EU AI Act Guide

EU AI Act requirements

EU AI Act requirements depend on the system, the company role and the risk context. A useful readiness process identifies which obligations may matter before assigning implementation work.

Run the diagnostic first

Operational information, not legal advice.

Obligation evidence map

EU AI Act Requirements

01

Obligation

Identify which obligation, control area or governance requirement is triggered.

02

Evidence

Define which document, record, process proof or artifact must support the claim.

03

Owner

Assign the team or role responsible for keeping the evidence current.

04

Review point

Set the point where evidence must be reviewed before implementation continues.

Strategic answer

EU AI Act requirements depend on role, risk and operating context.

There is no useful single checklist without context. Requirements should be mapped from the AI system, intended purpose, company role, risk category, data context, oversight model and documentation needs.

Start with the EU AI Act Diagnostic, turn findings into an implementation plan, and see how the diagnostic works as a reference app on M13.

Exposure focus

What requirements depend on

  • Whether the AI system is in scope.
  • Whether the company acts as provider, deployer or another actor.
  • Whether the use case shows high-risk or sensitive-domain indicators.
  • Whether transparency, oversight, monitoring or technical documentation is required.

First action

What to do first

  1. 01Identify the AI system and its intended purpose.
  2. 02Clarify role and EU exposure.
  3. 03Run risk triage before assigning controls.
  4. 04Map requirements into a realistic implementation plan.

This page provides operational information for AI governance readiness. It is not legal advice.