AI continues to garner much-deserved attention from business leaders for its transformational potential. However, all this enthusiasm has also brought a persistent concern: How will AI be regulated?
This ongoing uncertainty has been identified as the top barrier to AI adoption in recent KPMG surveys. With the passage of the European Union (EU) Parliament’s Artificial Intelligence Act (AI Act), many organisations will now start to gain clarity as they navigate the specifics of this first-of-its-kind legislation. It was published in the Official Journal of the European Union on 12 July 2024 and entered into force on 1 August 2024. Get an overview of everything you need to know here.
The idea behind the AI Act is that the higher the risk of an AI system, the more stringent are the associated requirements and obligations. AI regulation is intended to increase user confidence in AI within the EU and thereby create better conditions for innovation for manufacturers and users of AI applications. The EU AI Act casts a wide net, affecting any organisation that uses AI technology as part of products or services delivered in the EU.
Many aspects of the EU AI Act will be challenging for organisations to implement and address, particularly in terms of technical documentation for the testing, transparency, and explanation of AI applications. On top of this it is also essential that organisations crack the code on how to bridge the gap between the legal aspects and the practical aspects of AI use. We have listed eight concrete steps for your organisation to get started here.
Violations of the AI Act can result in fines of up to 30 million euros or up to six percent of total annual global sales for the previous fiscal year, making the sanctions comparable to those of the GDPR.
The AI Act’s formal approval starts the clock on a series of regulations that will roll out over two years. The new law includes a specific definition of AI, tiered risk levels, detailed consumer protections, and much more.
Get started with the AI Act
Frequently asked questions
The EU Artificial Intelligence Act (AI Act) is the first horizontal and standalone AI Framework. It is designed to regulate both the development and use of AI, aiming to ensure that AI systems are safe and respect fundamental rights.
The obligations of the EU AI Act affect manufacturers, suppliers, and distributors of AI systems, product manufacturers who incorporate AI systems into their products, and users of AI systems. Essentially, it impacts virtually every company involved with AI in the EU.
The AI Act entered into force on 1 August 2024. The AI Act is slated to be implemented incrementally over time. Instead of a single official start date, various regulations and controls will be introduced in phases. Below you can see a timeline of important dates:
- 2 August 2024 – First provisions come into force.
- 2 February 2025 – The first provisions on the prohibition of unacceptable AI systems, requirements for AI literacy, and general provisions enter into force.
- 2 May 2025 – Codes of practice for General Purpose AI (GPAI) and documentation requirements for technical architecture come into force.
- 2 August 2025 – Obligations for the deployers of AI models for general purpose and provisions on sanctions.
- 2 August 2026 – Obligations for high-risk AI systems enter into force.
- 2 August 2027 – EU notes of guidance detailing and categorising high-risk AI systems as specified in Article 6 (1) come into force.
- 2031 – The final assessment will be published by the Commission.
Meet our team
The AI Act requires an understanding of both new technologies and legal aspects. Therefore, we work cross-functionally, combining expertise from several of our service areas to ensure we provide you with the most value and prepare you for the legislation in the best possible way. We can, among other things, help you:
- Understand AI tools, implement them and secure best practices.
- Undertake a GAP analysis in terms of compliance and what you need to be aware of.
- Take privacy and GDPR into consideration.
- Prepare your organisation for the AI Act, including training your employees.
Contact us
Lena Ernlund Malmberg
Director, Head of Legal Transformation
KPMG i Danmark
Jens Krenk
Partner, NextGen Operations
KPMG in Denmark
Jesper Kaasgaard
DIrector, Digital Risk
KPMG in Denmark
Connect with us
- Find office locations kpmg.findOfficeLocations
- kpmg.emailUs
- Social media @ KPMG kpmg.socialMedia