EU AI Act FAQ

Question 1

What is the EU AI Act and when did it come into force?

Accepted Answer

The EU Artificial Intelligence Act (AI Act) is the world's first comprehensive legal framework regulating artificial intelligence. Officially known as Regulation (EU) 2024/1689, it ensures AI systems placed on the EU market are safe, transparent, traceable, non-discriminatory, and environmentally friendly. The AI Act entered into force on August 1, 2024, with phased implementation: February 2, 2025 (prohibited practices), August 2, 2025 (GPAI obligations), August 2, 2026 (high-risk systems), and August 2, 2027 (product-embedded AI).

Question 2

Who does the EU AI Act apply to? (Extraterritorial Scope)

Accepted Answer

The EU AI Act applies to: (1) Providers - entities developing AI systems for the EU market; (2) Deployers - entities using AI systems in the EU; (3) Importers - EU entities placing non-EU AI on the market; (4) Distributors - supply chain entities making AI available; (5) Product Manufacturers - integrating AI into products. CRITICAL: The Act applies to non-EU companies if their AI is used in the EU or affects EU individuals. Non-EU providers must appoint an EU authorized representative. Juralex helps all entity types with compliance scanning and obligation mapping.

Question 3

What is the risk-based approach of the EU AI Act?

Accepted Answer

The EU AI Act employs a risk-based approach where regulatory intervention is proportionate to risk level. The core principle: THE HIGHER THE RISK, THE STRICTER THE RULES. Four tiers: (1) Unacceptable Risk - Banned outright; (2) High Risk - Strict compliance requirements; (3) Limited Risk - Transparency obligations only; (4) Minimal Risk - No mandatory requirements. This ensures innovation isn't hindered for low-risk applications while protecting fundamental rights for high-risk uses. Law firms must understand this framework to advise clients on AI procurement and liability exposure.

Question 4

What are the four risk categories under the EU AI Act?

Accepted Answer

UNACCEPTABLE RISK (Prohibited): Social scoring, subliminal manipulation, exploitation of vulnerabilities, real-time biometric ID in public, emotion recognition in workplace/education, predictive policing by profiling, biometric categorization for sensitive traits. HIGH RISK: Critical infrastructure, education systems, employment/recruitment AI, credit scoring, law enforcement AI, justice administration, migration/border control, medical devices. LIMITED RISK: Chatbots, deepfakes, emotion recognition (non-workplace), basic biometric categorization - transparency obligations only. MINIMAL RISK: Spam filters, AI games, simple automation - no requirements but voluntary codes encouraged. Law firm note: Client-facing legal tech tools often fall in limited-risk, but due diligence tools for regulated sectors may be high-risk.

Question 5

When do different parts of the EU AI Act take effect?

Accepted Answer

August 1, 2024 - Entry into Force. February 2, 2025 ✓ ACTIVE - Prohibited AI practices ban + AI literacy requirements. August 2, 2025 - GPAI model obligations apply; Member States designate authorities. August 2, 2026 - HIGH-RISK AI SYSTEMS (Annex III): Full compliance, CE marking, EU database registration required. August 2, 2027 - Product-embedded AI (Annex I), legacy GPAI compliance. Planning tip: Start compliance preparation NOW. High-risk systems need 12-18 months preparation. Law firms should advise clients to build compliance milestones into AI project timelines targeting August 2026 readiness.

Juralex Audit — EU AI Act Compliance Scanner

Company Information

Cookie Consent

AI Transparency Disclosure

Privacy Policy Summary

Lawful Basis for Processing (GDPR Article 6)

Data Subject Rights

Data Breach Notification

Data Protection Impact Assessment (DPIA)

Privacy by Design and by Default

Data Retention Periods

International Data Transfers

Data Processors

EU AI Act FAQ

Wyszukaj pytania

Filtruj według kategorii

What is the EU AI Act and when did it come into force?

Who does the EU AI Act apply to? (Extraterritorial Scope)

What is the risk-based approach of the EU AI Act?

What are the four risk categories under the EU AI Act?

When do different parts of the EU AI Act take effect?

Does the EU AI Act apply to non-EU companies?

What is the territorial scope of the EU AI Act?

What is an AI system under the EU AI Act?

Are there exemptions to the EU AI Act?

What is the official name and citation of the EU AI Act?

Masz jeszcze pytania?