AI Sigil Logo
Contact Us
Back to all insights
A compliance checklist

Sections

EU AI Act: Key Compliance Challenges Ahead

The EU AI Act Comes into Force: Implications for Compliance and Risk

On 2 February 2025, the European Union enacted significant provisions of its Artificial Intelligence Act (EU AI Act), which are now legally binding. This landmark legislation introduces critical obligations regarding prohibited AI practices and AI literacy requirements, setting a precedent for AI governance throughout the EU. The Act raises essential questions for businesses, AI developers, and regulators about compliance and enforcement.

Provisions Now in Force

The EU AI Act establishes a risk-based framework that categorizes AI systems into four tiers: unacceptable, high-risk, limited risk, and minimal risk. As of February 2025, the following provisions have been activated:

  • Prohibited AI Practices: Certain AI applications are banned due to their potential to violate fundamental rights. These include:
    • Subliminal Manipulation: AI systems designed to manipulate individuals beyond their conscious awareness, potentially causing harm.
    • Exploitation of Vulnerable Groups: AI targeting children, disabled individuals, or economically disadvantaged people in harmful ways.
    • Social Scoring: The use of AI to rank individuals based on behavior, socio-economic status, or personal characteristics, leading to discriminatory treatment.
    • Real-Time Biometric Identification in Public Spaces: Except in specific law enforcement scenarios, the use of AI for biometric surveillance is largely prohibited.
  • AI Literacy Requirements: Companies deploying AI in high-risk sectors must ensure that affected individuals understand how these systems function, their limitations, and how to challenge automated decisions.

Who Must Comply?

The provisions in force apply to AI developers, deployers, and service providers operating within the EU or offering AI-based services to EU citizens. This includes:

  • AI Developers: Companies creating AI tools, particularly in sensitive areas such as biometric surveillance, predictive policing, or automated decision-making.
  • Businesses and Public Sector Organizations: Those employing AI in sectors like finance, healthcare, recruitment, public services, and law enforcement must align with the new obligations.
  • Non-EU Companies: The extraterritorial scope of the EU AI Act means that any company offering AI services within the EU must also comply, similar to the General Data Protection Regulation (GDPR).

Implications for Compliance

Organizations affected by the new rules must take immediate steps to:

  • Conduct AI Risk Assessments: Businesses should audit their AI models to ensure compliance with prohibitions and literacy requirements.
  • Implement AI Transparency Measures: AI deployers must provide clear information to end users about how AI decisions are made and their rights to contest them.
  • Enhance Internal Governance: Establishing AI ethics committees, compliance teams, and risk mitigation strategies is essential.

Non-compliance could lead to severe financial penalties, with fines reaching up to €35 million or 7% of global annual turnover, underscoring the EU’s strict stance on AI governance.

Challenges, Risks, and Legal Uncertainty

Despite the Act’s clear prohibitions, significant challenges remain:

  • Interpretation and Enforcement Gaps: Regulators must clarify how “subliminal manipulation” or “exploitation of vulnerabilities” will be assessed.
  • Impact on Innovation: Restrictions on biometric surveillance and AI-driven social scoring may hinder AI development in security and financial technology sectors.
  • Enforcement Capacity: National regulators may struggle to monitor compliance effectively, especially as AI technology evolves rapidly.
  • Diverging Global Regulations: The EU’s AI governance model differs from approaches in the United States and China, complicating compliance for multinational companies.

What Comes Next?

While the banned AI practices and literacy requirements are now binding, additional provisions for high-risk AI systems and general-purpose AI models will come into force in phases over the next few years. Organizations must remain proactive in monitoring legal updates and refining their AI governance strategies. The activation of these provisions signals the EU’s commitment to responsible AI development, but also introduces regulatory uncertainty. As enforcement mechanisms evolve and legal interpretations solidify, companies operating in the AI sector must remain agile in adapting to this changing regulatory landscape.

More Insights

A lock and key

Hungary’s Biometric Surveillance: A Threat to Rights and EU Law

April 30, 2025 AI,AI Compliance,AI Regulation,Legal Implications
Hungary's recent amendments to its surveillance laws allow the police to use facial recognition technology for all types of infractions, including minor ones, which poses significant risks to...
Read More
A magnifying glass

Europe Faces Pressure to Abandon AI Regulation Amid U.S. Influence

April 30, 2025 AI,AI Governance,AI Regulation,International Policy
The Trump administration is urging Europe to abandon a proposed AI rulebook that would impose stricter standards on AI developers. The U.S. government argues that these regulations could unfairly...
Read More
A safety helmet

Avoiding AI Compliance Pitfalls in the Workplace

April 30, 2025 AI,AI Compliance,AI Regulations,Regulatory Compliance
In the rapidly evolving landscape of artificial intelligence, organizations must be vigilant about compliance to avoid significant legal and operational pitfalls. This article provides practical...
Read More
A shield

Mastering AI Governance: Essential Strategies for Brands and Agencies

April 30, 2025 AI,AI Ethics,AI Governance,Technology Policy
AI governance is essential for brands and agencies to ensure that artificial intelligence systems are used responsibly, ethically, and effectively. It involves processes and policies that mitigate...
Read More
A double-edged sword

AI Agents: Balancing Innovation with Accountability

April 30, 2025 AI,AI Ethics,AI Regulation,AI Security
Companies across industries are rapidly adopting AI agents, which are generative AI systems designed to act autonomously and make decisions without constant human input. However, the increased...
Read More
A robotic hand reaching for a globe

UAE’s Pioneering Approach to AI Governance

April 30, 2025 AI,AI Governance,Artificial Intelligence Governance,Technology Policy
Experts indicate that the United Arab Emirates is experiencing a shift towards institutionalized governance of artificial intelligence. This development aims to ensure that AI technologies are...
Read More
A blank checklist

US Pushes Back Against EU AI Regulations, Leaving Enterprises to Set Their Own Standards

April 29, 2025 AI,AI Regulation,International Policy,Regulatory Frameworks
The US is pushing to eliminate the EU AI Act's code of practice, arguing that it stifles innovation and imposes unnecessary burdens on enterprises. This shift in regulatory responsibility could...
Read More
A network of interconnected gears

Big Tech’s Vision for AI Regulations in the U.S.

April 29, 2025 AI,AI Governance,AI Regulation,Global AI Policy
Big Tech companies, AI startups, and financial institutions have expressed their priorities for the U.S. AI Action Plan, emphasizing the need for unified regulations, energy infrastructure, and...
Read More
A digital lock

Czechia’s Path to Complying with EU AI Regulations

April 29, 2025 AI,AI Regulation,EU Compliance,Regulatory Frameworks
The European Union's Artificial Intelligence Act introduces significant regulations for the use of AI, particularly in high-risk areas such as critical infrastructure and medical devices. Czechia is...
Read More

Ready to become AI compliant?

Take the first steps in your transformation towards international AI compliance.

Book a Discovery Call See Frameworks

Explore

Need More Assistance?

Our expert sales team is here to answer your questions, just leave your email and we’ll get in touch.

Research & Market Studies
A digital energy meter
AI Safeguards: A Step-by-Step Guide to Building Robust Defenses
As AI becomes more powerful, protecting against its misuse is critical. This requires well-designed "safeguards"...
A light bulb
Algorithmic Audits: A Practical Guide to Fairness, Transparency, and Accountability in AI
Algorithmic auditing is crucial for ensuring AI systems are fair, transparent, and accountable. A comprehensive...
A compass
AI Explainability: A Practical Guide to Building Trust and Understanding
As AI systems exert increasing influence over our lives, understanding how they arrive at conclusions...
A shield symbolizing protection against unregulated AI practices.
AI Governance: Transparency, Ethics, and Risk Management in the Age of AI
AI is rapidly transforming society, creating both opportunities and risks. A proposed AI governance framework...
Latest News on AI Compliance
A networked globe illustrating the global implications of AI in legal systems.
AI in Lawmaking: The UAE’s Revolutionary Approach
The United Arab Emirates has become the first country to officially use AI in the...
A pair of intertwined gears illustrating the collaboration and interdependence required between privacy and IT sectors to drive AI adoption.
Bridging the Gap: Enhancing Collaboration Between Privacy and IT in AI Adoption
At IAPP’s Global Privacy Summit, industry leaders emphasized the urgent need for collaboration between privacy...
A community map
DeepSeek: AI’s Role in Shaping China’s Social Governance
DeepSeek, a new large language model in China, is being utilized to enhance social governance...
A shield
Guidelines for Prohibited AI Practices Under the EU AI Act
The EU Commission has published guidelines outlining prohibited AI practices under the AI Act, which...

© 2023 AI Sigil

Medium Envelope