AI Sigil Logo
Contact Us
Back to all insights
A lock and key set illustrating the security and control over AI technologies required by the EU AI Act.

Sections

Preparing for the EU AI Act: Essential Steps for CIOs

How CIOs Can Prepare for EU AI Act Enforcement

The countdown to full enforcement of the European Union’s AI Act is progressing steadily, with the initial rules starting to apply. This act, which includes prohibitions on unacceptable use cases and AI literacy obligations, is set to come into effect for most organizations by next August, with enforcement commencing the following year. Many businesses are already perceived to be behind the curve, as outlined by industry experts.

According to a report, “The state of readiness is not great,” indicating that organizations are still grappling with the implications of the act. CIOs and technology leaders play a crucial role in steering their organizations toward compliance, which encompasses keeping pace with evolving requirements, managing vendors, and conducting risk assessments.

Failure to comply with the act can result in fines of up to $37.9 million (35 million euros), depending on the severity and duration of the infringement. Notably, providing incomplete or misleading information to enforcers can incur penalties of $8.1 million (7.5 million euros). These regulations are applicable to all businesses operating and serving customers within the EU, irrespective of their headquarters location.

Where to Start

Though the majority of the provisions will not fully activate for over a year, experts recommend that organizations do not adopt a wait-and-see approach. The implementation of the General Data Protection Regulation (GDPR) serves as a cautionary tale; many organizations only began addressing compliance in the last three months leading up to the deadline, resulting in a frantic rush to meet requirements.

CIOs can facilitate their organizations’ compliance with the EU AI Act, even if efforts have not yet begun. Starting promptly is crucial, as indicated by experts who suggest that initial actions should include:

  • Cataloging AI uses
  • Organizing a compliance team
  • Creating an AI literacy initiative

Identifying each instance of AI use is vital to ascertain whether a company’s applications fall under the EU’s list of prohibited uses. This step has proven effective for many large organizations.

Collaboration across departments is essential, as AI is often integrated throughout a business. This has led many organizations to form multidisciplinary teams to promote shared accountability in compliance efforts.

Vendor Management

As organizations develop their compliance strategies, managing vendor relationships becomes increasingly important. The shift toward in-house developed generative AI tools has grown, yet a significant portion of AI usage still relies on third-party vendors. This creates added complexity, particularly as vendors continue to enhance their offerings with AI capabilities.

CIOs have expressed concerns regarding AI washing and vendor-driven AI hype. The emergence of new features necessitates careful tracking to ensure compliance. It is imperative that businesses assess not just the products but also the individual features within them, and many vendors have yet to provide comprehensive lists of all AI systems in their products.

Moreover, organizations should be cautious about default settings when upgrading software, as compliance gaps can arise if vendors activate AI features automatically without explicit approval. Ensuring that vendors disable features by default can mitigate many compliance risks.

Keeping Up with Compliance

As organizations navigate the compliance landscape, it is equally important to establish a system for monitoring regulatory developments. Experts advocate for creating an internal timeline of key milestones and staying informed on the evolving legal landscape.

Various vendors and organizations are positioning themselves as resources to assist companies in achieving and maintaining compliance. Tools such as the EU AI Act assessment tool and platforms for conformity assessments are emerging to support enterprises in this transition.

Maintaining compliance with AI regulations is not a one-time endeavor; it requires ongoing monitoring, updates, and a structured process to ensure adherence to the evolving legal requirements.

Ultimately, organizations that prioritize compliance and transparency are more likely to find themselves in advantageous positions in the face of new regulations. Establishing robust processes for data management and accountability will provide a solid foundation for navigating future regulatory challenges.

More Insights

A magnifying glass focused on a circuit board to illustrate the detailed examination of AI workflows in user experience research.

Responsible AI Workflows for Transforming UX Research

September 10, 2025 AI,AI Ethics,AI Governance
The article discusses how AI can transform UX research by improving efficiency and enabling deeper insights, while emphasizing the importance of human oversight to avoid biases and inaccuracies. It...
Read More
A futuristic bank building with integrated AI technology

Revolutionizing Banking with Agentic AI

September 10, 2025 AI,AI Regulation,Financial Technology
Agentic AI is transforming the banking sector by automating complex processes, enhancing customer experiences, and ensuring regulatory compliance. However, it also introduces challenges related to...
Read More
A transparent blockchain model

AI-Driven Compliance: The Future of Scalable Crypto Infrastructure

September 10, 2025 AI,AI Compliance,AI Governance,Regulatory Compliance
The explosive growth of the crypto industry has brought about numerous regulatory challenges, making AI-native compliance systems essential for scalability and operational efficiency. These systems...
Read More
A bridge model illustrating the connection and collaboration needed in AI governance across different nations.

ASEAN’s Evolving AI Governance Landscape

September 10, 2025 AI,AI Governance,Global AI Policy,Regulatory Frameworks for AI
The Association of Southeast Asian Nations (ASEAN) is making progress toward AI governance through an innovation-friendly approach, but growing AI-related risks highlight the need for more binding...
Read More
A magnifying glass illustrating the importance of scrutiny and oversight in AI implementation.

EU AI Act vs. US AI Action Plan: A Risk Perspective

September 5, 2025 AI,AI Regulation,EU AI Compliance,Regulatory Frameworks
Dr. Cari Miller discusses the differences between the EU AI Act and the US AI Action Plan, highlighting that the EU framework is much more risk-aware and imposes binding obligations on high-risk AI...
Read More
A maze

The Hidden Risks of AI Integration in the Workplace

September 4, 2025 AI,AI Ethics,AI Regulation Awareness,Business Impact
As organizations rush to adopt AI, many are ignoring the critical risks involved, such as compliance and oversight issues. Without proper governance and human management, AI can quickly become a...
Read More
A safety net

Investing in AI Safety: Capitalizing on the Future of Responsible Innovation

September 4, 2025 AI,AI Ethics,AI Governance,AI Safety Regulations
The AI safety collaboration imperative is becoming essential as the artificial intelligence revolution reshapes industries and daily life. Investors are encouraged to capitalize on this opportunity by...
Read More
A robotic police dog used for patrol and assistance.

AI Innovations in Modern Policing

September 4, 2025 AI,AI Ethics,AI Governance,AI Regulation
Law enforcement agencies are increasingly leveraging artificial intelligence to enhance their operations, particularly in predictive policing. The integration of technology offers immense potential...
Read More
A handshake figurine representing collaboration and partnership in international agreements.

Kenya’s Pivotal Role in UN’s Groundbreaking AI Governance Agreement

September 4, 2025 AI,AI Governance,International Policy
Kenya has achieved a significant diplomatic success by leading the establishment of two landmark institutions for governing artificial intelligence (AI) at the United Nations. The Independent...
Read More