligation. Provider-side measures under 14(3)(a) are built into the system before placing on the market. Deployer-side measures under 14(3)(b) are identified by the provider and implemented by the deployer. Article 26(2) reads forward, requiring deployers to assign human oversight to natural persons who have the necessary competence, training and authority, as well as the necessary support. The natural person who exercises the five capabilities in Article 14(4) is, in the typical Annex III case, deployer staff.

What if the deployer does not staff the oversight measures the provider documented?

The deployer carries an independent obligation under Article 26 read with Article 14(3)(b). Article 99(4) routes deployer obligations through the same higher-tier penalty ceiling, EUR 15 million or 3 percent of global turnover. The provider remains exposed under Article 16(a) to the extent the documented oversight measures were not appropriate to be implemented by the deployer. The split is not a discharge. A provider whose 14(3)(b) measures assume staffing levels the typical deployer cannot reach has, on a strict reading, failed the appropriateness test in 14(3)(b).

Does Article 14 apply to all high-risk systems or only Annex III?

Article 14 sits inside Section 2 of Chapter III, which applies to all high-risk AI systems classified under Article 6. That covers both Annex III use cases and Annex I product systems where the AI is a safety component subject to third-party conformity assessment. The four-eyes rule in Article 14(5), by contrast, attaches only to systems referred to in point 1(a) of Annex III, the remote biometric identification systems.

What is the four-eyes principle in Article 14(5) and when does it apply?

Article 14(5) attaches to high-risk AI systems referred to in point 1(a) of Annex III, the remote biometric identification systems. No action or decision is taken by the deployer on the basis of the identification resulting from the system unless that identification has been separately verified and confirmed by at least two natural persons with the necessary competence, training and authority. The requirement does not apply to systems used for law enforcement, migration, border control or asylum where Union or national law considers it disproportionate. The carve-out is conditional on legislation, not on agency discretion.

How does Article 14 interact with the GDPR Article 22 human-intervention right?

GDPR Article 22 grants the data subject a right not to be subject to a decision based solely on automated processing that produces legal or similarly significant effects, with a right to human intervention. Article 14 of the AI Act is a system-design obligation owed to the regulator, not a data-subject right. The two stack. Recital 9 of the AI Act confirms it applies without prejudice to the GDPR. A high-risk Annex III decision touching personal data must satisfy both the Article 14 oversight design and the Article 22 intervention right exercised by the subject.

What evidence does a regulator expect to see for Article 14 compliance?

A national competent authority under Article 70 reading the Annex IV technical documentation expects three artefacts. First, the design record showing how the system was built to enable oversight under 14(1) and 14(3)(a). Second, the deployer-facing instructions for use under Article 13(3)(d) describing the oversight measures the deployer implements under 14(3)(b). Third, runtime evidence under Article 12 logs that the five capabilities under 14(4)(a) through (e) were exercised on each in-scope decision. For Annex III(1)(a) systems, the four-eyes verification record under 14(5).

11 · READ THE SOURCE

Read the source directly.

Authored by Warrant Compliance, the regulatory-analysis function at Warrant. [email protected]. Editorial commentary on regulatory text. Not legal advice. The verbatim quotation of Article 14(1) through (5) reflects the official English-language text of Regulation (EU) 2024/1689 as published in the Official Journal of the European Union on 12 July 2024.