Before you ship, know where you stand. Classify a use case against the EU AI Act's risk tiers, map it to NIST AI RMF and ISO 42001, and generate a controls checklist you can actually work through.
Describe the use case
Use case
Characteristicsrefines the result
Processes personal dataGDPR likely applies
Affects individuals' accessto services, credit, jobs
Safety-criticalcould affect health or safety
Interacts directly with peoplechat, voice, content
Fully automated decisionno human in the loop
Serves EU usersEU AI Act in scope
Indicative classification for planning. It is not legal advice — confirm obligations with qualified counsel.
EU AI Act classification
High riskCredit scoring / lending decisions
What this means
Map to frameworks
Your controls checklist
We build these controls in from day one.
Governance, documentation, human oversight and monitoring — engineered into the system, not bolted on after.