EU AI Act Compliance Tools
14 interactive assessments to classify your AI systems, identify compliance gaps, and generate audit-ready documentation. Every tool runs entirely in your browser with zero data collection.
Start Here — Classify Your AI Systems
Determine whether the EU AI Act applies to you, your role under the Act, and your risk classification.
Compliance Checker
Full-spectrum assessment. Determines your role (Provider, Deployer, Importer, Distributor), risk classification, specific article obligations, and enforcement deadlines.
Start Assessment →Quick Risk Quiz
Rapid triage. Get a preliminary risk classification in under 2 minutes. Ideal for initial screening before the full compliance check.
Take the Quiz →Deep Dive — Specific Obligations
For organizations that already know their classification. Analyze exemptions, role changes, and generate operational compliance records.
Article 6(3) Exemption Generator
Classified as high-risk under Annex III? This tool tests whether your system qualifies for an exemption under Article 6(3) and generates a defensible rationale document.
Check Exemptions →Accidental Provider Classifier
Modified a high-risk AI system? Under Article 25, deployers who substantially alter an AI system become providers with full provider obligations. Audit your exposure.
Audit Modifications →Human Oversight Log
Article 14 requires documented human oversight. This tool generates an immutable intervention record when an operator concurs, overrides, or escalates an AI recommendation.
Log a Decision →Article 26 Operations Scorer
Grade your deployer operational readiness under Article 26. Diagnose execution gaps in human oversight, incident reporting, data governance, and FRIA completion.
Score Operations →Local FRIA Generator
Article 27 requires deployers of high-risk AI to complete a Fundamental Rights Impact Assessment before deployment. Generate a structured FRIA document locally.
Generate FRIA →Input Data Validator
Article 26(4) requires deployers to ensure input data is relevant and sufficiently representative. Validate your data governance practices against deployer obligations.
Validate Inputs →Automation Complacency Assessor
Are your operators rubber-stamping AI outputs? Assess automation complacency risk against Article 14 human oversight requirements and generate a remediation plan.
Assess Complacency →Governance & Risk — Build Your Program
For CISOs, DPOs, and compliance officers building an AI governance program. Assess framework gaps, discover shadow AI, and vet vendors.
ISO/NIST Gap Analyzer
Already certified in ISO 42001, ISO 27001, or using NIST AI RMF? Identify the specific gaps between your existing framework and EU AI Act requirements.
Analyze Gaps →Shadow AI Discovery Protocol
Discover unauthorized AI tools being used across departments. Assess data exposure risk (public, internal IP, PII) and generate a department-level AI asset declaration.
Start Discovery →AI Vendor Risk Screener
Vet AI vendor Data Processing Agreements before procurement. Screens for training data opt-out, data residency, retention periods, and sub-processor transparency.
Screen a Vendor →Agentic AI Bounds Definer
Define autonomy boundaries for agentic AI systems. Map decision authority levels, escalation triggers, and human override requirements against EU AI Act obligations.
Define Bounds →RAG Data Hygiene Screener
Screen your Retrieval-Augmented Generation pipeline for data governance risks. Assess source provenance, PII exposure, staleness, and Article 10 compliance gaps.
Screen RAG Pipeline →Need More Than Tools?
These tools identify your obligations. Our compliance toolkits give you the implementation framework — structured assessments, NIST AI RMF crosswalks, vendor tracking templates, and audit-ready documentation.
All tools are for educational and informational purposes only. Not legal advice. Results should be reviewed by qualified legal counsel.