AI Act and Compliance

The AI Act is the European regulation on artificial intelligence. If your company develops or uses AI systems, you need AI Act consulting to understand your obligations and avoid penalties.

AI Act Italy: what changes for businesses

Regulation (EU) 2024/1689 — known as the AI Act — introduces a risk-based regulatory framework for artificial intelligence. Italian companies that develop, deploy or use AI systems must comply with specific requirements based on the risk classification of the system.

Prohibitions for unacceptable-risk systems are already in force. From August 2026, the obligations for high-risk AI systems and transparency requirements take effect. There is no more time to delay.

What I do for you

• Risk classification – Analysis of your AI systems to determine the risk level (unacceptable, high, limited, minimal)
• AI Act gap analysis – Assessment of your compliance status against applicable requirements
• AI Governance – Definition of policies, procedures and responsibilities for managing AI systems
• Transparency obligations – Implementation of disclosure requirements for users and stakeholders
• FRIA – Fundamental Rights Impact Assessment for high-risk systems
• AI Act and GDPR interplay – Coordination between privacy obligations and AI obligations, integrated DPIA
• Provider and deployer support – Specific consulting for those who develop and those who use AI systems

AI Act 2026 deadlines

• February 2025 – Prohibitions for unacceptable-risk systems (already in force)
• August 2025 – Obligations for GPAI (General-Purpose AI) models
• August 2026 – Obligations for high-risk systems and transparency requirements
• August 2027 – Obligations for AI systems integrated in regulated products

AI Act and GDPR: how they interact

The AI Act and GDPR often apply in parallel. An AI system that processes personal data must comply with both regulations. The DPIA required by GDPR and the FRIA required by the AI Act can be integrated into a single process. Coordinating the two frameworks is essential to avoid overlaps and gaps.

Why act now

AI Act compliance takes time: mapping systems, classifying risks, implementing technical and organizational measures. Companies that start now will be ready for the deadlines. Those who wait risk fines of up to €35 million or 7% of global turnover.