EU AI Act Readiness
Navigate the EU AI Act with confidence — classification, gap analysis, and a clear path to compliance
The EU AI Act is in force. High-risk AI systems require conformity assessments, technical documentation, human oversight mechanisms, and registration. Non-compliance carries fines of up to 7% of global annual turnover. Most organisations have not yet determined which of their systems fall within scope.
The problem we solve
The EU AI Act is the world’s first comprehensive legal framework governing AI systems. It is already in force and introduces significant obligations for organisations operating in or selling to the EU — including risk classification, technical documentation requirements, conformity assessments, human oversight mechanisms, and registration obligations for high-risk systems.
Non-compliance with the most serious provisions carries fines of up to 7% of global annual turnover. Many organisations have not yet determined which of their AI systems fall within scope, let alone what the compliance path looks like.
How it works
Step 1: Scoping and classification
We work through your complete AI system inventory and apply EU AI Act Annex III criteria to determine which systems are in scope, how they are classified (prohibited, high-risk, limited-risk, or minimal-risk), and what obligations apply to each.
Step 2: Gap analysis
For each in-scope system, we assess the current state against the specific requirements that apply — technical documentation, data governance, accuracy and robustness testing, human oversight mechanisms, transparency obligations, and registration requirements. We identify exactly what is missing and how significant each gap is.
Step 3: Remediation roadmap
We produce a prioritised roadmap that sequences compliance activities by risk and urgency, assigns ownership, and sets realistic timelines. High-risk systems requiring conformity assessments are addressed first.
Step 4: Readout and handover
A structured readout session with your legal, technical, and leadership stakeholders ensures the findings and roadmap are understood and adopted. Full documentation is handed over for internal use and future audit reference.
Who this is for
Companies with EU operations, EU customers, or AI systems that may fall under EU AI Act scope
Organisations with AI systems in categories likely to be classified as high-risk under Annex III
Legal and compliance teams that need a structured, defensible approach to EU AI Act compliance
Technology companies whose enterprise clients are beginning to require EU AI Act compliance evidence
Frequenly asked questions
Does the EU AI Act apply to us if we are based outside the EU?
If your AI systems are used in the EU, affect EU residents, or are deployed by organisations operating in the EU, the Act likely applies regardless of where your company is based. The extraterritorial scope is broad.
How do we know if our AI systems are high-risk?
High-risk systems are defined in Annex III of the EU AI Act and cover specific categories including AI in recruitment, credit decisions, law enforcement, education, healthcare, and critical infrastructure. Classification requires a structured assessment — which is precisely what this service delivers.
How long does the readiness assessment take?
Typically 4–6 weeks for a mid-market organisation with multiple AI systems. Simpler scopes can be completed faster.
What is the difference between this service and the AI Risk Assessment?
The AI Risk Assessment covers multiple frameworks (EU AI Act, NIST AI RMF, ISO 42001) and provides a broad view of your governance posture. EU AI Act Readiness is a deeper, regulation-specific engagement focused exclusively on compliance with the EU AI Act and its specific technical and documentation requirements.
What happens after the readiness assessment?
Depending on findings, clients typically move into governance framework development, technical documentation work, or compliance monitoring. We scope the next steps as part of the handover session.
Ready to get ahead of the EU AI Act?
The organisations best positioned for EU AI Act compliance are the ones that started before the deadline. Book a discovery call and we will determine whether your systems are in scope and what your compliance path looks like.
