Posts tagged “deployer”
The AI Literacy Obligation Nobody's Talking About (Article 4)
Article 4 applies to every company that builds or uses AI — not just high-risk ones — and it's been in force since February 2025. Here's what 'sufficient AI literacy' actually requires and how to satisfy it without overthinking it.
Who Needs a Fundamental Rights Impact Assessment (FRIA)? Article 27
The FRIA is a deployer obligation most providers have never heard of. It applies to public bodies and certain high-risk deployers — and you can build it on top of your existing DPIA. Here's who needs one and what goes in it.
If You Build on the OpenAI or Anthropic API, Are You Regulated by the EU AI Act?
Using GPT or Claude through an API doesn't make you a GPAI model provider — but it can still make you a provider or deployer of a high-risk AI system. Here's where the obligations actually land when you build on someone else's model.
Article 25 and the Liability Handoff: When Your API Customer Becomes the AI Provider
Article 25 of the EU AI Act describes when a deployer becomes a provider — inheriting full compliance obligations. If you sell API access to AI capabilities, this affects your customers and your contracts.