EU AI Act Article 4: AI Literacy Obligations
Article 4 is one of the first EU AI Act obligations to apply — since 2 February 2025. It requires both providers and deployers to ensure a sufficient level of AI literacy among the staff and others who operate their AI systems. It is an organisational duty, proportionate to context, and it is not satisfied by buying a tool.
EU AI Act Article 4: AI Literacy Obligations
Article 4 is one of the first EU AI Act obligations to apply — since 2 February 2025. It requires both providers and deployers to ensure a sufficient level of AI literacy among the staff and others who operate their AI systems. It is an organisational duty, proportionate to context, and it is not satisfied by buying a tool.
Son Güncellenme: 4 Temmuz 2026
What Article 4 Requires
Providers and deployers must take measures to ensure, to their best extent, a sufficient level of AI literacy among their staff and other persons dealing with the operation and use of AI systems on their behalf.
- Applies since 2 February 2025 — ahead of most other obligations, which phase in through 2026 and 2027
- Binds both providers and deployers — not only the organisations that build AI systems, but every organisation that operates them
- Covers staff and other persons dealing with the operation and use of AI systems on the organisation's behalf, including contractors acting for it
- Is a best-efforts obligation to raise competence — there is no prescribed curriculum or mandatory certificate
What 'AI Literacy' Means
Article 3(56) defines AI literacy as the skills, knowledge and understanding that let providers, deployers and affected persons make an informed use of AI systems and become aware of the opportunities, risks and possible harms involved.
- Understanding how the AI systems the organisation uses actually work in broad terms
- Recognising their limitations, failure modes and the risks of over-reliance or automation bias
- Knowing when and how to apply human oversight and challenge an AI-produced result
- Awareness of the impact an AI system can have on the people it is used on
A Proportionate, Context-Based Duty
Article 4 is explicitly proportionate. The level of literacy required scales with role and context rather than being one fixed standard for everyone:
- Take into account the technical knowledge, experience, education and training of the people involved
- Take into account the context in which the AI systems are used and the persons or groups they are used on
- A data scientist building a model and a caseworker using its output need different depths of literacy
- Higher-risk uses and more vulnerable affected groups justify more thorough training
Documenting Your Training
Article 4 does not prescribe a specific record, but demonstrating compliance in practice means being able to show what you did:
- Keep a record of the AI-literacy measures delivered — sessions, materials, and who attended
- Map training to roles so you can show the depth matched each group's responsibilities
- Refresh training as systems, staff and risks change, and log the updates
- National authorities can enforce Article 4 from 2 August 2026 through the general supervision regime, so evidence of good-faith effort matters
How AIAgentree helps
AI literacy is an organisational duty, not a product you can buy — but transparent decision records make it far easier for staff to understand and explain how your agents behave:
- Readable decision records show the reasoning behind an agent's output, so operators can learn how it works and where it can be wrong — a practical aid to literacy
- Human-oversight and approval workflows give staff a concrete place to review and challenge AI decisions, turning literacy into everyday practice
- Note the boundary: AIAgentree supports understanding and evidence, but the Article 4 duty to train your people remains yours — it is not discharged by adopting a tool
Frequently Asked Questions
When did Article 4 come into force?
Article 4 has applied since 2 February 2025, together with the prohibited-practices provisions. It is one of the earliest EU AI Act obligations to become operative, well ahead of the high-risk requirements that phase in during 2026 and 2027.
Who has to ensure AI literacy?
Both providers and deployers of AI systems. The obligation covers their staff and any other persons dealing with the operation and use of the AI systems on their behalf, such as contractors acting for the organisation.
Is there a specific AI literacy certificate or course required?
No. Article 4 sets a best-efforts, proportionate standard rather than a mandated curriculum or certificate. The required level depends on the staff's existing knowledge, the context of use, and the people the systems are used on. Organisations design measures that fit their own risk profile.
Do we need to document AI literacy training?
Article 4 does not prescribe a specific record, but keeping evidence of the measures delivered — what was covered, who attended, and how it maps to roles — is the practical way to demonstrate a good-faith effort if an authority asks. National authorities can supervise Article 4 from 2 August 2026.
Can a tool make us Article 4 compliant?
No. AI literacy is an organisational duty to raise your people's competence. Tools like AIAgentree can support understanding by making agent decisions transparent and reviewable, but they do not replace the obligation to train staff proportionately to their role and context.
Continue exploring the EU AI Act guide
EU AI Act Compliance Guide
The complete guide to EU AI Act compliance for AI agents — start here.
Article 12 — Record-Keeping & Logging
What every high-risk AI system must log, and how to capture it.
Article 14 — Human Oversight
Designing effective human-in-the-loop controls for AI decisions.
Annex III — High-Risk AI Systems
Which AI use cases the Act classifies as high-risk.
EU AI Act Compliance Checklist
A step-by-step checklist to reach and document compliance.
Compliance Cost Calculator
Estimate your EU AI Act compliance effort and cost.
Deadlines & Timeline
Key enforcement dates, including the August 2, 2026 deadline.
Fines & Penalties
Penalty tiers up to €35M or 7% of global annual turnover.
Transparency Obligations (Art. 13 & 50)
Disclosure duties for AI systems and their outputs.
Risk Management & Conformity Assessment
Build a risk management system and assess conformity.
GPAI Obligations
Rules for providers of general-purpose AI models.
EU AI Act for US Companies
Extraterritorial scope and what US providers must do.
Omnibus Update
The latest changes to the EU AI Act timeline and rules.
Penalty Calculator
Estimate your maximum fine under the Article 99 tiers.
Article 11 + Annex IV
What technical documentation the EU AI Act requires.
Article 26: Deployer Obligations
What deployers of high-risk AI must do, including log retention.
Article 17: Quality Management
The QMS providers of high-risk AI must document.
Article 10: Data Governance
Data quality, bias mitigation, and governance duties.
Deployer vs Provider
Who bears which obligation — and when a deployer becomes a provider.
FRIA (Article 27)
Who must run a Fundamental Rights Impact Assessment, and how.
Who Does It Apply To?
Scope, operators, and the extraterritorial reach of the EU AI Act.
Post-Market Monitoring
Articles 72–73: ongoing monitoring and incident reporting.
ISO 42001 vs EU AI Act
How the voluntary standard and the binding law fit together.
NIST AI RMF vs EU AI Act
A practical crosswalk between the framework and the law.
EU AI Act for Healthcare
High-risk medical AI, MDR/IVDR interplay, and clinician oversight.
EU AI Act for Financial Services
Credit scoring, insurance pricing, and existing financial regulation.
EU AI Act for HR & Employment
Hiring AI as high-risk, plus NYC LL144 and EEOC overlap.