EU AI Act Compliance Checker
The EU AI Act has been progressively applying since August 2024. Provider, deployer, importer: your obligations depend on your role and your system's application domain. This 6-step questionnaire identifies your risk level and the applicable articles.
Your role
What is your position regarding this AI system?
No data is stored on our servers. Everything runs in your browser.
How to use this tool
- 1Indicate your role: provider, deployer, distributor or importer
- 2Specify the geographic scope and any applicable exclusions
- 3Answer questions about prohibited practices and application domain
- 4Get your risk level and list of obligations — receive them by email
Why it matters
The EU AI Act classifies AI systems into four levels (unacceptable, high-risk, limited risk, minimal risk) and imposes differentiated obligations by actor role. Prohibited practices have been banned since 2 February 2025. High-risk obligations apply from August 2026. Mapping your obligations now allows you to anticipate the necessary technical and organisational adjustments.
Frequently asked questions
What is the EU AI Act?
The EU AI Act (Regulation (EU) 2024/1689) is the world's first comprehensive legislative framework on artificial intelligence. It entered into force on 1 August 2024 and applies progressively. It classifies AI systems by risk level and imposes proportionate obligations for each category.
What AI practices are prohibited by the AI Act?
Article 5 bans the following practices since 2 February 2025: subliminal manipulation, exploitation of vulnerabilities, social behaviour scoring, criminal prediction without concrete acts, untargeted biometric data collection, emotion recognition at work or in educational settings, and real-time remote biometrics in public spaces (with limited exceptions for law enforcement).
Is my AI system high-risk under the AI Act?
An AI system is high-risk if it operates in one of the sectors listed in Annex III: biometrics, critical infrastructure, education, employment, essential public services, law enforcement, migration or justice. Also high-risk: systems embedded as safety components in regulated products (medical devices, vehicles, etc.).
What is the difference between a provider and a deployer under the AI Act?
The provider is the entity that develops or has developed an AI system and places it on the market. The deployer is the entity that uses the system in the course of professional activity. Obligations differ: the provider bears design and technical documentation obligations (Articles 9-16), while the deployer has usage and oversight obligations (Article 26).
What are the penalties under the EU AI Act?
Fines vary by severity: up to €35 million or 7% of global turnover for prohibited practices (Article 5), up to €15 million or 3% for other infringements, and up to €7.5 million or 1% for providing incorrect information. Specific provisions apply to SMEs and natural persons.