The EU AI Act is law.
The clock is running.

High-risk AI obligations entered application in August 2026, and the technical standards that define exactly how to comply are being published now. Most organisations are not ready. The ones that move first will have a significant advantage.

EU AI Act 2024/1689
CEN-CENELEC Harmonized Standards
ISO/IEC 42001
High-Risk AI Systems
Conformity Assessment

The regulation is here, the standards are arriving. Are you ready?

Most organisations are still treating EU AI Act compliance as a future problem. It isn't. High-risk AI obligations are live, and the harmonized standards that define how to meet them are being published right now.

High-risk deadlines are not future dates

EU AI Act high-risk provisions entered application in August 2026. If your AI systems touch hiring, credit, education, or critical infrastructure, your obligations are live today, not in some future review cycle.

Legal advice is not enough

Your legal team can explain what the regulation says. What you actually need is someone who can implement the technical requirements: risk management systems, data governance, conformity documentation, at a level that holds up under assessment.

Most consultants are behind the standards

The CEN-CENELEC harmonized standards that define how to comply with the EU AI Act are being published in 2026. Most advisors are not working at this level yet. We are.

From regulation to reality: we close the gap.

We help AI providers and deployers build compliance programmes that satisfy the EU AI Act at an engineering and audit level, not just on paper.

EU AI Act gap assessment

We assess your AI systems against EU AI Act requirements (risk classification, prohibited practices, high-risk obligations, and transparency requirements) and produce a clear gap report with prioritised next steps.

Harmonized standards implementation

We help you implement the CEN-CENELEC harmonized standards as they're published. That means translating technical requirements into controls, processes, and documentation your organisation can actually maintain.

ISO 42001 to EU AI Act bridge

If you hold or are pursuing ISO 42001 certification, we help you leverage that investment to meet EU AI Act requirements, so you're not starting from zero or duplicating work you've already done.

Conformity assessment readiness

High-risk AI systems require conformity assessment before market placement. We prepare all required technical documentation, including risk management systems, data governance records, accuracy metrics, and human oversight procedures.

AI risk classification

The EU AI Act's risk tiers determine your obligations. We provide definitive classification analysis (prohibited, high-risk, limited risk, or minimal risk) with documented legal and technical rationale you can stand behind.

Ongoing compliance support

The EU AI Act and its harmonized standards will continue to evolve. We keep your compliance programme current as new standards are published and regulatory guidance develops.

We work inside controls, every day.

We come from audit, measurement, and technical standards, not legal or policy. That's where EU AI Act compliance actually gets implemented and where most organisations need the most help.

A team that lives inside controls

We work across multiple compliance frameworks every day: cybersecurity, AI governance, privacy, financial regulation. We understand how controls are built, tested, documented, and defended under audit scrutiny.

We measure, we don't guess

The EU AI Act requires measurable accuracy, robustness, and bias metrics for high-risk systems. Our background is in quantitative measurement, so our compliance programmes are built on evidence rather than assumptions.

Cross-regulation perspective

We work across EU AI Act, GDPR, DORA, and ISO standards. That helps organisations build unified compliance programmes instead of siloed responses to each regulation on its own.

No bloat, no bureaucracy

You get a senior practitioner, not a junior consultant supervised from a distance. Organisations with real deadlines get real help.

Why Harmonized Standards Are the Real Key to EU AI Act Compliance

The EU AI Act sets the legal obligations. The CEN-CENELEC harmonized standards define, in precise technical terms, how to meet them. Compliance with a harmonized standard creates a presumption of conformity with the regulation, the most defensible compliance position available.

These standards are being published now. Most organisations and most consultants are not yet working at this level. Early adoption is both a competitive advantage and the clearest path to audit-ready compliance.

prEN 18286 — AI quality management systems, aligned with ISO 42001
Standards covering risk management, data governance, and accuracy for high-risk AI
Transparency and human oversight documentation requirements
Conformity assessment procedure standards for notified bodies

For AI providers

If you develop or place AI systems on the EU market (particularly high-risk systems), harmonized standard compliance is the clearest path to conformity assessment and CE marking. We help you build and document that compliance.

For AI deployers

Organisations deploying third-party AI in regulated contexts have their own EU AI Act obligations. We help deployers understand what those obligations are and how to satisfy them through operational and contractual controls.

Find out where you actually stand, free.

Tell us about your AI systems and your regulatory situation. We will respond within one business day with an honest view of your obligations and what a practical compliance programme would involve: no spin, no upsell.

No obligation, no pressure Response within one business day Confidential — NDA on request Providers and deployers welcome

Your information is kept strictly confidential.

Thank you — we will be in touch within one business day.

Questions we get asked every week

What is the EU AI Act and when does it apply?

The EU AI Act (Regulation 2024/1689) is the world's first comprehensive legal framework for artificial intelligence. High-risk AI system obligations entered application in August 2026. Organisations that develop, place on the market, or deploy AI systems in the EU must comply, regardless of where they are headquartered.

What are EU AI Act harmonized standards and why do they matter?

Harmonized standards are technical standards developed by CEN-CENELEC under a European Commission mandate. Compliance with a harmonized standard creates a legal presumption of conformity with the EU AI Act. That makes them the most defensible basis for any compliance programme. The first standards are being published in 2026.

How does ISO 42001 relate to EU AI Act compliance?

ISO/IEC 42001, the international standard for AI management systems, maps directly to many EU AI Act requirements. The first EU AI Act harmonized standard (prEN 18286) is explicitly aligned with ISO 42001. Organisations already working with ISO 42001 have a meaningful head start.

What is a high-risk AI system under the EU AI Act?

High-risk AI systems are defined in Annex III and include AI used in hiring and employment decisions, credit scoring, education, critical infrastructure management, and biometric identification. High-risk systems require mandatory conformity assessment before they can be placed on the EU market.

What is the difference between an AI provider and an AI deployer?

A provider develops an AI system and places it on the EU market. A deployer uses an AI system in a professional context. Both carry obligations under the EU AI Act, but providers face the most comprehensive requirements, including conformity assessment, technical documentation, and CE marking for high-risk systems.

Do non-EU companies need to comply with the EU AI Act?

Yes. The EU AI Act has extraterritorial reach similar to GDPR. Any organisation whose AI systems affect people located in the EU must comply. Non-EU providers may also be required to appoint an EU Authorised Representative.