Skip to content

Key Things You Need To Know About the EU AI Act

Table of Contents

In Short

  • The EU AI Act categorises AI systems by risk levels (unacceptable, high, limited, minimal) and imposes compliance requirements based on risk.
  • The Act applies to EU and non-EU businesses whose AI affects EU individuals, with potential fines up to €35 million or 7% of global turnover.
  • Early compliance preparation is essential to avoid penalties.

Tips for Businesses

Evaluate all AI systems your business uses or supplies to check their compliance with the EU AI Act. Categorise them by risk and adapt practices accordingly. Legal advice can be valuable to navigate the Act’s complexity and ensure your business meets requirements.

Artificial intelligence (AI) tools are increasingly prevalent and used across various industries worldwide. However, the rapid growth of AI technologies has also raised some serious concerns about matters such as AI safety, ethics, and transparency. In response to such concerns, the European Union introduced the EU AI Act, the first comprehensive legislation regulating AI systems. This landmark law, which recently came into effect, is designed to ensure that AI is developed and used safely and transparently. This article will explore critical things your business should know about the EU AI Act and its business implications.

What is the EU AI Act?

The EU AI Act is a law which categorises AI systems based on their potential risk to human rights and safety. The law classifies these systems into various risk categories- unacceptable, high, limited, and minimal or no risk. Unacceptable risk systems, such as real-time biometric surveillance and social scoring, are banned entirely. High-risk systems (which include AI in law enforcement, healthcare, and critical infrastructure) are subject to stringent requirements, including risk management, transparency, and human oversight. Systems classified as limited or minimal risk must comply with transparency rules, although they face fewer regulatory rules.

How Will the EU AI Act Impact Business?

If your business is part of the AI value chain (e.g., as a provider, deployer, distributor, or importer), you will need to assess whether your AI systems fall within the scope of the EU AI Act. High-risk systems will be the most affected.

Businesses (depending on their activities and use of AI) may need to take various compliance-related steps, including implementing risk management systems, ensuring transparency, complying with codes of practice, and enabling human oversight throughout the AI system’s lifecycle. Businesses must also keep records of the AI’s performance and take immediate corrective action if issues arise.

For limited-risk systems (such as chatbots), businesses must ensure transparency by informing users that they are interacting with AI. Even if your systems pose minimal risk, complying with best practices and voluntary guidelines can help businesses improve trust and minimise any regulatory risks in the future.

Your business needs to remember that while this is EU law, it does not just apply to European companies. The EU AI Act also applies to businesses outside the EU if their AI systems affect individuals within the EU. 

For instance, as a UK business, you must comply with the EU AI Act if you supply AI systems to the EU market or if your AI systems are used within the EU. This extraterritorial reach mirrors the GDPR’s reach, meaning your company could face fines for non-compliance, even if you operate outside the EU. If your UK business falls within the law’s scope, you must ensure that your AI practices align with the EU AI Act’s requirements to avoid these consequences.

Front page of publication
GDPR Essentials Factsheet

This factsheet sets out how your business can become GDPR compliant.

Download Now
Continue reading this article below the form
Need legal advice?
Call 0808 196 8584 for urgent assistance.
Otherwise, complete this form and we will contact you within one business day.

What are the Penalties for Non-Compliance?

Non-compliance with the EU AI Act can result in severe financial penalties similar to those imposed by the GDPR. If you use prohibited AI systems, your business could face fines of up to €35 million or 7% of global annual turnover. Less severe breaches could still give rise to significant penalties of up to €15 million or 3% of global turnover. It is, therefore, crucial to understand any obligations applicable to your business and prepare for compliance to avoid potentially severe financial consequences.

What Should Your Business Do to Comply with These Rules?

The EU AI Act was recently introduced, and most provisions will apply in stages, with specific prohibitions already in effect. Your business should begin by identifying all AI systems you use or supply and whether they fall within the EU AI Act’s scope and requirements. You will then need to determine which risk categories your AI systems fall into and understand and implement your obligations accordingly.

Depending on your specific activities and their risk, you may need to implement various actions, from staff training and allocating responsibilities for compliance to updating your AI policies and procedures and reviewing your contracts.

Given the significant length and complexity of the requirements under this new law, businesses should consider seeking legal advice early to clarify their obligations and ensure compliance before engaging with the EU market. 

Key Takeaways

The EU AI Act introduced a landmark regulatory framework with strict requirements for AI systems. Non-compliance can lead to significant penalties, including fines of up to €35 million or 7% of global annual turnover. Your business should evaluate its AI systems and determine whether its activities fall within the scope of the law. It should also implement the necessary procedures to comply with the law.

If you need advice on how the EU AI Act may apply to your business, our experienced data and privacy lawyers can assist you as part of our LegalVision membership. For a low monthly fee, you will have unlimited access to lawyers to answer your questions and draft or review your documents. Call us today on 0808 196 8584 or visit our membership page.

Frequently Asked Questions

What is the EU AI Act?

The EU AI Act is a legal framework that regulates the development, use, and distribution of AI systems in the European Union. It categorises AI systems by risk levels and imposes various obligations on businesses to make AI systems safe and transparent.

What are the potential financial penalties for non-compliance with this law?

Penalties for non-compliance with the EU AI Act can be severe. Fines for using prohibited AI systems can reach up to €35 million or 7% of global annual turnover. For less serious breaches, fines can still be as high as €15 million or 3% of global turnover.

Register for our free webinars

Preparing Your Business For Success in 2025

Online
Ensure your business gets off to a successful start in 2025. Register for our free webinar.
Register Now

2025 Employment Law Changes: What Businesses Should Know

Online
Ensure your business stays ahead of 2025 employment law changes. Register for our free webinar today.
Register Now

Buying a Tech or Online Business: What You Should Know

Online
Learn how to get the best deal when buying a tech or online business. Register for our free webinar.
Register Now

How the New Digital and Consumer Laws Impact Your Business

Online
Understand how the new digital and consumer laws affect your business. Register for our free webinar.
Register Now
See more webinars >
Sej Lamba

Sej Lamba

Sej is an Expert Legal Contributor at LegalVision. She is an experienced legal content writer who enjoys writing legal guides, blogs, and know-how tools for businesses. She studied History at University College London and then developed a passion for law, which inspired her to become a qualified lawyer.

Qualifications: Legal Practice Course, Kaplan Law School; Graduate Diploma in Law, Kaplan Law School; BA, History, University College.

Read all articles by Sej

About LegalVision

LegalVision is an innovative commercial law firm that provides businesses with affordable, unlimited and ongoing legal assistance through our membership. We operate in Australia, the United Kingdom and New Zealand.

Learn more

We’re an award-winning law firm

  • Award

    2024 Law Company of the Year Finalist - The Lawyer Awards

  • Award

    2024 Law Firm of the Year Finalist - Modern Law Private Client Awards

  • Award

    2023 Economic Innovator of the Year Finalist - The Spectator

  • Award

    2023 Law Company of the Year Finalist - The Lawyer Awards

  • Award

    2023 Future of Legal Services Innovation - Legal Innovation Awards