Every obligation that applies to your AI systems — derived from your risk classification, mapped to your roles, and tracked to completion.
The EU AI Act imposes different obligations depending on how an AI system is classified. EAB translates your screening result into a concrete, actionable set of requirements — with nothing left to interpretation.
When a supervisor screens an AI system and assigns a risk level, EAB immediately derives the full set of applicable obligations from the regulation. These are not generic checklists — they are tied to the specific articles that apply to your system's profile.
Each obligation carries the article reference, the responsible role, the evidence required, and a status that updates as your team works through it. When the legal source changes, the obligation set is re-derived automatically — so you never work from an outdated baseline.
The result is a living document: not a spreadsheet you maintain, but a structured record that reflects your actual compliance state at any point in time — and that an auditor can inspect without any preparation from your side.
“An audit doesn’t ask whether you knew. It asks whether you can show what you did — and when.”
Six obligation areas cover the full high-risk compliance surface. Each is assigned to a role, linked to evidence requirements, and tracked independently per AI system.
A documented, continuous process for identifying, analyzing, and mitigating foreseeable risks. EAB structures the required stages and attaches evidence to each cycle.
Training data governance and the full technical record — architecture, performance metrics, intended use, and known limitations — collected during the screening workflow, not retroactively.
Instructions for use, disclosure to affected parties, and capability limitations — structured to meet the article requirements and exportable for inclusion in any user-facing documentation.
The measures that enable humans to understand, monitor, and intervene in the AI system's operation. EAB maps these to named roles and documents what each oversight measure consists of.
Policies, procedures, and review cycles required of providers. EAB tracks the QMS obligation status per system and flags gaps before a conformity assessment is due.
For Annex III high-risk systems: the path to a conformity declaration. EAB tracks the required documentation, notified body involvement, and the version of the standard applied.
As soon as a system is classified, its obligation profile is live. Each responsible role sees exactly what they must do, what evidence is required, and whether it has been provided — without any manual coordination.
Compliance managers see the status across the entire system inventory at a glance: filtered by risk level, role, module, or obligation area. When legal sources change, the affected systems are flagged automatically and the obligation set is re-derived from the new version.
Auditors get a read-only view of the same data, frozen at any point in time. No export needed. No preparation required from your team.
EAB derives your obligation set from your screening result and keeps it current. Available in Small Business and Enterprise tiers.
EU-hosted · Anchored to CELEX 32024R1689
Tell us about your organization and what you’re looking to address. We’ll follow up with the relevant information.
