Unlock unlimited alerts, exports & API access — RuleWatch Pro at $29/mo

Regulation dossier

European Union

EU AI Act

AI RegulationIn Effect

A focused view of the rule, its enforcement posture, and the timeline teams should keep in their operating plan.

Plain-English summary

What this regulation means

Built for operators

The EU AI Act creates a single risk-based rulebook for AI across the bloc, ranging from outright bans on a narrow set of uses to detailed duties for high-risk systems and general-purpose AI models. It affects providers, deployers, importers, distributors, and product manufacturers that place AI systems on the EU market or use them in the EU. Core requirements include risk management, technical documentation, transparency, human oversight, post-market monitoring, and incident reporting.

Reading guide

Use the timeline below to see how the rule progressed from enactment to current obligations.

Related regulations surface adjacent requirements in the same jurisdiction or policy lane.

Timeline

Regulatory lifecycle

Sequence: Entered Into Force -> Prohibited Practices Apply
  1. 1

    Aug 1, 2024

    Entered Into Force

    The AI Act entered into force, starting a phased compliance schedule across prohibited practices and high-risk use cases.

  2. 2

    Feb 2, 2025

    Prohibited Practices Apply

    The first substantive AI Act obligations began to apply, including the ban on prohibited AI practices.

Pro feature

📊 Stay ahead of this regulation

Get email alerts when this regulation changes and export records to CSV for your compliance workflow — available with RuleWatch Pro.

  • →Email alerts when this regulation is updated or enforced
  • →Export to CSV or JSON for compliance reporting
  • →API access to integrate regulation tracking into your workflows
See what's included

Subscribe for regulation alerts

Get alerts for this regulation →

Free weekly digest for compliance professionals following material legal changes.

No spam. Professional updates only.

Free to join. Unsubscribe anytime.

Related regulations

What else belongs on the watchlist

Pulled from the same jurisdiction or category so teams can compare adjacent obligations quickly.

European Union

NIS2 Directive

CybersecurityIn Effect

NIS2 expands the EU cybersecurity framework to more sectors and entities and requires management-approved cybersecurity risk management measures and incident reporting. It affects essential and important entities across energy, transport, health, digital infrastructure, public administration, manufacturing, and other critical sectors. The directive also increases supervisory and penalty powers and coordinates cross-border cooperation.

Effective
Jan 16, 2023
View detail

European Union

General Data Protection Regulation

PrivacyIn Effect

The GDPR sets the EU baseline for personal-data processing, requiring lawful bases, transparency, security safeguards, and rights for access, deletion, and objection.

Effective
May 25, 2018
View detail

Colorado, United States

Colorado AI Act

AI RegulationIn Effect

Colorado requires developers and deployers of high-risk AI systems to use risk management, impact assessments, and consumer notices tied to consequential decisions.

Effective
Feb 1, 2026
View detail