Skip to main content
TL;DR: If you build or deploy AI systems used in the EU, the EU AI Act applies to you. Enforcement starts August 2, 2026. Fines up to €35M or 7% of global revenue.

What is the EU AI Act?

The EU AI Act is the world’s first comprehensive AI regulation. It classifies AI systems by risk level and imposes obligations based on that classification. Think GDPR, but for AI.

Who does it affect?

If your users are in the EU, the Act applies to you — regardless of where your company is based.

Risk classification

The Act classifies AI systems into 4 risk levels:
1

Unacceptable risk — BANNED

Social scoring, real-time biometric surveillance, subliminal manipulation, exploitation of vulnerabilities. These practices are prohibited entirely.
2

High risk — HEAVY OBLIGATIONS

AI in: hiring, credit scoring, education, healthcare, law enforcement, critical infrastructure. Requires FRIA, risk management, technical documentation, human oversight, accuracy testing, and EU Database registration.
3

Limited risk — TRANSPARENCY

Chatbots, deepfakes, emotion recognition. Must disclose that users are interacting with AI. Must mark AI-generated content.
4

Minimal risk — NO OBLIGATIONS

Spam filters, AI-powered search, recommendation engines. No specific obligations (but general best practices apply).

The 6 things you probably need to do

Most AI developers fall into “High risk” or “Limited risk”. Here’s what that means:

1. Disclose AI usage (everyone)

Your AI system must inform users they are interacting with AI. Complior detects missing disclosure and generates the fix:
Optionally, use @complior/sdk for runtime enforcement:

2. Create an Agent Passport

Auto-discovers your AI systems and generates a standardized identity card (36 fields, ed25519 signed).

3. Run a compliance scan

Analyzes your code against 108 obligations. Produces a score 0–100 with actionable findings.

4. Generate FRIA (high-risk only)

Fundamental Rights Impact Assessment — required before deploying high-risk AI.

5. Generate compliance documents

Auto-generates AI Policy, Worker Notification, Technical Documentation from your passport data.

6. Build an evidence trail

Every complior action automatically creates cryptographic evidence (SHA-256 + ed25519). This proves to regulators that you took compliance seriously.

Key deadlines

Key articles for developers

What Complior automates

Quick Start

Go from zero to compliant in 5 minutes.

EU AI Act deep dive

Full article-by-article mapping.