TL;DR: If you build or deploy AI systems used in the EU, the EU AI Act applies to you. Enforcement starts August 2, 2026. Fines up to €35M or 7% of global revenue.
What is the EU AI Act?
The EU AI Act is the world’s first comprehensive AI regulation. It classifies AI systems by risk level and imposes obligations based on that classification. Think GDPR, but for AI.Who does it affect?
Risk classification
The Act classifies AI systems into 4 risk levels:1
Unacceptable risk — BANNED
Social scoring, real-time biometric surveillance, subliminal manipulation, exploitation of vulnerabilities. These practices are prohibited entirely.
2
High risk — HEAVY OBLIGATIONS
AI in: hiring, credit scoring, education, healthcare, law enforcement, critical infrastructure. Requires FRIA, risk management, technical documentation, human oversight, accuracy testing, and EU Database registration.
3
Limited risk — TRANSPARENCY
Chatbots, deepfakes, emotion recognition. Must disclose that users are interacting with AI. Must mark AI-generated content.
4
Minimal risk — NO OBLIGATIONS
Spam filters, AI-powered search, recommendation engines. No specific obligations (but general best practices apply).
The 6 things you probably need to do
Most AI developers fall into “High risk” or “Limited risk”. Here’s what that means:1. Disclose AI usage (everyone)
Your AI system must inform users they are interacting with AI. Complior detects missing disclosure and generates the fix:@complior/sdk for runtime enforcement:
2. Create an Agent Passport
3. Run a compliance scan
4. Generate FRIA (high-risk only)
5. Generate compliance documents
6. Build an evidence trail
Everycomplior action automatically creates cryptographic evidence (SHA-256 + ed25519). This proves to regulators that you took compliance seriously.
Key deadlines
Key articles for developers
What Complior automates
Quick Start
Go from zero to compliant in 5 minutes.
EU AI Act deep dive
Full article-by-article mapping.