Frequently asked questions
Answers to the most common questions about the EU AI Act and our platform.
About the product
EU AI Comply is a SaaS platform that helps companies comply with their obligations under the EU AI Act (Regulation 2024/1689). It is designed primarily for deployers — companies that use AI systems in their operations — not for those who develop AI. If you use ChatGPT, Copilot, an automated recruitment system or any other AI tool, our platform helps you know exactly what you need to do.
No. The platform was specifically built for managers, compliance officers and founders without a legal background. All instructions are in plain language, every step is clearly explained, and technical terms have tooltip definitions. If a complex situation arises, we indicate when it is worth consulting a lawyer.
The first AI systems can be registered in 15-30 minutes. Full setup — inventory, risk classification, basic documentation — typically takes 1-3 hours, depending on how many AI systems you have. Afterwards, the platform automatically reminds you of reviews and deadlines.
The platform covers the 28 obligations relevant to deployers and, where applicable, to providers. It includes post-Omnibus changes (the provisional agreement of May 2026, which defers the deadline for Annex III high-risk systems to 2 December 2027). It does not cover member state-specific obligations or complementary sectoral regulations — for these we recommend specialist legal advice.
About the EU AI Act
The EU AI Act (Regulation 2024/1689) is the first European law dedicated to artificial intelligence, published in the Official Journal of the EU on 12 July 2024. Obligations apply gradually: prohibited practices — from 2 February 2025; GPAI obligations — from 2 August 2025; high-risk Annex III systems — from 2 December 2027 (after the Omnibus agreement). Companies that fail to comply risk fines of up to €35 million or 7% of global annual turnover.
It depends on how you use it. If ChatGPT is used exclusively internally, by employees, for general tasks, the obligations are minimal — mainly internal transparency and a basic register. If you use it in processes affecting customers, credit decisions, hiring or monitoring, additional obligations may arise. The platform helps you determine your exact situation through a few simple questions.
From 2 February 2025, certain specific AI practices are prohibited: subliminal behavioural manipulation techniques, exploiting the vulnerabilities of persons, social scoring systems (evaluating citizens based on general behaviour) and real-time biometric identification in public spaces (with limited exceptions for law enforcement). If you do not use any of these, you are likely already compliant for this phase.
Penalties vary depending on the severity of the infringement. Using prohibited practices can lead to fines of up to €35 million or 7% of global annual turnover. Non-compliance with other obligations (documentation, transparency, monitoring) can be sanctioned with up to €15 million or 3% of turnover. National supervisory authorities will be able to audit and sanction companies.
Pricing and trial
Yes. All plans include a fully free 14-day trial, with no credit card required. You have access to all features of the chosen plan and can register AI systems, generate documents and explore the platform without any restrictions. At the end, you decide whether to continue or not — no obligations.
Yes, you can upgrade or downgrade at any time from your account settings. On upgrade, you immediately benefit from the new limits and features. On downgrade, the new limits apply from the next billing cycle. There are no long-term contracts or penalties.
There are no hidden costs. The monthly price includes full platform access, legislative updates, document generation and email support. The Starter plan (€49/month) includes up to 3 AI systems and 5 users. The Growth plan (€149/month) includes up to 15 AI systems and 20 users. Enterprise has custom pricing based on your organisation's needs.
Security and data
Yes. Each company account is fully isolated through strict per-company data isolation, enforced at application level — no other customer can see your data. Connections are encrypted (TLS 1.3), passwords are stored with bcrypt and we do not have access to the content of your documents. We apply the principle of least privilege for all our staff.
Data is stored exclusively on servers within the European Union. We are GDPR-compliant: we have a Data Processing Agreement (DPA) available on request, we do not sell data, we do not use customer data to train AI models and we respect data subject rights. The full privacy policy is available on the website.
Yes. You have the right to data portability. From the admin panel, you can export at any time your complete AI systems inventory, generated documents and compliance reports in JSON and PDF format. When an account is deleted, all data is permanently removed within 30 days.
The REST API is available on the Growth and Enterprise plans. It allows integration with internal systems (HRMS, ERP, ticketing) for automatic synchronisation of the AI systems inventory and export of compliance reports. API documentation is available in your account after activation.