Understanding the implications of the new EU AI Act for businesses

From a regulatory standpoint, the new EU AI Act is one of the most anticipated pieces of legislation regarding artificial intelligence regulation. This law aims to ensure that the use of AI is safe and respects fundamental rights, establishing clear requirements for businesses that develop or utilize such technologies.

Interpretation and practical implications

The Authority has established that companies implementing high-risk AI systems must adhere to specific requirements, such as risk assessment and transparency in data processing practices. This means businesses will need to invest in data protection and adequate measures to ensure compliance.

What companies need to do

Companies must begin examining their current practices to assess whether their AI systems fall into the high-risk category. Implementing policies and procedures that ensure GDPR compliance and transparency in automated decision-making processes is essential.

This includes adopting measures for auditing and ongoing monitoring.

Possible risks and penalties

Compliance risk is real: companies that fail to comply with the requirements of the new AI Act may face significant penalties, potentially reaching up to 6% of their global annual revenue.

Furthermore, the company’s reputation could suffer irreparable damage.

Best practices for compliance

To ensure compliance with the new EU AI Act, companies should:

• Conduct a thorough risk assessment related to the use of AI.
• Establish a governance plan for managing AI systems.
• Train staff on current regulations and the responsible use of AI.
• Implement technical and organizational measures to ensure transparency and security of AI systems.