AI Compliance Checklist for Companies

Before taking action, you need a clear overview: □ Record all AI systems in the company (including tools like ChatGPT, Copilot) □ Document for each system: purpose, user base, data sources □ Identify deployment areas (HR, marketing, customer service, etc.) □ Designate responsible persons per system □ Document suppliers and providers of AI systems Tip: Involve all departments – teams often use AI tools that IT doesn't know about.

Assign each AI system to a risk class: □ Check against the list of prohibited practices (Art. 5) □ Check against Annex III (high-risk areas) □ Check transparency obligations (Art. 50) □ Document the classification with justification □ Have the classification reviewed by a second person Our free compliance check helps you determine the correct risk class.

Depending on risk class: For high-risk AI: □ Create/complete technical documentation □ Implement risk management system □ Ensure data governance □ Establish human oversight □ Conduct conformity assessment For limited risk: □ Implement labeling process □ Create transparency notices □ Set up chatbot notices For all companies: □ Conduct AI literacy training (Art. 4) □ Designate a compliance officer

Compliance is not a one-time project: □ Regular review of risk classification □ Update technical documentation when changes occur □ Training for new employees □ Monitor regulatory changes □ Annual compliance audit □ Document all measures and decisions With our premium toolkit, you can digitally manage and document this entire process in an audit-ready format.