Pricing
    About UsCareersContactPartnersPressStatus
    Start FreeLog in
    EU AI Act Guide

    The EU AI Act
    Explained

    The world's first comprehensive AI regulation. Understand the requirements, timeline, and what it means for your organization.

    Check ComplianceDownload Guide
    Overview

    What is the EU AI Act?

    The EU AI Act (Regulation 2024/1689) is the world's first comprehensive legal framework for artificial intelligence. Adopted in 2024, it establishes requirements for AI systems based on their potential risk to people's safety and fundamental rights.

    The Act takes a risk-based approach, categorizing AI systems into four levels: unacceptable risk (prohibited), high-risk (strict requirements), limited risk (transparency obligations), and minimal risk (no specific requirements).

    Unlike sector-specific rules, the EU AI Act applies horizontally across industries and affects providers, deployers, importers, and distributors of AI systems in the EU market—regardless of where they're based.

    Applies EU-Wide

    All 27 member states

    All Industries

    Horizontal regulation

    Risk-Based

    Proportional requirements

    Key Compliance Deadlines

    The EU AI Act phases in over several years. Know what's required and when.

    August 1, 2024

    EU AI Act Enters into Force

    The EU AI Act officially enters into force, starting the clock on compliance deadlines.

    February 2, 2025

    Prohibited Practices + AI Literacy

    Prohibitions on unacceptable AI practices take effect. AI literacy obligations for staff begin.

    Act Now
    August 2, 2025

    GPAI + Governance Rules

    General Purpose AI (GPAI) obligations and governance framework rules apply.

    August 2, 2026

    Most Obligations Apply

    Most EU AI Act obligations become enforceable, including deployer duties for high-risk AI.

    August 2, 2027

    Extended Transition Ends

    Extended transition period ends for high-risk AI embedded in regulated products (Annex I).

    Swipe to see more →

    Prohibited Practices

    What's Banned Under Article 5

    These AI practices are completely prohibited in the EU as of February 2, 2025.

    Manipulative or Deceptive AI

    AI systems using subliminal techniques or deception to distort behavior and cause harm.

    Exploitation of Vulnerabilities

    AI exploiting vulnerabilities (age, disability, social situation) to distort behavior harmfully.

    Social Scoring

    AI systems evaluating individuals based on social behavior for unrelated detrimental treatment.

    Criminal Profiling

    AI predicting criminal offenses based solely on profiling or personality traits.

    Untargeted Facial Scraping

    Creating facial recognition databases by untargeted scraping from internet/CCTV.

    Workplace/Education Emotion AI

    Emotion recognition AI in workplace or education settings (with limited exceptions).

    Biometric Categorization

    AI inferring sensitive attributes (race, political opinions, etc.) from biometrics.

    Real-time Biometric ID

    Real-time remote biometric identification in public spaces for law enforcement (with exceptions).

    Annex III Categories

    High-Risk AI Categories

    AI systems used in these areas are classified as high-risk and face strict requirements.

    Biometrics

    Remote biometric identification and categorization

    Critical Infrastructure

    Safety components of critical infrastructure

    Education & Training

    Access to education and vocational training

    Employment

    Recruitment, worker management, access to self-employment

    Essential Services

    Credit, insurance, healthcare access, benefits

    Law Enforcement

    Risk assessment, evidence, crime prediction

    Migration & Border

    Visa, asylum, border control applications

    Justice & Democracy

    Court support, election-related systems

    Key Obligations

    What Deployers Must Do

    Most SMEs are deployers (users of AI), not providers. Here are your key obligations.

    AI System Inventory

    Document all AI systems with detailed records of purpose, ownership, and usage.

    Risk Classification

    Classify each AI system by risk level: prohibited, high-risk, limited, or minimal.

    Human Oversight

    Assign competent persons to oversee AI operation with authority to intervene.

    Transparency

    Inform users when interacting with AI and mark synthetic content appropriately.

    Logging & Records

    Maintain logs and records for at least 6 months for high-risk AI systems.

    Incident Reporting

    Report serious incidents and cooperate with authorities when required.

    Learn More

    Official Resources

    Access the official EU AI Act text and supporting documentation from the European Commission.

    Full EU AI Act Text (EUR-Lex)European Commission AI Policy
    Download Compliance TemplatesRead FAQ

    Ready to Get Compliant?

    Klarvo makes EU AI Act compliance simple. Start documenting your AI systems today.

    Start FreeLearn More
    No credit card
    14-day trial
    Cancel anytime