Skip to contentSkip to content
AI governance dashboard background
EU AI Act — providers & deployers

EU AI Act compliance that keeps your AI deployable

Scope your AI systems, classify risk, and build the documentation, governance, and controls you’ll need — without freezing product delivery.

In-scope inventory in ~2–4 weeksHigh-risk mapped to obligationsEvidence pack for audits & DD

No automated signup flows — just discovery + a clear proposal aligned to your AI roadmap.

Outcomes

Compliance outcomes you can prove

Evidence-led delivery designed for audits, procurement, and regulator expectations.

Clear scope & risk map

Inventory of AI systems, mapped to EU AI Act roles (provider, deployer, importer) and risk categories (prohibited, high-risk, limited, minimal).

Evidence-ready documentation

Technical documentation, policies, and records structured so you can answer regulators, enterprise customers, and internal audit quickly.

Operational compliance

Practical workflows for monitoring, incident management, and continuous improvement that work with your product and data teams.

Designed for AI systems touching users in or targeting the EU marketBuilt with security, privacy, and fundamental rights in mind

Scope

What’s included as standard

Practical deliverables that your product, data, and legal teams can maintain.

AI system inventory & classification

Identify AI systems, map roles (provider/deployer), and classify risk in line with the EU AI Act.

Risk management & governance

Risk management framework, governance cadence, and documentation you can actually maintain.

Technical file & documentation

Structure for technical documentation, logs, and records expected for in-scope and high-risk systems.

Stakeholder & buyer readiness

Support with due diligence questionnaires, security reviews, and explaining your AI controls to customers.

Fundamental rights & data protection

Alignment with GDPR, DPIAs/FRIAs, and controls around training data and model behaviour.

Post-market monitoring basics

Issues and incidents intake, escalation paths, and tracking improvements over time.

Clarity

How we work in practice

Clear delivery expectations — and what typically fails elsewhere.

CapabilityOur approachTypical alternatives
Scoping your AI systemsStructured inventory & clear map of in-scope AI systems.Ad-hoc list in a spreadsheet.
Risk classificationAligned to EU AI Act categories with rationale recorded.Vague labels with no link to the Act.
DocumentationTechnical file structure engineering + legal can maintain.Dense memos or scattered pages.
Impact on deliveryFits sprint cycles and roadmap sequencing.Big-bang compliance that stalls shipping.
Audit & buyer readinessEvidence pack for regulators and enterprise buyers.Last-minute scramble for questionnaires.

FAQ

Questions, answered

We’re not sure if we’re even in scope of the EU AI Act.
That’s normal. We start with scoping + an AI system inventory to determine your role (provider/deployer/importer/distributor) and the applicable risk categories.
We mostly use third-party AI (APIs, SaaS). Does this still matter?
Yes. Even if you don’t train models, you may be a deployer of in-scope (including high-risk) AI and still have obligations around use, monitoring, and transparency.
Will this slow down product delivery?
We fit the work to sprint cadence. We prioritise in-scope and higher-risk systems first, then layer in governance and documentation without blocking releases.
How does this fit with GDPR / security work?
We align EU AI Act controls with GDPR, DPIAs/FRIAs, and security practices so you avoid duplication—especially around data, logging, access, and incidents.

Next step

Request EU AI Act support

Share your AI systems, markets, and timelines. We’ll scope what the EU AI Act means for you and reply with a clear proposal.

What we’ll ask for
  • What AI systems exist (or are planned) and who they affect
  • Your role: provider, deployer, or both
  • Where AI is used (user-facing, internal, scoring, monitoring)
  • Deadlines: procurement, launch, audits, regulatory questions

For now this opens your email client pre-filled. You can wire it to a backend or CRM later.

Your role under the EU AI Act
Stage of your AI systems

We typically respond within one business day.