AI Act — compliance

The AI Act is here. Is your company ready?

From 2 August 2026, AI Act obligations are fully enforced. They also apply to companies that “merely use” off-the-shelf AI tools.

2 Aug 2026

full enforcement of the AI Act (Reg. EU 2024/1689)

EUR 35M

or 7% of turnover — maximum fines (AI Act, Art. 99)

67%

of companies don't understand their obligations (industry estimates)

>50%

of companies have uncontrolled “shadow AI” (industry estimates)

How we help

Compliance as a process, not a binder.

We don't produce documents for a drawer. We build a working compliance system: inventory, classification, documentation and oversight that survive an inspection and the next regulatory change.

Compliance audit

A review of every AI system and tool in the organisation — including the ones IT doesn't know about.

Mapping & classification

Assigning each system to its AI Act risk category and the obligations that follow.

Technical documentation

Documentation for high-risk systems: data, architecture, oversight, event logging.

“AI literacy” training

Mandatory AI competence for employees (Article 4) — practical, not academic.

Governance & human oversight

AI usage policies, roles and responsibilities, human oversight procedures.

FAQ

Common questions about the AI Act

We only use ChatGPT and Copilot. Does the AI Act apply to us?

Yes. As a “deployer” you have obligations: ensuring employees' AI literacy (Article 4), overseeing how AI is used and — depending on the use case — further requirements. The key is establishing what AI is really used for in your company, including “shadow AI”.

What are the real consequences of non-compliance?

Where should we start?

What is “shadow AI” and why is it a risk?

How long does a compliance audit take?

Little time remains before full AI Act enforcement.

A compliance audit closes the inventory and classification topic within weeks — and gives you an action plan right away.

Book an AI Act audit