{"id":106242,"date":"2026-06-06T09:50:30","date_gmt":"2026-06-06T09:50:30","guid":{"rendered":"https:\/\/mybusinessfuture.com\/?p=106242"},"modified":"2026-06-06T09:50:30","modified_gmt":"2026-06-06T09:50:30","slug":"eu-ai-act-smes-high-risk-obligations-provider-deployer","status":"publish","type":"post","link":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/","title":{"rendered":"EU AI Act in SMEs: Provider or Deployer?"},"content":{"rendered":"<p style=\"display:inline-block;background:#F21F05;color:#fff;padding:4px 14px;border-radius:20px;font-size:0.85em;margin-bottom:18px;\">8 min. read<\/p>\n<p style=\"line-height:1.8;margin-bottom:20px;\"><strong>One concern dominates SME discussions about the EU AI Act: here comes the next wave of red tape. In practice, the actual workload hinges first on a question of roles &#8211; does the company develop an AI system itself and bring it to market, or does it deploy an existing system? That answer determines whether manufacturer obligations apply or whether far lighter duties for operators are all that&#8217;s required. Clarifying this early avoids unnecessary effort and focuses work on the rules that actually apply.<\/strong><\/p>\n<div style=\"background:#202528;color:#fff;padding:32px 36px;margin:32px 0;border-radius:8px;\">\n<p style=\"margin:0 0 18px 0;font-size:0.95em;font-weight:800;text-transform:uppercase;letter-spacing:0.2em;color:#F21F05;border-bottom:2px solid rgba(242,31,5,0.25);padding-bottom:12px;\">Key Takeaways<\/p>\n<ul style=\"margin:0;padding-left:22px;color:rgba(255,255,255,0.92);line-height:1.6;\">\n<li style=\"margin-bottom:12px;color:rgba(255,255,255,0.92);\"><strong style=\"color:#F21F05;\">Provider or deployer &#8211; that is the core question.<\/strong> Those who build and market AI carry the heavy obligations. Those who merely deploy a finished system face far fewer requirements. Most SMEs are operators.<\/li>\n<li style=\"margin-bottom:12px;color:rgba(255,255,255,0.92);\"><strong style=\"color:#F21F05;\">High-risk obligations are clearly defined.<\/strong> Risk management, documentation, logging, human oversight. For operators, the focus is on supervision and compliant use &#8211; not the full burden of a manufacturer.<\/li>\n<li style=\"color:rgba(255,255,255,0.92);\"><strong style=\"color:#F21F05;\">SME relief is built in.<\/strong> Small businesses may maintain simplified technical documentation. The deadline for high-risk obligations falls in mid-2026; a postponement is under discussion, but nothing is confirmed.<\/li>\n<\/ul>\n<\/div>\n<p style=\"font-size:0.88em;color:#666;margin:20px 0 32px 0;border-top:1px solid #e5e5e5;border-bottom:1px solid #e5e5e5;padding:10px 0;\"><span style=\"color:#202528;font-weight:700;text-transform:uppercase;font-size:0.72em;letter-spacing:0.14em;margin-right:14px;\">Related:<\/span><a href=\"https:\/\/mybusinessfuture.com\/make-or-buy-ki-mittelstand-selbst-bauen-einkaufen\/\" style=\"color:#333;text-decoration:underline;\">Make-or-Buy in AI<\/a>&nbsp;&nbsp;<span style=\"color:#ccc;\">\/<\/span>&nbsp;&nbsp;<a href=\"https:\/\/mybusinessfuture.com\/ki-mittelstand-einfuehrung-reihenfolge-bitkom-dihk-2026\/\" style=\"color:#333;text-decoration:underline;\">Why AI Fails on Sequence<\/a><\/p>\n<h2 style=\"padding-top:64px;margin-bottom:20px;\">Your Role Determines Your Workload<\/h2>\n<p style=\"line-height:1.8;margin-bottom:20px;\"><strong>What is the EU AI Act?<\/strong> The EU AI Act is the first comprehensive regulation for artificial intelligence in the European Union. It classifies AI systems by risk level &#8211; from prohibited to high-risk to minimal &#8211; and ties graduated obligations to each tier. The strictest requirements apply to high-risk systems, such as those used in personnel selection, credit assessment, or critical infrastructure.<\/p>\n<p style=\"line-height:1.8;margin-bottom:20px;\">Before an SME thinks about specific obligations, it must establish its role. The AI Act draws a sharp line between the provider &#8211; who develops an AI system and places it on the market &#8211; and the deployer, who simply puts such a system to use. This distinction is anything but academic; it determines the scope of the work ahead.<\/p>\n<p style=\"line-height:1.8;margin-bottom:20px;\">Most SMEs are deployers. They purchase a recruitment tool, a credit-checking solution, or analytics software and use it. That puts them under deployer obligations, not the full weight of a manufacturer. Companies that miss this and prepare for provider duties are planning for work that will never apply to them. Conversely, those who assume that being a pure operator means no obligations at all are overlooking their own &#8211; considerably lighter &#8211; responsibilities.<\/p>\n<h2 style=\"padding-top:64px;margin-bottom:20px;\">Four core obligations apply to high-risk AI<\/h2>\n<p style=\"line-height:1.8;margin-bottom:20px;\">Once a system is classified as high-risk, clearly defined requirements come into force. They are distributed differently between providers and deployers, however. The overview below separates who is responsible for what.<\/p>\n<div style=\"overflow-x:auto;-webkit-overflow-scrolling:touch;margin:16px 0 32px 0;\" data-element=\"comparison_table\">\n<table style=\"width:100%;min-width:560px;border-collapse:collapse;font-size:0.95em;\">\n<thead>\n<tr style=\"background:#202528;color:#fff;\">\n<th style=\"padding:12px 16px;text-align:left;border:1px solid #202528;color:#fff;\">Obligation<\/th>\n<th style=\"padding:12px 16px;text-align:left;border:1px solid #202528;color:#fff;\">Provider<\/th>\n<th style=\"padding:12px 16px;text-align:left;border:1px solid #202528;color:#fff;\">Deployer<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\"><strong>Risk management<\/strong><\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\">build and maintain throughout the lifecycle<\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;color:#202528;font-weight:600;\">apply in accordance with instructions<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\"><strong>Technical documentation<\/strong><\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\">compile in full<\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;color:#202528;font-weight:600;\">retain, not create<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\"><strong>Logging<\/strong><\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\">implement automatic logging<\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;color:#202528;font-weight:600;\">retain logs for at least six months<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\"><strong>Human oversight<\/strong><\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\">make it possible<\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;color:#202528;font-weight:600;\">actually exercise it<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\"><strong>Registration<\/strong><\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;\">register the system in the EU database<\/td>\n<td style=\"padding:12px 16px;border:1px solid #ddd;color:#202528;font-weight:600;\">generally not required<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<p style=\"line-height:1.8;margin-bottom:20px;\">For the typical mid-sized company acting as a deployer, the core tasks are manageable: use the system only for its intended purpose and in line with the instructions, ensure genuine human oversight, retain the logs, and in certain cases carry out a fundamental rights impact assessment. That still takes effort. But it is nowhere near the level of compliance burden facing manufacturers &#8211; the one that puts so many companies off.<\/p>\n<h2 style=\"padding-top:64px;margin-bottom:20px;\">Mid-2026 is where preparation levels will matter<\/h2>\n<p style=\"line-height:1.8;margin-bottom:20px;\">Every management team should know three key facts. The first is the deadline. The high-risk obligations become binding in mid-2026. Discussions at the European level about pushing back individual deadlines are ongoing, but until any change is formally adopted, the original date stands. Counting on a delay is a risky bet.<\/p>\n<div style=\"text-align:center;background:#202528;border-radius:12px;padding:32px 24px;margin:32px 0;\" class=\"evm-stat-highlight\">\n<div style=\"font-size:48px;font-weight:700;color:#F21F05;letter-spacing:-0.03em;\">15 Million Euros<\/div>\n<div style=\"font-size:15px;color:#fff;margin-top:8px;max-width:440px;margin-left:auto;margin-right:auto;\">or 3 percent of total worldwide annual turnover &#8211; whichever is higher &#8211; is the potential penalty for violations of the high-risk obligations.<\/div>\n<div style=\"font-size:12px;color:#F21F05;margin-top:8px;\">Source: EU AI Act, sanctions framework<\/div>\n<\/div>\n<p style=\"line-height:1.8;margin-bottom:20px;\">The second point is that sanctions framework itself. It makes clear the AI Act is no toothless document. The third point offers some relief for SMEs: small and medium-sized enterprises benefit from built-in concessions. They may maintain technical documentation in simplified form, and the European Commission provides a dedicated simplified template for this purpose. The relief has also been extended to small mid-cap companies. Smaller organisations still have to meet the obligations &#8211; but they are not expected to document at the same scale as a large corporation.<\/p>\n<h2 style=\"padding-top:64px;margin-bottom:20px;\">Clarify Roles and Establish Oversight Now<\/h2>\n<p style=\"line-height:1.8;margin-bottom:20px;\">The situation calls for a sober list of priorities &#8211; one that separates genuine necessities from avoidable actionism.<\/p>\n<div style=\"display:grid;grid-template-columns:repeat(auto-fit,minmax(280px,1fr));gap:16px;margin:28px 0;\" class=\"evm-pros-cons\">\n<div style=\"background:#fdf3f3;padding:24px 28px;border-radius:8px;\">\n<p style=\"margin:0 0 12px 0;font-size:0.78em;font-weight:700;text-transform:uppercase;letter-spacing:0.12em;color:#c0392b;\">What you don&#8217;t need to do<\/p>\n<ul style=\"margin:0;padding-left:18px;color:#333;line-height:1.55;font-size:0.95em;\">\n<li style=\"margin-bottom:6px;\">Prepare for full manufacturer obligations as a pure end user<\/li>\n<li style=\"margin-bottom:6px;\">Treat every AI tool in use as automatically high-risk<\/li>\n<li style=\"margin-bottom:6px;\">Wait for a deadline extension before one has actually been decided<\/li>\n<li>Launch an expensive large-scale project when a simple inventory will do<\/li>\n<\/ul>\n<\/div>\n<div style=\"background:#f1f7f0;padding:24px 28px;border-radius:8px;\">\n<p style=\"margin:0 0 12px 0;font-size:0.78em;font-weight:700;text-transform:uppercase;letter-spacing:0.12em;color:#2d7a3e;\">What actually matters<\/p>\n<ul style=\"margin:0;padding-left:18px;color:#333;line-height:1.55;font-size:0.95em;\">\n<li style=\"margin-bottom:6px;\">Take stock of your AI systems and classify them by risk level<\/li>\n<li style=\"margin-bottom:6px;\">Clarify your role for each system: provider or deployer<\/li>\n<li style=\"margin-bottom:6px;\">Secure human oversight and logging for high-risk applications<\/li>\n<li>Take advantage of the SME relief provisions for documentation<\/li>\n<\/ul>\n<\/div>\n<\/div>\n<p style=\"line-height:1.8;margin-bottom:20px;\">The common thread is proportionality. The AI Act does not ask SMEs for corporate-scale compliance &#8211; it asks for an honest assessment of your own systems and a handful of reliable routines for the few truly critical applications. Anyone who starts with an inventory and clarifies their role for each system has already resolved the bulk of the uncertainty. What remains is maintenance, not a revolution.<\/p>\n<h2 style=\"padding-top:64px;margin-bottom:20px;\">Frequently Asked Questions<\/h2>\n<details>\n<summary><strong>Does the EU AI Act apply to small businesses too?<\/strong><\/summary>\n<p style=\"margin:8px 0 4px 24px;color:#555;line-height:1.6;\">Yes, but on a graduated basis. Obligations depend on the risk level of the system and the role of the company &#8211; not primarily on its size. Small and medium-sized enterprises may keep technical documentation in a simplified form, and this relief has been extended to small mid-caps. Being small doesn&#8217;t exempt you, but it does make compliance more manageable.<\/p>\n<\/details>\n<details>\n<summary><strong>What is the difference between a provider and a deployer?<\/strong><\/summary>\n<p style=\"margin:8px 0 4px 24px;color:#555;line-height:1.6;\">A provider develops an AI system and places it on the market. A deployer simply uses a ready-made system. The heavy obligations &#8211; technical documentation, conformity assessment, registration &#8211; fall on the provider. The deployer&#8217;s main responsibilities are to use the system as intended, ensure human oversight, and retain logs.<\/p>\n<\/details>\n<details>\n<summary><strong>Which AI systems are classified as high-risk?<\/strong><\/summary>\n<p style=\"margin:8px 0 4px 24px;color:#555;line-height:1.6;\">Systems used in sensitive areas &#8211; such as candidate screening, credit decisions, critical infrastructure, or certain safety components. A basic text assistant or translation tool generally does not fall into this category. Classification follows the intended use case, not the underlying technology alone.<\/p>\n<\/details>\n<details>\n<summary><strong>When do the high-risk obligations take effect?<\/strong><\/summary>\n<p style=\"margin:8px 0 4px 24px;color:#555;line-height:1.6;\">They become binding in mid-2026. Discussions about shifting individual deadlines are ongoing at the European level, but no decision has been taken. Until then, the original date stands. Companies should not make their preparations contingent on a possible &#8211; but far from certain &#8211; extension.<\/p>\n<\/details>\n<details>\n<summary><strong>What is the best place to start preparing?<\/strong><\/summary>\n<p style=\"margin:8px 0 4px 24px;color:#555;line-height:1.6;\">With an inventory. Which AI systems are in use, what are they used for, and is your company acting as provider or deployer in each case? That overview immediately reveals which systems could qualify as high-risk and where obligations actually apply. Without this inventory, every subsequent measure is a shot in the dark.<\/p>\n<\/details>\n<h2 style=\"padding-top:64px;margin-bottom:20px;\">Editor&#8217;s Reading Picks<\/h2>\n<ul>\n<li><a href=\"https:\/\/mybusinessfuture.com\/generative-ki-mittelstand-78-prozent-nutzung-wirkung-dihk\/\">Generative AI in the Mittelstand: 78 Percent Adoption, Little Impact<\/a><\/li>\n<li><a href=\"https:\/\/mybusinessfuture.com\/erst-die-koepfe-dann-die-tools-ki-kompetenz-im-mittelstand-aufbauen\/\">People First, Then Tools<\/a><\/li>\n<li><a href=\"https:\/\/mybusinessfuture.com\/der-ki-engpass-im-mittelstand-sitzt-in-den-altsystemen\/\">The AI Bottleneck in the Mittelstand Lies in Legacy Systems<\/a><\/li>\n<\/ul>\n<div style=\"margin:40px 0 24px 0;\">\n<p style=\"margin:0 0 12px 0;font-size:0.78em;font-weight:700;text-transform:uppercase;letter-spacing:0.18em;color:#666;\">More from the MBF Media Network<\/p>\n<div style=\"padding:14px 18px;border-left:3px solid #d65663;background:#fafafa;margin-bottom:6px;\">\n<div style=\"font-size:0.7em;font-weight:700;color:#d65663;text-transform:uppercase;letter-spacing:0.12em;margin-bottom:4px;\">digital-chiefs<\/div>\n<p><a href=\"https:\/\/www.digital-chiefs.de\/eu-tech-sovereignty-paket-cloud-souveraenitaet-vorstand-cloud-act-dach\/\" style=\"font-weight:600;line-height:1.4;color:#1a1a1a;text-decoration:none;\">Cloud Sovereignty Becomes a Board-Level Issue<\/a><\/p>\n<\/div>\n<div style=\"padding:14px 18px;border-left:3px solid #0bb7fd;background:#fafafa;margin-bottom:6px;\">\n<div style=\"font-size:0.7em;font-weight:700;color:#0bb7fd;text-transform:uppercase;letter-spacing:0.12em;margin-bottom:4px;\">cloudmagazin<\/div>\n<p><a href=\"https:\/\/www.cloudmagazin.com\/2026\/05\/28\/cloud-souveraenitaet-praxis-c5-datenresidenz-schluesselhoheit\/\" style=\"font-weight:600;line-height:1.4;color:#1a1a1a;text-decoration:none;\">Cloud Sovereignty in Practice<\/a><\/p>\n<\/div>\n<div style=\"padding:14px 18px;border-left:3px solid #69d8ed;background:#fafafa;\">\n<div style=\"font-size:0.7em;font-weight:700;color:#69d8ed;text-transform:uppercase;letter-spacing:0.12em;margin-bottom:4px;\">securitytoday<\/div>\n<p><a href=\"https:\/\/www.securitytoday.de\/2026\/05\/29\/nis2-vollstreckung-2026-bsi-audit-persoenliche-haftung-meldepflicht\/\" style=\"font-weight:600;line-height:1.4;color:#1a1a1a;text-decoration:none;\">NIS2 Enforcement Has Begun<\/a><\/p>\n<\/div>\n<\/div>\n<p style=\"text-align:right;color:#868e96;font-size:0.85em;margin-top:48px;\"><em>Image credit: Cover image AI-generated (June 2026), C2PA certificate embedded in image<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In the EU AI Act, the distinction between provider and user determines the role.<\/p>\n","protected":false},"author":160,"featured_media":106134,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_yoast_wpseo_focuskw":"EU AI Act SMEs","_yoast_wpseo_title":"EU AI Act in SMEs: Provider or Deployer?","_yoast_wpseo_metadesc":"Choose wisely: EU AI Act hinges on your role-provider or user. Discover key high-risk obligations & crucial SME exemptions.","_yoast_wpseo_meta-robots-noindex":"","_yoast_wpseo_meta-robots-nofollow":"","_yoast_wpseo_meta-robots-adv":"","_yoast_wpseo_canonical":"","_yoast_wpseo_opengraph-title":"","_yoast_wpseo_opengraph-description":"","_yoast_wpseo_opengraph-image":"","_yoast_wpseo_opengraph-image-id":0,"_yoast_wpseo_twitter-title":"","_yoast_wpseo_twitter-description":"","_yoast_wpseo_twitter-image":"","_yoast_wpseo_twitter-image-id":0,"featured_post_sortierung":0,"featured_post":0,"pre_headline":"","bildquelle":"","teasertext":"","language":"de","_wp_old_slug":[],"footnotes":""},"categories":[2027],"tags":[],"class_list":["post-106242","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kuenstliche-intelligenz","entry"],"wpml_language":"en","wpml_translation_of":106133,"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>EU AI Act in SMEs: Provider or Deployer?<\/title>\n<meta name=\"description\" content=\"Choose wisely: EU AI Act hinges on your role-provider or user. Discover key high-risk obligations &amp; crucial SME exemptions.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"EU AI Act in SMEs: Provider or Deployer?\" \/>\n<meta property=\"og:description\" content=\"Choose wisely: EU AI Act hinges on your role-provider or user. Discover key high-risk obligations &amp; crucial SME exemptions.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/\" \/>\n<meta property=\"og:site_name\" content=\"MyBusinessFuture\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/MyBusinessFuture\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-06T09:50:30+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1792\" \/>\n\t<meta property=\"og:image:height\" content=\"1024\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Benedikt Langer\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@mbusinessfuture\" \/>\n<meta name=\"twitter:site\" content=\"@mbusinessfuture\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Benedikt Langer\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"NewsArticle\",\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/\"},\"author\":{\"name\":\"Benedikt Langer\",\"@id\":\"https:\/\/mybusinessfuture.com\/#\/schema\/person\/2c6c900f809c3c375dc455db50d1e7b1\"},\"headline\":\"EU AI Act in SMEs: Provider or Deployer?\",\"datePublished\":\"2026-06-06T09:50:30+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/\"},\"wordCount\":1281,\"publisher\":{\"@id\":\"https:\/\/mybusinessfuture.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg\",\"articleSection\":[\"K\u00fcnstliche Intelligenz\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/\",\"url\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/\",\"name\":\"EU AI Act in SMEs: Provider or Deployer?\",\"isPartOf\":{\"@id\":\"https:\/\/mybusinessfuture.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg\",\"datePublished\":\"2026-06-06T09:50:30+00:00\",\"description\":\"Choose wisely: EU AI Act hinges on your role-provider or user. Discover key high-risk obligations & crucial SME exemptions.\",\"breadcrumb\":{\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#primaryimage\",\"url\":\"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg\",\"contentUrl\":\"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg\",\"width\":1792,\"height\":1024,\"caption\":\"Aktenordner und Analysen stehen f\u00fcr neue Compliance-Aufgaben im Mittelstand.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Startseite\",\"item\":\"https:\/\/mybusinessfuture.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"EU AI Act in SMEs: Provider or Deployer?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/mybusinessfuture.com\/#website\",\"url\":\"https:\/\/mybusinessfuture.com\/\",\"name\":\"MyBusinessFuture\",\"description\":\"B2B-Magazin f\u00fcr Digitalisierung, KI und Business-Innovation \u2014 Fachartikel f\u00fcr IT-Entscheider im DACH-Raum\",\"publisher\":{\"@id\":\"https:\/\/mybusinessfuture.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/mybusinessfuture.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/mybusinessfuture.com\/#organization\",\"name\":\"MyBusinessFuture\",\"url\":\"https:\/\/mybusinessfuture.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/mybusinessfuture.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2020\/10\/MBF-logo-schwarz.png\",\"contentUrl\":\"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2020\/10\/MBF-logo-schwarz.png\",\"width\":398,\"height\":241,\"caption\":\"MyBusinessFuture\"},\"image\":{\"@id\":\"https:\/\/mybusinessfuture.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/MyBusinessFuture\",\"https:\/\/x.com\/mbusinessfuture\",\"https:\/\/www.linkedin.com\/showcase\/mybusinessfuture\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/mybusinessfuture.com\/#\/schema\/person\/2c6c900f809c3c375dc455db50d1e7b1\",\"name\":\"Benedikt Langer\",\"description\":\"Benedikt Langer befasst sich als Chefredakteur bei MyBusinessFuture mit Digitalisierung, Cloud-Strategien und KI-Anwendungen f\u00fcr Unternehmen. Mit besonderem Fokus auf K\u00fcnstliche Intelligenz, digitale Infrastruktur und strategische Cloud-Architekturen beleuchtet er technologische Entwicklungen und deren Auswirkungen auf Business-Entscheidungen.\",\"sameAs\":[\"https:\/\/www.linkedin.com\/in\/benedikt-langer\/\",\"https:\/\/www.linkedin.com\/in\/benedikt-langer-574b8a20b\/\"],\"url\":\"https:\/\/mybusinessfuture.com\/en\/experte\/benedikt-langer\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"EU AI Act in SMEs: Provider or Deployer?","description":"Choose wisely: EU AI Act hinges on your role-provider or user. Discover key high-risk obligations & crucial SME exemptions.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/","og_locale":"en_US","og_type":"article","og_title":"EU AI Act in SMEs: Provider or Deployer?","og_description":"Choose wisely: EU AI Act hinges on your role-provider or user. Discover key high-risk obligations & crucial SME exemptions.","og_url":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/","og_site_name":"MyBusinessFuture","article_publisher":"https:\/\/www.facebook.com\/MyBusinessFuture","article_published_time":"2026-06-06T09:50:30+00:00","og_image":[{"width":1792,"height":1024,"url":"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg","type":"image\/jpeg"}],"author":"Benedikt Langer","twitter_card":"summary_large_image","twitter_creator":"@mbusinessfuture","twitter_site":"@mbusinessfuture","twitter_misc":{"Written by":"Benedikt Langer","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#article","isPartOf":{"@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/"},"author":{"name":"Benedikt Langer","@id":"https:\/\/mybusinessfuture.com\/#\/schema\/person\/2c6c900f809c3c375dc455db50d1e7b1"},"headline":"EU AI Act in SMEs: Provider or Deployer?","datePublished":"2026-06-06T09:50:30+00:00","mainEntityOfPage":{"@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/"},"wordCount":1281,"publisher":{"@id":"https:\/\/mybusinessfuture.com\/#organization"},"image":{"@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#primaryimage"},"thumbnailUrl":"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg","articleSection":["K\u00fcnstliche Intelligenz"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/","url":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/","name":"EU AI Act in SMEs: Provider or Deployer?","isPartOf":{"@id":"https:\/\/mybusinessfuture.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#primaryimage"},"image":{"@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#primaryimage"},"thumbnailUrl":"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg","datePublished":"2026-06-06T09:50:30+00:00","description":"Choose wisely: EU AI Act hinges on your role-provider or user. Discover key high-risk obligations & crucial SME exemptions.","breadcrumb":{"@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#primaryimage","url":"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg","contentUrl":"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2026\/06\/eu-ai-act-mittelstand-hochrisiko-pflichten-provider-deployer-cover-hero.jpg","width":1792,"height":1024,"caption":"Aktenordner und Analysen stehen f\u00fcr neue Compliance-Aufgaben im Mittelstand."},{"@type":"BreadcrumbList","@id":"https:\/\/mybusinessfuture.com\/en\/eu-ai-act-smes-high-risk-obligations-provider-deployer\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Startseite","item":"https:\/\/mybusinessfuture.com\/"},{"@type":"ListItem","position":2,"name":"EU AI Act in SMEs: Provider or Deployer?"}]},{"@type":"WebSite","@id":"https:\/\/mybusinessfuture.com\/#website","url":"https:\/\/mybusinessfuture.com\/","name":"MyBusinessFuture","description":"B2B-Magazin f\u00fcr Digitalisierung, KI und Business-Innovation \u2014 Fachartikel f\u00fcr IT-Entscheider im DACH-Raum","publisher":{"@id":"https:\/\/mybusinessfuture.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/mybusinessfuture.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/mybusinessfuture.com\/#organization","name":"MyBusinessFuture","url":"https:\/\/mybusinessfuture.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/mybusinessfuture.com\/#\/schema\/logo\/image\/","url":"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2020\/10\/MBF-logo-schwarz.png","contentUrl":"https:\/\/mybusinessfuture.com\/wp-content\/uploads\/2020\/10\/MBF-logo-schwarz.png","width":398,"height":241,"caption":"MyBusinessFuture"},"image":{"@id":"https:\/\/mybusinessfuture.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/MyBusinessFuture","https:\/\/x.com\/mbusinessfuture","https:\/\/www.linkedin.com\/showcase\/mybusinessfuture\/"]},{"@type":"Person","@id":"https:\/\/mybusinessfuture.com\/#\/schema\/person\/2c6c900f809c3c375dc455db50d1e7b1","name":"Benedikt Langer","description":"Benedikt Langer befasst sich als Chefredakteur bei MyBusinessFuture mit Digitalisierung, Cloud-Strategien und KI-Anwendungen f\u00fcr Unternehmen. Mit besonderem Fokus auf K\u00fcnstliche Intelligenz, digitale Infrastruktur und strategische Cloud-Architekturen beleuchtet er technologische Entwicklungen und deren Auswirkungen auf Business-Entscheidungen.","sameAs":["https:\/\/www.linkedin.com\/in\/benedikt-langer\/","https:\/\/www.linkedin.com\/in\/benedikt-langer-574b8a20b\/"],"url":"https:\/\/mybusinessfuture.com\/en\/experte\/benedikt-langer\/"}]}},"_links":{"self":[{"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/posts\/106242","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/users\/160"}],"replies":[{"embeddable":true,"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/comments?post=106242"}],"version-history":[{"count":1,"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/posts\/106242\/revisions"}],"predecessor-version":[{"id":106243,"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/posts\/106242\/revisions\/106243"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/media\/106134"}],"wp:attachment":[{"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/media?parent=106242"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/categories?post=106242"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mybusinessfuture.com\/en\/wp-json\/wp\/v2\/tags?post=106242"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}