Frequently asked questions

Answers to common questions about the EU AI Act, your compliance obligations, and how AddComply can help.
Book demo
Contact us

The EU AI Act

What is the EU AI Act?
The EU AI Act is the first comprehensive regulation on artificial intelligence, adopted by the European Union. It establishes rules for the development, deployment, and use of AI systems within the EU market, with requirements that vary depending on the level of risk the AI system poses. The regulation applies to organisations both inside and outside the EU if their AI systems are used within the European market. 
When does the EU AI Act come into effect?
The EU AI Act entered into force on 1 August 2024, with a phased implementation timeline. Prohibitions on unacceptable-risk AI systems apply from February 2025. Requirements for general-purpose AI models apply from August 2025. Most obligations for high-risk AI systems applies from August 2026. Organisations should begin preparing now, as building compliance structures takes time. 
Who does the EU AI Act apply to?
The EU AI Act applies to any organisation that develops, deploys, distributes, or imports AI systems that are placed on the EU market or used within the EU. This includes companies based outside the EU if their AI systems affect people in the EU. The regulation defines specific roles (provider, deployer, importer, distributor and more) each with their own set of obligations. 
What are the risk categories under the EU AI Act?
The EU AI Act categorises AI systems into four risk levels. Unacceptable risk covers AI practices that are prohibited entirely, such as social scoring by governments. High risk includes AI systems used in areas like recruitment, credit scoring, and biometric identification, which face the strictest requirements. Limited risk systems have transparency obligations, such as disclosing that users are interacting with AI. Minimal risk systems, like spam filters, have no additional requirements under the regulation. 
What happens if my organisation does not comply with the EU AI Act?
Non-compliance with the EU AI Act can result in significant fines. Violations related to prohibited AI practices can lead to fines of up to 35 million EUR or 7% of global annual turnover, whichever is higher. For other infringements, fines can reach up to 15 million EUR or 3% of global turnover. Beyond fines, non-compliance can affect your ability to operate AI systems in the EU market and damage trust with customers and partners. 

Roles & Obligations

How do I know if I am a provider or a deployer under the EU AI Act?
he EU AI Act defines providers as organisations that develop or place AI systems on the market, while deployers are those who use AI systems within their business operations. If you build AI tools, train models, or make AI systems available to others, you are likely a provider. If you integrate or use AI systems in your processes, you are likely a deployer. Some organisations may hold both roles. AddComply includes a self-assessment tool that helps you identify your role and understand the obligations that apply.
What are the main obligations for high-risk AI providers?

Providers of high-risk AI systems face the broadest obligations under the EU AI Act. These include establishing a risk management system, maintaining technical documentation, ensuring data governance and quality, conducting conformity assessments, setting up post-market monitoring, and reporting serious incidents. AddComply structures these obligations into guided workflows so your team can manage them step by step.

What are the main obligations for AI deployers?

Deployers of high-risk AI systems must ensure appropriate human oversight of AI outputs, monitor the AI system during operation, report serious incidents to the relevant authorities and to the provider, and cooperate with providers on compliance matters. In certain circumstances, a deployer may also take on provider obligations, for example, when making significant modifications to an AI system. AddComply tracks these responsibilities and manages role transitions automatically.

What does an importer or distributor need to do under the EU AI Act?

Distributors and importers must verify that the AI systems they handle meet EU requirements before making them available on the market. This includes checking that providers have completed conformity assessments, that proper documentation is in place, and that CE marking requirements are met. In some cases, importers and distributors may take on provider obligations if they modify or rebrand an AI system.

What happens if my organisation does not comply with the EU AI Act?
Non-compliance with the EU AI Act can result in significant fines. Violations related to prohibited AI practices can lead to fines of up to 35 million EUR or 7% of global annual turnover, whichever is higher. For other infringements, fines can reach up to 15 million EUR or 3% of global turnover. Beyond fines, non-compliance can affect your ability to operate AI systems in the EU market and damage trust with customers and partners. 

The AddComply Platform

What is AddComply?

AddComply is a compliance platform designed for the EU AI Act and AI governance. It translates regulatory requirements into structured, role-specific workflows that guide your team through every compliance obligation. The platform covers task management, documentation, collaboration between providers and deployers, incident reporting, and audit preparation, all in one place.

How does AddComply help with EU AI Act compliance?

AddComply provides a guided compliance process tailored to your organisation and role. The platform automates task management and reminders, structures documentation workflows, enables secure information exchange between providers and deployers, and generates audit-ready materials. It adapts to your specific context, showing only what is relevant to your role and obligations.

What is the AI Governance Starter?

The AI Governance Starter is designed for organisations that are in the early stages of their AI compliance journey. Not every organisation is fully mature in its AI governance practices. Whether you are preparing for the EU AI Act or building internal governance structures, the AI Governance Starter helps you establish the right foundations from the start and scale as your AI portfolio grows.

Data Privacy & Security

How does AddComply handle data privacy and security?

Data protection is a core priority at AddComply. All data is securely hosted in Sweden, within the EU. The platform is built with GDPR and European data protection standards in mind, ensuring your sensitive information is secured and accessible only to authorised users through role-based access controls. We design our infrastructure for regulated environments and treat security as a continuous commitment.

Where is my data stored?

All data is stored in Sweden, within the European Union. This ensures compliance with European data residency expectations and gives you confidence that your information remains within the EU at all times.

Who can access my data in AddComply?

AddComply uses role-based access controls, meaning each team member only sees what is relevant to their role and responsibilities. Access rights are flexible and can be configured to match both centralised and decentralised organisational structures. You maintain full control over who has access to what information within the platform.

Getting Started

How can I get started with AddComply?

The best way to get started is to book a demo with our team. We will walk you through the platform, discuss your specific compliance needs, and help you understand how AddComply fits your organisation. You can also take our free self-assessment to determine your role, risk level, and obligations under the EU AI Act.  If you are in the early stages of your AI governance journey, our AI Governance Starter helps you build the right foundations from the start and scale as your needs grow.

Does AddComply offer a self-assessment tool?

Yes. AddComply provides a free self-assessment that helps you identify your role under the EU AI Act, understand your risk level, and get an overview of the compliance obligations that apply to your organisation. It is a quick way to understand where you stand before diving deeper into the platform.

Do I need regulatory expertise to use AddComply?

No. AddComply is designed to guide you through compliance regardless of your regulatory background. The platform translates complex legal requirements into clear, actionable tasks and workflows. That said, AddComply is built by legal and compliance professionals, so the depth is there when you need it, whether you are a legal expert or a product team managing AI systems. For more complex compliance scenarios, organisations may benefit from additional legal or advisory support alongside the platform

Become 100% confident in your compliance process

AddComply is built to guide you in every step, so you can meet every requirement. Ready to simplify your compliance process?

1. Get a Free Demo: See the tool in action and explore its benefits firsthand.
2. Consult with Our Experts: Get direct, personalized support to streamline your compliance strategy.
3. Integrate Seamlessly: Experience a smooth, frictionless setup that gets your teams working together immediately. Ready, Set, Comply!

Privacy Policy