Your job is to verify. Not to be handed a folder the night before and told everything is fine.
“A compliance record that required coordination to produce is not a compliance record. It’s a reconstruction.”
EAB gives auditors a dedicated, read-only workspace that is completely independent of the organization's day-to-day compliance operations. You access what you need without a single email to the client team — and without any risk of influencing the live system.
Every record in the system is timestamped, frozen on creation, and attributed to a named role. You can query the compliance state of any AI system at any point in time — not just today, but as it was on the date of a specific determination.
Legal version snapshots are attached to every screening result. You can verify not just what was decided, but which version of Regulation (EU) 2024/1689 was in force when the decision was made — and whether the obligation set derived from it was correct under that version.
No interviews. No document requests. No "we'll get that to you." The answers are in the record.
The risk level assigned to each AI system, the articles applied, the legal version in force at classification, and the supervisor who authorized the result — all in one record.
Every screening result carries a frozen snapshot of the regulation version consulted. You can verify that the obligation derivation was correct under the law as it stood — not as it stands today.
Every determination is attributed to a named supervisor with a UTC timestamp. Override and bypass events are logged with justification — the record is never silent about how a decision was reached.
The full obligation set derived from the screening result, the status of each obligation, and the evidence attached. You can assess whether the organization acted on what the law required — obligation by obligation.
Technical records collected during the screening workflow: training data governance, model architecture, human oversight provisions, and performance metrics — structured to the Annex IV checklist.
When the regulation changed, which systems were flagged, when they were re-screened, and what changed in the determination — the complete response timeline, without gaps.
No onboarding call. No document handover. No waiting.
The organization grants you read-only access to their EAB workspace. No installation, no VPN, no document handover. You log in and the records are there — exactly as the compliance team sees them, minus any write capability.
The full system inventory is visible: each registered AI system, its risk classification, screening status, and obligation completion state. You can filter by risk level, screening date, or legal change event — without asking anyone.
For each system: the complete screening history, the legal version snapshot at each determination, the obligation set with evidence attached, the supervisor decision trail including any bypass events, and the technical documentation. Everything is there. Nothing is summarized.
PDF export of the complete compliance record per AI system — or per obligation cycle. The export reflects the frozen state of the record, not the current state. You decide the reference date. The record reconstructs itself.
If your clients use EAB, your next audit starts the moment you log in — not the moment they finish preparing.
EU-hosted · Anchored to CELEX 32024R1689
Tell us about your organization and what you’re looking to address. We’ll follow up with the relevant information.
