AI Act Compliance for Non-EU Companies
The Act applies to any organisation whose AI system affects people in the EU, regardless of where the company is based. Extraterritorial scope explained.
Read more →Articles
Practical guidance on EU AI Act compliance for businesses with customer-facing AI systems.
Prohibited AI Practices That Are Already Banned
Social scoring, manipulative AI, real-time biometric surveillance — these prohibitions took effect in February 2025. Are you sure none of your systems qualify?
Read more →How to Write Instructions for Use That Actually Comply With Annex IV
Providers of high-risk AI systems must supply deployers with detailed usage instructions. Most current documentation falls short of what the Act requires.
Read more →Post-Market Monitoring: What Happens After You Deploy
Article 72 requires ongoing surveillance of your AI system in production. Logging, drift detection, incident triggers — the compliance work doesn't stop at launch.
Read more →Serious Incident Reporting Under Article 73
If your AI system causes harm, you have reporting obligations with tight timescales. What counts as a serious incident and who you need to notify.
Read more →GDPR and the AI Act: Where They Overlap and Where They Don't
Both regulate data, both carry massive fines, but they cover different ground. How to handle compliance for both without duplicating work.
Read more →General-Purpose AI Models: What the EU AI Act Means for GPT Wrappers
If you've built a product on top of a foundation model, you inherit obligations. What GPAI transparency requirements mean for your wrapper.
Read more →Building a Compliance Team When You Don't Have One
Most mid-sized companies don't have a dedicated AI governance function. How to distribute responsibilities across legal, engineering, and product.
Read more →The Role of Harmonised Standards (and Why None Exist Yet)
The Act references standards that haven't been written. How to demonstrate compliance in the gap between regulation and standardisation.
Read more →AI Literacy Training: Article 4's Overlooked Obligation
Every organisation using AI must ensure staff have sufficient AI literacy. What 'sufficient' means and how to document it.
Read more →