AI used for student admissions, exam proctoring, ability streaming, and consequential performance assessment is explicitly listed as high-risk under EU AI Act Annex III Section 3. Here is what universities, schools, and EdTech companies must know before August 2, 2026.
Education is one of eight explicitly named high-risk sectors
Annex III Section 3 of the EU AI Act names four categories of educational AI as high-risk: admissions, learning-path steering, consequential performance evaluation, and exam-behaviour monitoring. These are not edge cases — they cover the most common applications of AI in education. If your institution or product touches any of these, the full high-risk AI regime applies from August 2, 2026.
The EU AI Act Annex III lists eight sectors where AI systems are presumed high-risk. Section 3 covers education and vocational training. It has four provisions:
AI systems used to determine whether a natural person gains access or admission to an educational or vocational training institution at any level — primary, secondary, higher education, or professional training.
In-scope examples:
AI systems used to assess the appropriate level of education for an individual where that assessment is used to steer their learning path — including streaming or tracking decisions within an institution.
In-scope examples:
AI systems used to evaluate the learning outcomes of individuals and make decisions — or significantly contribute to decisions — affecting their access to education or the direction of their educational career.
In-scope examples:
AI systems used to monitor students during tests and detect prohibited behaviour — including cheating, unauthorised materials, or collusion.
In-scope examples:
Most AI used in education is not in Annex III Section 3. The key question is whether the AI makes or significantly contributes to a consequential decision about an individual student's access, progression, or career. General learning, content, and administrative tools are not in scope.
| Tool / use case | Why not high-risk |
|---|---|
| AI tutoring tools (e.g. AI writing assistants, maths tutors) | No consequential decisions about access, progression, or grades. Helps students learn but does not assess them in a way that affects their educational career. |
| Learning Management System (LMS) content recommendations | Recommending which lesson to take next is not a consequential access or evaluation decision. General adaptive learning platforms are not in scope without a high-stakes outcome. |
| AI chatbots for student support (FAQ, timetabling) | Administrative function only. However, Article 50 transparency disclosure (identifying as AI) still applies. |
| Plagiarism detection used only to flag for human review | If the AI flag always requires a human decision before any consequence, the system alone is not making a high-stakes evaluation. However, exam context proctoring remains in scope under 3(d). |
| AI-generated course content and learning materials | Content creation tool — no assessment of individual students. Article 50 labelling for AI-generated content may still apply. |
| Student dropout risk prediction (for support outreach only) | If the AI output triggers a supportive intervention (e.g. academic tutoring offer) rather than a negative consequence, this may be minimal risk — but document the intended use carefully. |
| Administrative AI: scheduling, room allocation, timetabling | Operational AI with no significant impact on individual students' educational opportunities or career outcomes. |
| AI for library catalogue search and resource recommendation | Information access tool. No individual assessment or consequential decision about a student's educational path. |
The EU AI Act separates obligations between providers (who build the AI system) and deployers (who use it in their institution). In education, this creates two distinct groups with very different obligations.
If you build an AI system intended to be used for admissions, assessment, exam monitoring, or streaming decisions, you are a provider under Article 3(3). This applies regardless of whether you also use the system yourself.
Universities, schools, colleges, and vocational training providers that use a high-risk AI system in their operations are deployers under Article 3(4). They have a distinct set of obligations focused on oversight, notification, and logging.
Dual role: institutions that build their own AI
Some universities and large educational groups build their own AI admissions or assessment tools internally. Under Article 28(1)(a), if you place an AI system on the market — or use it — under your own name, for your own purposes, you become a provider as well as a deployer. This means the full provider obligations apply: technical documentation, risk management, conformity assessment, CE marking, and registration in the EU AI Act database. This is a significant additional burden and is often overlooked by in-house development teams.
If you build and sell AI systems in Annex III Section 3, Article 16 imposes these obligations before you can place the product on the EU market:
Establish and maintain a risk management system throughout the AI system's lifecycle. Identify and assess risks to students, document them, and implement risk mitigation measures. For educational AI, risks include incorrect admissions decisions, false cheating accusations, and biased assessment outcomes.
Training, validation, and test datasets must be relevant, representative, and free from significant errors. For student assessment AI, this means: training data must not reflect historical biases in educational attainment (e.g. by socioeconomic background, gender, ethnicity); the system must be validated across diverse student populations.
Maintain comprehensive technical documentation covering: general description, design specifications, risk management information, training data description, testing results, post-market monitoring plan. Must be available to national authorities on request.
High-risk AI systems must automatically log events, enabling post-hoc review of decisions. For exam proctoring and admissions AI, logs must capture what the system detected or recommended and when.
Provide detailed instructions for use to deployers (educational institutions). Must include: intended purpose, limitations, human oversight requirements, accuracy/performance data across different student groups, potential biases.
AI system must be designed to enable qualified individuals to monitor, understand, override, or stop the system. This is particularly important for exam proctoring (humans must review flags) and admissions scoring (humans must make final decisions).
For most education AI (no harmonised standard), self-assessment under Annex VI is permitted. Attach CE marking. Register in the EU AI Act database (Article 49). CE marking must appear before placing the product on the EU market.
Monitor performance after deployment. Serious incidents (a false cheating accusation that results in expulsion; an admissions error affecting many applicants) must be reported to national authorities. Establish a post-market monitoring plan before launch.
Educational institutions that deploy high-risk AI systems face obligations under Article 26. Public institutions have an additional FRIA obligation.
Use the AI system strictly for its intended purpose, as described in the provider's instructions for use. An admissions-scoring tool cannot be repurposed for performance evaluation; an exam proctoring tool cannot be used to monitor classroom behaviour generally.
Assign oversight to a qualified person with the authority to override the AI. For admissions: no applicant can be rejected solely by AI — a human must review. For exam proctoring: a human examiner must review every AI flag before any disciplinary action. For grading AI: a qualified teacher must be able to adjust the AI mark.
Monitor the AI system's operation. If you identify a risk or serious incident (an AI false positive that led to an unjust expulsion; a systematic bias in admissions outcomes by demographic group), report it to the provider and — if it is a serious incident — to the relevant national authority.
Inform natural persons that they are subject to a high-risk AI system. Applicants must know if an AI system assessed their application. Students must know if an AI system monitored them during exams. This notification obligation is practical: it must be given before or at the time of AI assessment, not buried in a privacy policy.
Retain logs generated by the AI system for at least six months (or longer if required by sector-specific law). For exam proctoring, logs are evidence in any subsequent dispute. For admissions AI, logs document the basis for access decisions.
Public educational institutions (state universities, local authority schools, publicly funded colleges) must carry out a FRIA before deploying any high-risk AI system. This is separate from and additional to a GDPR Data Protection Impact Assessment — it assesses the impact on fundamental rights: education access, non-discrimination, privacy, and dignity. The FRIA must be submitted to national authorities.
Article 27 requires public bodies — including state universities, local authority schools, and publicly funded educational institutions — to carry out a Fundamental Rights Impact Assessment before deploying any high-risk AI system. This is a separate document from a GDPR DPIA, though both are required.
For educational institutions, the FRIA must specifically assess:
The FRIA must be submitted to the relevant national market surveillance authority. Plan to complete it at least 6 weeks before the August 2 deadline to allow for review time.
Even if your educational AI tool is not high-risk, Article 50 transparency obligations may still apply from August 2, 2026:
AI tutors and educational chatbots
Any conversational AI system — including AI tutoring assistants, student support chatbots, and virtual learning companions — must clearly inform users that they are interacting with an AI, not a human. This disclosure must be given at the start of the interaction.
AI-generated educational content
Content generated by AI and intended to inform public discourse — including AI-authored course materials or study guides distributed to students — must be labelled as AI-generated where it could be mistaken for human-produced content.
Student notification for high-risk AI (Article 26(6))
For high-risk AI systems (admissions, proctoring, assessment), deployers must notify the individuals affected that they are subject to an AI system. This is a higher bar than the general Article 50 chatbot disclosure — it must be given to every student or applicant processed by the system.
Use this table to understand where common tools sit. Remember that classification depends on how a tool is actually used — a tool built for tutoring but repurposed for consequential assessment changes category.
Determines access to educational institution. Explicitly Annex III 3(a).
Action: Deploying university must: ensure human oversight of every admissions decision, retain logs, notify applicants that AI was used.
Monitors students during exams to detect prohibited behaviour. Explicitly Annex III 3(d).
Action: Educational institution is deployer. Contact vendor for AI Act technical documentation. Ensure human review of all AI flags before disciplinary action.
Evaluates learning outcomes affecting educational career. Annex III 3(c).
Action: If AI grade contributes to final qualification, treat as high-risk. Qualified teacher or examiner must review and can override AI outputs.
When AI-detection output feeds into misconduct proceedings affecting a student's academic career, this is an evaluation with significant educational impact under 3(c). Turnitin itself has flagged uncertainty in its AI detection tool's accuracy.
Action: Never rely solely on an AI detection flag for academic misconduct. Require corroborating evidence and human review. Document the human oversight step.
Steering learning path based on assessed ability. Annex III 3(b).
Action: School/institution is deployer. Human educator must review and approve any tracking decision. Parents and students must be notified.
No high-stakes individual assessment affecting access or career. Adaptive learning with no consequential outcome. Article 50 chatbot disclosure applies to conversational AI features.
Action: Disclose AI chatbot nature if conversational. No further high-risk obligations.
No individual assessment or consequential decision. Article 50 transparency requirement applies.
Action: Chatbot must clearly identify as AI when student interacts with it. No high-risk system obligations.
Content navigation assistance with no high-stakes outcome. Not an admissions, evaluation, or examination-monitoring tool.
Action: No mandatory obligations. AI literacy (Article 4) still applies to the institution.
Triggering a welfare intervention (not a disciplinary or access consequence) is low-stakes. But if the output affects academic standing or access to resources, re-classify.
Action: Document intended use clearly. If the output ever influences negative academic decisions, treat as high-risk.
Schools, primary and secondary education settings, and any platform serving students under 18 must treat data and AI use with additional care:
Use our free 5-question classifier to find out whether your AI system falls under Annex III Section 3 — and if so, get a plain-English list of exactly what you need to do.
Classify My AI System FreeYes. Any AI system that scores, ranks, or filters applicants for admission to a university or educational institution is explicitly high-risk under Annex III Section 3(a). The university is a deployer and must: ensure a qualified person oversees and can override every admissions decision, retain AI system logs, and notify applicants that an AI system was used in their assessment. If the university built the AI itself, it is also a provider and faces the full set of provider obligations including CE marking and registration.
Almost certainly yes. Annex III Section 3(d) explicitly covers AI systems used to monitor students during tests and detect prohibited behaviour. Remote proctoring software that uses AI to analyse video, eye movement, screen activity, or typing patterns to detect cheating falls squarely within this definition. The software vendor is the provider. Educational institutions deploying it are deployers — they must ensure a human examiner reviews every AI flag before any disciplinary action, and must notify students before the exam that AI proctoring is in use.
It depends on how the tool is used. A system that flags content as potentially AI-generated but always routes the flag to a human for further investigation — with no automatic consequence — may sit below the high-risk threshold. However, if the AI detection output is used as primary evidence in academic misconduct proceedings that could result in expulsion or grade penalties, it is contributing to a consequential evaluation decision under Annex III 3(c) and should be treated as high-risk. Given documented false positive rates in AI detection tools, institutions should always require corroborating evidence and human review before any misconduct action.
Yes. An AI system used to determine which learning track, stream, or ability group a student is placed in falls under Annex III Section 3(b) — AI that steers the learning path of individuals. Streaming and tracking decisions significantly affect a student's educational opportunities. As a deployer, the school must: ensure a qualified teacher reviews and can override every placement, notify students and parents that AI contributed to the placement decision, retain logs, and — if it is a state school — complete a Fundamental Rights Impact Assessment (FRIA) under Article 27.
Probably not a high-risk provider — most tutoring AI is minimal risk. If your tool adapts learning content and practice exercises to the student's performance, but does not make consequential access, grading, or monitoring decisions, it is not in Annex III Section 3. You may still have obligations: Article 50 transparency applies if your product includes a conversational AI tutor (it must identify as AI). Article 4 AI literacy requirements apply to your staff. If your tutoring AI feeds results into a school's formal assessment or grading system in a consequential way, reassess the classification.
A FRIA (required by Article 27) is an assessment of the impact of deploying a high-risk AI system on fundamental rights — including the right to education, non-discrimination, privacy, and dignity. It is required for public bodies (state universities, local authority schools, publicly funded institutions) and for private bodies performing public tasks (regulated private schools with public funding may be included). It is distinct from a GDPR Data Protection Impact Assessment — a DPIA focuses on data protection risks, while a FRIA covers broader rights. You need both. The FRIA must be submitted to your national supervisory authority before deploying any high-risk AI system.
Yes. When a high-risk AI system assesses children (under 18), additional care is required. GDPR Article 8 applies to consent for children's data processing, and national laws vary on the age threshold. The EU AI Act does not have a standalone children provision, but Recital 47 notes that AI systems in education affecting children warrant particular attention given the potential long-term impact on their prospects. In practice: ensure parental notification for high-risk AI use, be especially cautious about bias in training data (which may reflect historical inequalities in children's attainment), and document extra safeguards in your risk management system.
If your EdTech product is sold to EU educational institutions, or used by students in the EU, then yes — the EU AI Act applies to your product regardless of where your company is based. The Act follows the location of use, not the provider's location. If you sell only to UK schools with UK-domiciled students, the EU AI Act does not directly apply to those sales — but if there is any possibility of EU market access, apply the EU standard. The UK has not enacted an equivalent binding AI law, so UK-only deployments currently face lighter domestic obligations.
Free EU AI Act risk classifier
Find your risk level in 5 minutes
Full Annex III high-risk systems guide
Every high-risk category explained
EU AI Act for SaaS and software providers
Provider obligations, conformity assessment, CE marking
Article 50 transparency requirements
Chatbot disclosure, AI-generated content labelling
EU AI Act vs GDPR
What GDPR compliance does and doesn't cover
EU AI Act fines and penalties
Up to €35M or 7% of global turnover
EU AI Act compliance checklist
Step-by-step for August 2026
Timeline and enforcement deadlines
What applies now vs August 2026
This guide provides general information only and does not constitute legal advice. The EU AI Act is a complex regulation; consult a qualified lawyer for advice specific to your institution or product. Information current as of June 2026.