Free EU AI Act
Compliance Assessment
Find out whether your AI usage may require additional attention under the EU AI Act. Receive a personalised report in under 3 minutes.
- Personalised AI Risk Score (0–100)
- Executive Summary with key findings
- Priority Action Checklist (High / Medium / Low)
- Applicable EU AI Act articles & annexes
- Professional PDF report — free to download
No account required · Takes 2–3 minutes · Informational only, not legal advice
Why this matters for your business
The EU AI Act introduces new obligations depending on how AI is used — even if you're not building AI yourself.
Most small businesses don't train AI models — but millions already use ChatGPT, Copilot, Claude, or AI-powered software that counts under the Act.
Whether AI helps with customer service, hiring, or financial decisions changes which rules apply. Usage context matters more than company size.
Even as a deployer (not a developer), the AI Act may require you to maintain records, conduct risk assessments, and notify users when AI is involved.
Obligations for deployers of high-risk AI systems take full effect from August 2026. Understanding your risk profile now gives you time to prepare.
How it works
Three simple steps, no account needed.
21 short questions about your company, your AI usage, and your governance practices. Takes about 2–3 minutes.
A deterministic scoring engine evaluates your responses against EU AI Act risk factors and governance measures.
Get a personalised risk score, identified strengths and risks, a priority action checklist, and a downloadable PDF report.
No account required · Free · Informational only
Frequently asked questions
Everything you need to know before starting.
Who needs an EU AI Act assessment?
The EU AI Act applies to any business that places AI systems on the EU market or puts AI systems into service in the EU — regardless of where the company is based. This means US, UK, or Asian companies serving European customers are also in scope.
Most businesses are not building their own AI models. But if you use ChatGPT for customer communications, an AI-powered ATS for hiring, automated credit scoring, or AI chatbots on your website, you may already be a "deployer" under the Act — and deployers have their own set of obligations.
What is the EU AI Act?
The EU AI Act (Regulation 2024/1689) is the world's first comprehensive legal framework specifically regulating artificial intelligence. It came into force in August 2024 and introduces a risk-based approach: the higher the potential harm an AI system can cause, the stricter the requirements.
AI systems are classified into four risk categories: Unacceptable Risk (prohibited outright), High Risk (strict compliance requirements), Limited Risk (transparency obligations), and Minimal Risk (no specific obligations). Most businesses using everyday AI tools fall into the Limited or High Risk categories depending on their use case.
Which businesses are affected by the AI Act?
While the AI Act is often discussed in the context of large tech companies, it has direct implications for SMBs — particularly those operating in regulated sectors. Businesses most likely to face elevated obligations include:
- ·HR and recruitment agencies using AI to screen or rank candidates
- ·Financial services companies using AI for credit scoring or risk assessment
- ·Healthcare providers using AI-assisted diagnostic or decision-support tools
- ·E-commerce businesses using personalised pricing or recommendation engines
- ·EdTech platforms using AI for student assessment or adaptive learning
- ·Any business operating AI chatbots that interact directly with consumers
What's the difference between GDPR and the EU AI Act?
| GDPR | EU AI Act | |
|---|---|---|
| Focus | Personal data protection | AI system safety & transparency |
| Who it covers | Anyone processing EU personal data | Anyone deploying AI in the EU |
| Key obligation | Lawful basis for data processing | Risk classification & documentation |
| Enforcer | National Data Protection Authorities | National Market Surveillance Authorities |
| In force since | May 2018 | August 2024 (phased) |
GDPR and the AI Act are complementary — many AI systems that process personal data must comply with both. Where AI processes personal data as part of a high-risk use case, obligations under both regulations apply simultaneously.
Ready to assess your AI usage?
Get your personalised AI Act report in under 3 minutes.
No account required · Free · Informational only, not legal advice