Article 6 of the EU AI Act classifies AI systems used as safety components in the management and operation of critical digital infrastructure, road traffic, water, gas, heating, electricity and other essential services as high-risk. The clause itself is short. The operational consequences are not.
What the classification actually triggers
High-risk classification under Article 6 is not a label; it is the gate to a stack of obligations under Articles 9–15 that operators of critical infrastructure routinely underestimate. Five in particular reshape the day-to-day:
- Risk management system (Art. 9) — continuous, iterative, documented across the system's lifecycle. Not a one-off pre-deployment audit.
- Data governance (Art. 10) — including representativeness for the European deployment context, not the training context. The sin most often committed here is reusing US-trained evaluation data as if it described a German distribution grid.
- Human oversight (Art. 14) — meaningful, with documented override authority that survives a shift change at 3am. "There is a human in the loop" is the wrong sentence; "operator X can override the system within Y seconds and the override is logged for Z years" is the right one.
- Accuracy, robustness, cybersecurity (Art. 15) — measured against the operating environment, not the lab. The lab is rarely under adversarial conditions; the grid always is.
- Post-market monitoring (Art. 72) — with reporting timelines that mirror DORA incident windows. An institution whose AI Act and DORA reporting do not share a clock will spend the first incident reconciling its own dates.
Treat the AI Act as the integration spine
The mistake we see most often is parallel programmes: an AI Act workstream, a NIS2 workstream, a DORA workstream, each with its own owner, vocabulary and Gantt chart. This is operationally expensive and legally fragile.
The institutions that move fastest treat the AI Act as the integration spine for the others. The data governance article carries the NIS2 supply-chain obligations. The post-market monitoring article carries the DORA incident reporting clock. The human oversight article carries the operational resilience expectations of the sectoral regulator. One spine, three regimes, one institutional position.
Where to start
Begin with the inventory the regulators will eventually ask for and the board will ask for sooner: every AI system in operation or procurement, mapped to the article that classifies it and the dependency that operates it. The institutions that have this inventory in writing are setting the procurement template for the rest of the market. The institutions that do not are about to be asked to produce it on a deadline.
First published February 2026 · Frankfurt am Main.