EU AI Act compliance for manufacturing and industrial SaaS

Manufacturing SaaS sits in a complex AI Act position because of Annex II - AI systems that are safety components of products covered by EU harmonisation legislation (Machinery Directive, Pressure Equipment Directive, Medical Devices Regulation, and others). If your AI is integrated into a CE-marked industrial product as a safety-critical component, the AI Act stacks with the sectoral regulation. Otherwise, manufacturing SaaS is generally non-high-risk and Article 50 transparency is the main concern.

Is your product high-risk under Annex III?

Annex III rarely applies to manufacturing SaaS directly. Workforce management features (shift allocation, performance monitoring, quality-scoring of operators) trigger Annex III point 4. Most manufacturing AI use cases (predictive maintenance, quality inspection, process optimisation, supply-chain coordination) are not in Annex III. Annex II is the bigger consideration: if your AI is a safety component in CE-marked machinery, the AI Act applies on the harmonised-legislation timeline (2 August 2027 for most Annex II categories).

Article 50 transparency obligations

Article 50 applies regardless of Annex II/III status. Article 50(1): operator-facing AI assistants, manufacturing execution system chatbots, AI process advisors must disclose AI nature. Article 50(2): AI-generated work instructions, AI-drafted quality reports, AI-summarised maintenance records must be marked. Practical implementation: badge on AI-generated content in MES UI, metadata tag on exported reports, traceability in audit logs.

Self-audit checklist before 2 August 2026

Seven checks:

  1. Inventory AI features: predictive maintenance, quality inspection, process optimisation, scheduling, MES, ERP, vision systems.
  2. Identify Annex II overlap. If your AI is a safety component in CE-marked products, plan combined Machinery Directive + AI Act conformity assessment.
  3. Identify Annex III overlap (workforce monitoring).
  4. For Annex II systems, coordinate with your existing notified body for combined conformity assessment.
  5. Add Article 50(1) disclosure to operator-facing AI features.
  6. Mark AI-generated work instructions and reports.
  7. Document training data, particularly for vision and quality-inspection models.

Penalties and enforcement

Penalty ceilings: €15M or 3% of global turnover for high-risk failures, €15M or 3% for Article 50. Machinery Directive fines stack separately (member-state defined, often €25,000 to €500,000 per incident). Worked example: manufacturing SaaS with €10M ARR faces €300,000 AI Act max plus separate machinery fines. Bigger cost: large industrial buyers (Siemens, Bosch, ABB, ThyssenKrupp) require AI Act attestation in vendor onboarding from 2026.

Last updated: 2026-05-28