How the EU AI Act Works

How the EU AI Act Fits Into Our Work

The introduction of the EU AI Act has made artificial intelligence a board-level issue.

Many organisations are now asking whether the Act applies to them, what obligations it creates, and how they are expected to respond. For most, the challenge is not interpreting the law itself, but understanding how AI is actually being used within the organisation.

This is where our work sits.

What the EU AI Act changes

The EU AI Act introduces a risk-based approach to artificial intelligence.

It focuses on:

• accountability for certain uses of AI

• documentation and transparency

• oversight of higher-risk applications

• the ability to explain and evidence decisions

For most organisations, the immediate impact is not a new compliance programme, but a new set of questions from leadership, clients, and auditors.

What the AI Act does not require

The Act does not require every organisation to stop using AI.
It does not require blanket registration of AI tools.
It does not turn everyday productivity use into a regulated activity.

What it does require, where applicable, is the ability to demonstrate reasonable control, understanding, and oversight.

Governance before legal interpretation

Legal advice depends on facts.

Without a clear view of AI use, data flows, and decision ownership, even the best legal interpretation remains abstract. Our work provides the operational clarity that allows legal, compliance, and risk teams to act effectively.

This reduces uncertainty, cost, and reactionary decision-making.

A proportionate approach

The EU AI Act reinforces the need for proportionate governance.

Not every AI use carries the same risk. Not every organisation requires the same controls. We help organisations focus effort where consequences are real, rather than applying blanket restrictions that drive AI use underground.

In summary

The EU AI Act does not change the need for AI governance.
It makes that need visible.

Our work helps organisations respond calmly, credibly, and proportionately, with governance and oversight that stand up to scrutiny without stalling progress.

Where our work fits

Our services sit alongside legal and regulatory interpretation, not in place of it.

We help organisations:

• identify where and how AI is being used in practice

• understand which uses may be relevant to the AI Act

• establish ownership and decision-making responsibility

• maintain documentation that supports audit and regulatory review

• prepare internally before legal or regulatory scrutiny arises

In other words, we help organisations know what they are doing before being asked to explain it.

FAQs

What is the EU AI Act?

It’s a new law focusing on AI risks and accountability.

Who must comply?

Organizations using AI in ways that pose risks must follow the rules.

How do we identify AI use?

Understanding AI use means mapping where and how AI impacts your operations.

It introduces risk-based accountability and documentation requirements.

What changes with the Act?

How can we prepare?

Start by assessing AI use and aligning with the Act’s obligations.