AI Serious Incident Reporting Template

Incident reporting procedure for Article 73 obligations: identifying, classifying, and notifying market surveillance authorities of serious incidents involving high-risk AI systems.

Quick Answer

EU AI Act Article 73 requires providers of high-risk AI to notify national market surveillance authorities of serious incidents (death, serious harm, infrastructure disruption) within 15 days, or 2 days for life-threatening events.

Compliance Checklist (8 items)

Define "serious incident" triggers: death, serious harm, disruption to critical infrastructure
Establish internal escalation path: who decides to report and within what timeframe
Notify market surveillance authority within 15 days of becoming aware of a serious incident
For life-threatening or fatal incidents: notify within 2 days (Article 73(4))
Preserve all logs, outputs, and contextual data from the time of the incident
Conduct root-cause analysis and document corrective/preventive actions
Submit follow-up reports as required by the authority
Update post-market monitoring plan to prevent recurrence

Penalty if not compliant

Up to €20 million or 4% of global annual turnover for failure to report. Authorities may also impose immediate market withdrawal.

Frequently Asked Questions

What counts as a "serious incident" requiring mandatory reporting?

A serious incident is one that directly or indirectly leads to: the death of a person, serious harm to health, significant disruption to critical infrastructure, or violation of fundamental rights obligations under Union law.

Who must submit the incident report — provider or deployer?

Providers bear the primary reporting obligation. Deployers must notify providers promptly when they identify or suspect a serious incident, and must cooperate with the provider in submitting the report.

Which authority do I report to?

You report to the market surveillance authority in the EU member state where the incident occurred. If multiple member states are affected, you must notify all relevant authorities. The AI Office coordinates cross-border cases.

Need this turned into a real document?

Our compliance sprint service delivers production-ready documents tailored to your organisation in 5–15 business days. A senior compliance specialist reviews every document before delivery.

Get Expert Help →Browse All Templates

incident reportingArticle 73EU AI Actserious incidentmarket surveillance