The EU AI Act Is Here.
Are You Ready?
High-risk AI obligations take effect August 2, 2026. Fines reach €35M or 7% of global turnover. We help you classify, assess, document, and comply — before the deadline.
The Numbers Don't Lie
The regulatory clock is ticking. Here's what's at stake.
€35M
Maximum fine for high-risk AI Act violations, or 7% of global turnover
Aug 2, 2026
High-risk AI system obligations become enforceable
>40%
Of agentic AI projects at risk of cancellation without governance (Gartner)
<25%
Of companies have successfully scaled agents to production (McKinsey)
End-to-End Compliance Services
From classification to ongoing monitoring — we cover the full compliance lifecycle.
AI System Classification
We classify your AI systems by risk level (minimal, limited, high, unacceptable) under the EU AI Act framework. Clear categorization drives your entire compliance strategy.
Risk Assessment
Comprehensive risk analysis covering data quality, bias detection, transparency requirements, human oversight needs, and cybersecurity resilience.
Data Protection Impact Assessment
DPIA documentation required for high-risk AI systems processing personal data. We handle GDPR-AI Act intersection — where most companies get stuck.
Technical Documentation
Complete documentation packages: system architecture, training data provenance, testing methodologies, accuracy metrics, and risk mitigation measures.
Conformity Assessment
Preparation for third-party conformity assessment. We ensure your AI systems meet all essential requirements before formal evaluation.
Ongoing Monitoring
Post-deployment compliance monitoring: drift detection, incident logging, performance degradation alerts, and annual compliance reviews.
Key Dates & Milestones
The EU AI Act is rolling out in phases. Know where you stand.
Prohibited AI practices
In Force
General-purpose AI obligations
In Force
High-risk system requirements
UPCOMING
GDPR AI enforcement intensifying
Fines reaching €345M
EU AI Omnibus
Simplifying SME compliance
Is Your Organization In Scope?
If you deploy, develop, or distribute AI systems in the EU — the answer is likely yes.
Enterprise Deploying AI
Running AI agents, copilots, or automated decision systems? You likely have high-risk obligations. We help you find out — and comply.
Government & Public Sector
AI in citizen services, document processing, or administrative automation falls under strict requirements. Sovereignty + compliance = our specialty.
AI Vendors & Providers
If you build or sell AI systems used in the EU, you're a provider under the AI Act. We help you meet provider obligations and document compliance.
Compliance Packages
Structured engagements designed to get you compliant — on time.
Assessment
From €3,000
With Fit 4 AI subsidy: from €1,500
AI system inventory, classification, gap analysis, priority roadmap. Eligible for Fit 4 AI 50% subsidy.
Best for
Understanding your exposure.
Full Compliance Programme
From €15,000
Everything in Assessment + DPIA, technical documentation, conformity assessment prep, staff training. Stackable with SME Packages (70%) and 18% investment tax credit.
Best for
Meeting the Aug 2026 deadline.
Managed Compliance
Custom pricing
Ongoing monitoring, annual reviews, regulatory updates, CSSF alignment, incident response. From €1,500/month.
Best for
Continuous compliance assurance.
Related Solutions
Governance & Security
Audit, monitoring, and permissions for your agent systems.
Learn more →Consulting & Advisory
Architecture, strategy, and cost analysis for your AI projects.
Learn more →Enterprise & Government
Large-scale deployments with SLAs, compliance, and managed operations.
Learn more →Common Questions
Everything businesses ask us about EU AI Act compliance.
When does the EU AI Act apply to my business?
It depends on what your AI does. Prohibited practices were banned in February 2025. General-purpose AI model obligations took effect August 2025. High-risk AI system obligations — the most demanding tier — become enforceable August 2, 2026. If you deploy AI agents for HR, credit scoring, critical infrastructure, or public services, you likely have high-risk obligations.
What is a "high-risk" AI system under the EU AI Act?
High-risk AI systems are listed in Annex III of the regulation and include: AI used in HR and employment decisions (CV screening, performance evaluation), credit scoring, critical infrastructure management, education assessment, public service eligibility, and law enforcement. Most customer-facing conversational agents are limited risk, not high-risk.
What happens if we do not comply by August 2, 2026?
Fines for prohibited AI practices reach €35 million or 7% of global annual turnover. Violations of high-risk obligations can result in fines up to €15 million or 3% of turnover. Regulators can also suspend operation of the AI system during compliance remediation.
Do we need a third-party conformity assessment?
For most high-risk AI systems, self-assessment is permitted — you conduct the assessment internally and produce a declaration of conformity. Third-party assessment is mandatory only for biometric identification systems and a small number of other categories. Our compliance programme prepares you for either path.
Does the EU AI Act apply if we are headquartered outside the EU?
Yes. The EU AI Act has the same extraterritorial scope as GDPR. Any AI system placed on the EU market or used by people based in the EU falls under the regulation, regardless of where the provider or deployer is located.
Can Luxembourg subsidies reduce our compliance costs?
Yes. The Fit 4 AI programme covers 50% of AI assessment and advisory costs up to €25,000. The SME Packages (AI) programme covers 70% of implementation costs. The 18% R&D investment tax credit applies to technical documentation and conformity assessment work. A €15,000 compliance programme can cost as little as €4,500 after subsidies.
Request a Compliance Assessment
Tell us about your AI systems. We'll assess your obligations and recommend next steps.
Thank you! We'll reach out within 24 hours to discuss your compliance needs.
Something went wrong. Please try again or email us at contact@d-code.lu.