EU AI Act
The world’s first AI regulation, setting rules for the design, development, and deployment of AI systems across the EU.
- In application
- Phased 2024–2026
- Who this affects
- Providers, deployers, importers, distributors
- Enforcement & penalties
- Up to €35M or 7% global turnover
High-risk requirements from mid-2026
Includes GPAI/foundation models & transparency duties
Varies by infringement type and role
What we offer
Targeted, high-impact services to get you compliant fast.
Obligations
AI system classification
Identify whether your AI system is prohibited, high-risk, limited-risk, or minimal-risk, applying the Annex III criteria and relevant exemptions.
High-risk system compliance
Implement and document risk management, data governance, transparency, human oversight, and post-market monitoring measures as per Annex IV.
General-purpose AI duties
Meet transparency, technical documentation, and model evaluation requirements for general-purpose AI and foundation models.
Deployers’ responsibilities
Conduct conformity checks, maintain use logs, provide user instructions, and monitor systems for compliance throughout their lifecycle.
And more, depending on role and risk tier
Why now
Early preparation advantage
Build compliance into your roadmap now to avoid costly rework later.
Market trust
Clients and partners will expect AI Act compliance as a baseline.
Avoid severe penalties
Non-compliance risks significant fines and market exclusion.
Comply. Compete. Lead with AI you can trust.
We design AI Act compliance programmes that fit your organisation and generate audit-ready proof you can stand behind.
Talk to usHow we work - Turning complex EU rules into clear competitive advantage
Compliance should enable growth. We align legal, technical, and product teams to reduce risk and unlock speed

Assess
We map business model, risk appetite, data flows, and AI use cases to pinpoint obligations (AI Act, GDPR, sector rules) and surface quick wins vs. critical gaps. You get a concise findings brief and a prioritised plan with effort/impact/timelines.
Implement
We co-create the controls that matter: AI policy, risk & human oversight, privacy by design, vendor governance, and approvals—plus an ISO/IEC 42001-aligned AI Management System, Annex IV technical documentation, DPIAs, and RoPA where needed.
Sustain
Before go-live we validate controls, align owners, and set KPIs. We run tabletop exercises, verify human-in-the-loop, and check transfer/vendor safeguards end-to-end. Handover includes an audit-ready pack and a pragmatic maintenance cadence.
- View detailed process →
Booking - Request your session
Share your goals with us and discover how we can guide you through complex compliance requirements.