Skip to content
  • AUDIT & CERTIFICATION
    • ISO 42001
    • ISO 27001
    • ISO 27701
    • EU AI ACT
  • TRAINING
    • ISO 42001 LEAD AUDITOR
    • EU AI ACT
  • PARTNERS
    • GLOBAL NETWORK
    • AUDITOR COMMUNITY
  • RESOURCES
  • ABOUT US
  • AUDIT & CERTIFICATION
    • ISO 42001
    • ISO 27001
    • ISO 27701
    • EU AI ACT
  • TRAINING
    • ISO 42001 LEAD AUDITOR
    • EU AI ACT
  • PARTNERS
    • GLOBAL NETWORK
    • AUDITOR COMMUNITY
  • RESOURCES
  • ABOUT US
    • Español
Contact us
    • Español
  • AUDIT & CERTIFICATION
    • ISO 42001
    • ISO 27001
    • ISO 27701
    • EU AI ACT
  • TRAINING
    • ISO 42001 LEAD AUDITOR
    • EU AI ACT
  • PARTNERS
    • GLOBAL NETWORK
    • AUDITOR COMMUNITY
  • RESOURCES
  • ABOUT US
Contact us

Be EU AI Act Ready with Our Regulatory
Conformity Assessments

CONTACT US
SCHEDULE A CALL

What is the EU AI Act?

The EU AI Act is a regulatory framework governing the development, commercialisation, and use of artificial intelligence systems in the European Union. Its primary goal is to ensure that AI operates safely and ethically, balancing the protection of fundamental rights with the promotion of innovation.

The Act classifies AI systems by risk level, determining obligations accordingly. For example, high-risk applications, such as medical diagnostics or workplace performance monitoring, require providers to establish a risk management system. The enforcement of the Act will be handled by national regulators, which may vary across countries.

What Are the Four Risk Levels in the EU AI Act?

The EU AI Act categorises AI systems into four different risk levels, each with specific regulatory requirements.

1

Unacceptable Risk​

These systems are completely banned due to the high risks they present to public safety and citizens’ rights. They include applications such as subliminal manipulation intended to alter behavior, social scoring by public authorities, and remote biometric identification in real-time in public spaces, except in specific security situations.

2

High-Risk AI Systems

These systems are completely banned due to the high risks they present to public safety and citizens’ rights. They include applications such as subliminal manipulation intended to alter behavior, social scoring by public authorities, and remote biometric identification in real-time in public spaces, except in specific security situations.

3

Limited-Risk AI Systems

These systems are completely banned due to the high risks they present to public safety and citizens’ rights. They include applications such as subliminal manipulation intended to alter behavior, social scoring by public authorities, and remote biometric identification in real-time in public spaces, except in specific security situations.

4

Minimal/ No-Risk AI Systems

These systems are completely banned due to the high risks they present to public safety and citizens’ rights. They include applications such as subliminal manipulation intended to alter behavior, social scoring by public authorities, and remote biometric identification in real-time in public spaces, except in specific security situations.

What Are the Penalties for Non-Compliance?

The severity of the penalty depends on the type of infringement:

Prohibited AI Practices

Up to €35 million or 7% of global revenue

High-Risk AI Obligations

Up to €15 million or 3% of global revenue

False or misleading information

Up to €7.5 million or 1% of global revenue

What Is the Applicability of the EU AI Act?

The AI Act applies to AI systems with a connection to the EU, either through development, use, or market presence.

The Presence of an AI System

The Act defines an “AI System” as a machine-based system that can analyse inputs and generate outputs like predictions or decisions, with some adaptability or learning capability

Geographic Connection with the EU

The AI Act is a regulation of the EU, so its scope is inherently tied to the region. However, the Act also has extraterritorial reach (similar to the GDPR), meaning it can apply to entities and activities outside the EU if there is a significant connection to the EU.


The Act applies to any AI System that:
Is developed or used by an entity within the EU, Is placed on or made available on the EU market, Produces an output that is used within the EU, Or affects people within the EU.

How Can Zertia Help?

Conformity Assessment

A conformity assessment is like an AI compliance audit—ensuring your system meets the EU AI Act’s requirements. Zertia provides an independent, objective review, identifying any gaps so you’re fully prepared for compliance with confidence.

Future Notified Body Status

Zertia is committed to becoming a Notified Body under the EU AI Act and will apply as soon as the process opens. This will allow us to provide official certification for compliance with the EU AI Act, helping businesses demonstrate regulatory approval for their high-risk AI systems.

Contact Us

Let us know how we can assist you by completing this short form.

Zertia
  • About us
  • Contact Us
  • Resources
Services
  • ISO 42001
  • ISO 27001
  • ISO 27701
  • EU AI Act
Partners
  • Global Network
  • Auditor Comunity
Information
  • Certification Procedures​
  • Impartiality Policy
  • Media
Social
  • LinkedIn
  • Youtube
Memberships
  • IAPP
  • INCITS
  • EU AI Pact
  • AI & Partners
  • © 2025 Zertia | All Rights Reserved
  • Legal Notice
  • Terms and Conditions of Use
  • Privacy Policy
  • Cookies Policy
We Care About Your Privacy

We use our own and third-party cookies to compile statistics on the use of the website in order to identify faults and improve the content and configuration of the website. We also use own and third party cookies to remember some options you have chosen (language, for example) and to show you advertising related to your preferences, based on a profile developed from your browsing habits (for example, from the web pages visited).

Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
3rd Party Cookies
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc. Keeping this cookie enabled helps us to improve our website.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Show Purposes
{title} {title} {title}
We Care About Your Privacy
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
3rd Party Cookies
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc. Keeping this cookie enabled helps us to improve our website.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Show Purposes
{title} {title} {title}