regulome.io

CE Marking (AI)

A mandatory conformity marking required under the EU AI Act for high-risk AI systems before they can be placed on the EU market, indicating that the system meets all applicable EU regulatory requirements including technical, safety, and fundamental rights obligations.

Also known as: CE mark, EU AI conformity marking, AI certification

Overview

The CE marking (Conformité Européenne) is a mandatory product certification that indicates compliance with EU regulations. Under the EU AI Act, providers of high-risk AI systems must affix the CE marking to their AI system (or its documentation) before placing it on the EU market.

The CE marking is not a quality assurance label — it is a self-declaration of conformity (for most AI systems) indicating that the provider has completed the required conformity assessment process and the system meets the EU AI Act's requirements.

When CE Marking Is Required

CE marking is required for Annex III high-risk AI systems — AI systems used in sensitive domains including employment, education, critical infrastructure, law enforcement, migration, and administration of justice.

For AI systems that are also regulated under other EU product safety legislation (Annex I — e.g., medical devices, aviation, automotive), the CE marking requirements from those sector-specific laws apply and are aligned with the AI Act.

The CE Marking Process for AI

Step 1: Conformity Assessment

Complete the conformity assessment process (self-assessment for most Annex III AI, or third-party notified body assessment for biometric systems and some critical infrastructure AI).

Step 2: Technical Documentation

Prepare and maintain the required technical documentation covering:

  • System description and intended purpose
  • Risk management system records
  • Training data governance documentation
  • Testing and validation results
  • Human oversight mechanisms
  • Cybersecurity measures

Step 3: EU Declaration of Conformity

Draw up an EU Declaration of Conformity — a formal document signed by the provider stating that the AI system meets the EU AI Act's requirements. This document must be made available to market surveillance authorities on request.

Step 4: Affix CE Marking

Affix the CE marking to the AI system. For software-only AI systems, the CE marking appears on:

  • Packaging
  • Documentation
  • The product interface
  • Marketing materials

Step 5: EU AI Database Registration

Register the high-risk AI system in the EU AI public database operated by the European Commission. Registration must occur before market placement.

CE Marking vs. Third-Party Certification

For most Annex III AI systems, CE marking is a self-declaration — the provider conducts its own conformity assessment rather than having an independent body assess the system.

Third-party notified body assessment is required for:

  • Real-time remote biometric identification systems
  • Critical infrastructure AI (certain categories)
  • AI systems used in law enforcement (certain categories)

Practical Implications for Non-EU Providers

Organizations headquartered outside the EU that place high-risk AI on the EU market must:

  1. Appoint an EU Authorized Representative — a person or entity established in the EU who can act on behalf of the provider for regulatory purposes
  2. The EU representative assumes responsibility for CE marking compliance on behalf of the non-EU provider
  3. CE marking documentation must identify the EU representative's name and contact information