EU AI Act Compliance Deadline Approaches for High-Risk Systems

What Is Happening

The European Union's AI Act continues its phased rollout, with obligations for high-risk AI systems set to apply from August 2026. Regulators and legal advisers are now warning businesses to begin their compliance work immediately, as the requirements are detailed and time-consuming to implement properly.

What Counts as High-Risk

The EU AI Act classifies certain uses of AI as high-risk, including systems used in recruitment and hiring decisions, credit and insurance assessments, educational access, law enforcement, and critical infrastructure management. If your business uses any AI tool in these areas, even a third-party product, you may have obligations under the law.

Requirements for high-risk systems include maintaining technical documentation, logging how the AI is used, ensuring human oversight is in place, and conducting risk assessments.

Who Is Affected

Any business operating in the EU or selling to EU customers that uses AI in one of the defined high-risk categories needs to act. This includes UK businesses that trade into Europe, as the rules apply based on where the end user is located, not where the company is based.

Smaller businesses often assume these rules only apply to large technology companies, but that is not the case. If you use an AI recruitment screening tool or an automated credit check system, you are in scope.

What to Do Now

Start by mapping out every AI tool your business uses and what decisions it influences. Speak to a legal adviser with EU AI Act experience. Check whether the vendors supplying your AI tools are providing the documentation you need to demonstrate compliance. August 2026 is closer than it seems.