EU AI Act System Classifier
Classify an AI system under the EU AI Act (Regulation (EU) 2024/1689) and map the compliance obligations that follow. Walks Art. 2 scope exclusions, Art. 3(1) AI system definition (7-criteria test), Art. 5 prohibited practice screening, Annex I and Annex III high-risk assessment with the Art. 6(3) narrow procedural exception, Art. 51-56 GPAI with the 10^25 FLOP systemic risk threshold, and Art. 50 transparency triggers. Built for in-house counsel classifying real systems: medical imaging, medical devices, credit scoring, insurance pricing, HR or CV screening, biometric identification, emotion recognition, deepfake or synthetic content, content moderation, fraud detection, generative AI or foundation model deployments. DACH routing for Betriebsrat consultation, BaFin, BSI, BNetzA, BfDI. Pairs with the EU AI Act High-Risk Implementation Readiness, FRIA, GPAI Code of Practice, and Serious Incident Reporting skills for downstream workflow.
Serious Incident Reporting - EU AI Act Article 73
Serious Incident Reporting (SIR) for high-risk AI systems under Article 73 EU AI Act (Regulation (EU) 2024/1689). Assess, qualify, draft, and submit Art. 73 SIR notifications across the four Art. 3(49) harm categories (death or serious health damage, critical infrastructure disruption, breach of fundamental rights, property or environmental damage). Covers Art. 73 immediate, 2/10/15-day reporting windows, market surveillance authority notification, deployer duties under Art. 26(5), and cross-regulation mapping with GDPR Art. 33/34 breach notification, NIS2 Art. 23 incident reporting, DORA Art. 19 ICT incident, and MDR vigilance. Built for in-house counsel and AI risk teams handling AI incidents, building AI incident response playbooks, or managing AI failure, AI bias, or automated decision incidents. DACH routing through German market surveillance (BNetzA, BaFin, BSI, BfArM, KBA). Pairs with the EU AI Act System Classifier, High-Risk Readiness, FRIA, and GPAI Code of Practice skills.
GPAI Code of Practice Compliance
Assess compliance with the EU General-Purpose AI (GPAI) Code of Practice under the AI Act (Regulation (EU) 2024/1689), Articles 51-56. Covers GPAI model identification (Art. 3(63)), systemic risk model designation (Art. 3(65), Art. 51, 10^25 FLOP training compute threshold), upstream provider obligations under Art. 53 (transparency, technical documentation, copyright policy, training data summary), additional systemic risk obligations under Art. 55 (model evaluation, adversarial testing, AI Office incident notification, cybersecurity), systemic-risk notification and Commission designation under Art. 52, downstream Art. 25 quasi-provider duties, and Art. 53(2) open-source exemption. Built for in-house counsel and AI governance teams reviewing LLM or foundation model deployments, drafting GPAI compliance plans, or assessing systemic risk thresholds. DACH: BaFin, BSI, BNetzA. Pairs with the EU AI Act System Classifier, High-Risk Readiness, FRIA, and Serious Incident Reporting skills.
Fundamental Rights Impact Assessment - EU AI Act Art. 27
Assess whether a Fundamental Rights Impact Assessment (FRIA) is required under Article 27 EU AI Act, and structure or draft that assessment for a specific high-risk AI deployment. Covers deployer scope gating (public bodies and private entities providing public services), affected group mapping, Charter rights analysis, proportionality, safeguards evaluation, residual risk, DPIA/FRIA interaction, notification under Article 27(3), and DACH-specific considerations. Use when asked about FRIA obligations, Article 27 scope, fundamental rights and AI, or deployer assessment duties.


