What does EU AI Act compliance include?

A full compliance package includes: AI system risk classification (prohibited, high-risk, limited-risk, minimal-risk), gap analysis against Articles 9–15, technical documentation, conformity assessment support, and board-ready reports. Verumt covers all of this in a single 12-week engagement.

Does the EU AI Act apply to my startup?

Yes, if your startup develops, deploys, or uses AI systems that affect users in the European Union — regardless of where your company is incorporated. The Act applies from August 2, 2026.

What are the penalties for non-compliance with the EU AI Act?

Fines for non-compliance range from €7.5 million (or 1.5% of global annual turnover) for minor violations, up to €35 million (or 7% of global annual turnover) for the most serious breaches.

How is Verumt different from a law firm?

Verumt combines legal expertise with technical knowledge — our team includes both compliance lawyers and engineers. This allows us to deliver audit-ready compliance in 12 weeks at a fraction of the cost of traditional law firms (from €2,500 vs. €50,000+).

What AI systems are considered high-risk under the EU AI Act?

High-risk AI systems include those used in hiring and HR decisions, credit scoring, medical diagnosis, biometric identification, and systems used in critical infrastructure. Article 6 and Annex III of the EU AI Act define the full list.

When does EU AI Act compliance need to be completed?

The full regulation applies from August 2, 2026. However, investor due diligence and enterprise sales cycles mean that most Series A/B companies need to be audit-ready 6–12 months before the deadline — meaning the window to act is now.

Complete Guide

EU AI Act Compliance — The Complete Guide for Startups & SMEs

Everything you need to know about the EU AI Act, who it affects, what it requires, and how to get audit-ready before the August 2, 2026 deadline.

Reviewed by Renata Lopez Rayón, Co-Founder & Head of Legal Strategy at Verumt · Last updated: March 2026 · Source: EU AI Act Official Text (EUR-Lex)

What is the EU AI Act?

The EU AI Act (Regulation EU 2024/1689) is the world's first comprehensive legal framework for artificial intelligence. It classifies AI systems by risk level and imposes governance, documentation, and oversight obligations on companies operating in the European Union. It entered into force on August 1, 2024, and fully applies from August 2, 2026. Non-compliance carries fines of up to €35 million or 7% of global annual turnover.

Who Does the EU AI Act Apply To?

The EU AI Act applies to any company that develops, deploys, or uses AI systems affecting users in the EU — regardless of where the company is headquartered. This includes startups and SMEs using AI in their products, HR tools, credit scoring, medical devices, or customer-facing applications.

The Four Risk Categories

Category	Examples	Obligations
Prohibited	Social scoring, real-time biometric surveillance	Banned — cannot be deployed in the EU
High-Risk	HR/recruitment AI, credit scoring, medical diagnosis	Full documentation, risk management, conformity assessment
Limited-Risk	Chatbots, deepfake tools	Transparency obligations — users must know they interact with AI
Minimal-Risk	Spam filters, recommendation engines	No mandatory requirements

Key Compliance Deadlines

Date	Obligation
February 2, 2025	Prohibited AI practices banned (Article 5)
August 2, 2025	General Purpose AI model obligations apply
August 2, 2026	Full regulation applies — all high-risk AI obligations enforceable
August 2, 2027	Existing AI systems already on market must be compliant

Explore by Role

The EU AI Act creates distinct obligations for legal and technical teams. Select your role for a tailored compliance guide:

EU AI Act Guide for CTOs

Risk classification, technical documentation, SDLC integration

EU AI Act Checklist for General Counsel

Board reporting, investor due diligence, personal liability

EU AI Act FAQ

Answers to the most common compliance questions

How Verumt Delivers Compliance in 12 Weeks

Phase	Weeks	Deliverable
Assessment	1–4	AI system inventory, risk classification, gap analysis
Documentation	5–8	Technical documentation, regulatory mapping, risk management records
Board Readiness	9–12	Board-ready report, investor due diligence pack, Declaration of Conformity

Frequently Asked Questions

What is the EU AI Act?+

The EU AI Act (Regulation EU 2024/1689) is the world's first comprehensive legal framework for artificial intelligence, fully applicable from August 2, 2026. It classifies AI systems by risk level and imposes governance, documentation, and oversight requirements on companies operating in the EU.

What happens if a company does not comply with the EU AI Act?+

Non-compliance carries fines of up to €35 million or 7% of global annual turnover for the most serious violations, including the use of prohibited AI practices.

How much does EU AI Act compliance cost?+

Verumt's compliance packages start at €2,500 for a single AI system and €5,900 for up to five AI systems — compared to €50,000 or more at traditional law firms.

How long does EU AI Act compliance take with Verumt?+

Verumt delivers a complete audit-ready compliance package in 12 weeks, versus 6 to 18 months with traditional law firms.

Ready to get EU AI Act compliant?

Audit-ready in 12 weeks. From €2,500.

Book a free assessment