What Counts as an AI System Under the EU AI Act?

Every compliance conversation about the EU AI Act eventually reaches the same sticking point: "Does this count as an AI system?" The question is simple, but the answer is not.

Article 3(1) of the EU AI Act defines an AI system as "a machine-based system that is designed to operate with varying levels of autonomy and that may exhibit adaptiveness after deployment and that, for explicit or implicit objectives, infers, from the input it receives, how to generate outputs such as predictions, content, recommendations, or decisions that can influence physical or virtual environments."

That definition is intentionally broad. It captures everything from deep learning models generating medical diagnoses to statistical scoring systems ranking loan applicants. But breadth is a double-edged sword. The more a definition covers, the harder it becomes to know whether a specific system falls inside or outside its scope. And for organizations deploying dozens or hundreds of software tools, that ambiguity translates directly into compliance risk.

Where the Boundaries Blur

Consider a few examples that illustrate the problem.

A rule-based decision engine uses hardcoded if-then logic to approve or deny insurance claims under a certain dollar threshold. It has no machine learning, no training data, and no adaptiveness. Most legal analysts agree this falls outside the AI system definition. But the picture gets murkier when those thresholds were originally derived from a statistical analysis of historical claims, or when an analyst used a machine learning model to determine the optimal cutoff points and then hardcoded the values. The system itself is deterministic, but its parameters were inferred from data.

A recommendation algorithm on an internal HR platform surfaces job candidates based on weighted scoring criteria. The weights were set manually by the HR team, but the system infers a ranking from the input it receives. It generates recommendations that influence hiring decisions. Does it exhibit "varying levels of autonomy"? The HR team would say no: they set every weight by hand. A regulator might disagree.

A robotic process automation (RPA) tool follows scripted workflows to extract data from invoices and populate accounting systems. Pure automation, no inference. But the vendor recently added an "intelligent extraction" feature that uses OCR with machine learning to handle non-standard invoice formats. The customer enabled the feature without much deliberation. One module of the system is now an AI system under the Act, even though the core product started as simple automation.

These are not edge cases. They are ordinary enterprise software scenarios. The line between traditional software and AI system is not a bright one, and the EU AI Act's definition does not draw it with enough precision to resolve every ambiguity.

Why the Definition Matters So Much

The compliance obligations that flow from the EU AI Act are steep, and they attach based on classification. A system categorized as high-risk must meet requirements for data governance, transparency, human oversight, accuracy, robustness, and cybersecurity. Providers must establish quality management systems, maintain technical documentation, conduct conformity assessments, and register the system in the EU database.

A system that falls outside the AI system definition faces none of those obligations.

The stakes of getting classification wrong run in both directions. Overclassify a system that is not an AI system, and you impose unnecessary compliance overhead: documentation burdens, audit costs, and deployment delays that serve no regulatory purpose. Underclassify a system that does qualify, and you face enforcement action. The EU AI Act prescribes fines up to 35 million euros or 7% of global annual turnover for the most serious violations.

Most organizations err on the side of caution. They overclassify, treating everything with a hint of algorithmic logic as an AI system. The intention is defensible, but the practical result is that compliance teams drown in documentation for systems that pose minimal risk, while genuinely high-risk systems receive the same generic treatment rather than focused scrutiny.

The Spectrum Problem

The EU AI Act's definition aligns with the OECD's updated AI definition, which also emphasizes inference and autonomy. But both definitions treat AI as a binary: a system either is or is not an AI system. Reality is messier than that.

Fully deterministic systems like lookup tables and hardcoded business rules clearly fall outside the definition. Foundation models and autonomous agents clearly fall inside it. The problem is the vast middle ground: statistical models, expert systems, optimization algorithms, and hybrid architectures that combine rule-based and learned components. A credit scoring model using logistic regression on five variables is statistically simple, but it infers a prediction from input data. A sentiment analysis tool classifies customer feedback using basic NLP. A demand forecasting system applies time-series decomposition with seasonal adjustment. All of these sit in a gray zone the Act does not cleanly resolve.

The Act does exclude "systems based on the rules defined solely by natural persons to automatically execute operations," but that exclusion only helps at the clear extremes. The European Commission has published guidance documents and FAQs, and the AI Office will continue to issue interpretive guidance. But regulatory guidance always lags behind technology deployment. Organizations need a classification methodology that handles ambiguity today, not one that waits for a definitive ruling on every system.

A Product-Level Approach to Classification

The answer to definitional ambiguity is to evaluate each system at the product level based on what it does, how it works, and what risks it poses, regardless of how it is labeled. Swept AI are experts at exactly this kind of classification challenge. The approach has three components.

First, inventory everything. Build a comprehensive register of all software systems that involve any form of automated inference, prediction, recommendation, or decision-making. Do not pre-filter. Include rule-based systems whose parameters were derived from data analysis. Include vendor tools whose underlying architecture you do not fully control. Include internal tools built by individual teams that never went through formal procurement.

Second, assess each system against functional criteria. Rather than asking "Is this AI?" ask a series of specific questions:

• Does the system infer outputs from input data, or does it execute purely deterministic logic?
• Does it exhibit any form of adaptiveness, either through retraining, online learning, or parameter updates?
• Do its outputs influence decisions that affect individuals' rights, safety, or access to services?
• What is the degree of human oversight in the decision pipeline?
• How transparent is the system's reasoning to the people affected by its outputs?

These questions map to the Act's definitional elements without requiring a binary yes-or-no classification. They produce a risk profile for each system that informs the appropriate level of governance, documentation, and monitoring.

Third, establish ongoing monitoring and reclassification. Systems change as vendors add features and teams modify configurations. A tool that was purely rule-based six months ago may now incorporate machine learning components. Classification is not a one-time exercise; it requires continuous oversight.

How Swept AI Supports This Process

At Swept AI, we built our evaluation framework around precisely this challenge. We recognize that the boundary between "AI system" and "traditional software" is neither fixed nor clear, and that organizations need tools that work across the entire spectrum.

Our platform enables organizations to:

• Catalog and classify every system in their AI portfolio using structured assessment criteria aligned with the EU AI Act's definitional elements and risk tiers
• Evaluate system behavior through standardized testing protocols that measure accuracy, robustness, fairness, and transparency, the same dimensions the Act requires for high-risk systems
• Monitor for drift and change so that reclassification triggers automatically when a system's capabilities or risk profile shift
• Generate compliance documentation that maps directly to EU AI Act requirements, reducing the manual burden on compliance teams

The goal is not to replace legal judgment about whether a particular system qualifies as an AI system. The goal is to give organizations the structured evidence they need to make that judgment confidently, and to ensure that every system receives governance proportional to its actual risk.

Five Steps to Take Now

Organizations preparing for EU AI Act compliance should not wait for perfect definitional clarity. Here is what to do today.

1. Conduct a system inventory. Identify every tool, platform, and model that involves automated inference or decision-making. Cast the net wide. It is easier to remove systems from scope than to discover unregistered ones during an audit.

2. Apply functional assessment criteria. Use the questions above to evaluate each system's risk profile. Document the reasoning behind each classification decision, including borderline cases and the factors that tipped the balance.

3. Engage vendors. For third-party tools, request detailed technical documentation about how the system generates outputs. Many vendor tools have AI components that are not surfaced in marketing materials or user interfaces. The Act holds deployers responsible, not just providers.

4. Build a governance process, not a governance document. Static policies become outdated the moment they are published. Establish a living process that includes regular review cycles, reclassification triggers, and clear ownership for each system in the portfolio.

5. Start with your highest-risk systems. You do not need to complete a full portfolio assessment before taking action. Identify the systems most likely to qualify as high-risk under the Act, those used in employment, credit, healthcare, law enforcement, or critical infrastructure, and prioritize those for immediate evaluation.

Definitions Are the Beginning, Not the End

The question we started with, "Does this count as an AI system?" will remain difficult to answer for many systems. The EU AI Act's definition is broad by design, and the technology it regulates will continue to evolve faster than interpretive guidance can keep pace.

But definitional certainty was never the prerequisite for responsible governance. Organizations that build robust evaluation and monitoring processes will be well-positioned regardless of where the regulatory lines ultimately settle. They will have the evidence to defend their classification decisions, the infrastructure to adapt when guidance changes, and the confidence to deploy AI systems that are both innovative and compliant.

The organizations that wait for someone else to resolve the ambiguity will find themselves scrambling when enforcement begins. The definition question is worth taking seriously. The answer, though, lives in the discipline of evaluation, not in the text of a regulation.