Skip to main content
ABV provides observability and governance tools that help organizations building or deploying GenAI systems meet their transparency, risk management, and governance requirements under the European Union’s Artificial Intelligence Act.

​
What is the EU AI Act?

The EU AI Act is the world’s first comprehensive legal framework for artificial intelligence, establishing harmonized rules for the development, deployment, and use of AI systems across the European Union.
The AI Act entered into force on August 1, 2024. Obligations for General Purpose AI (GPAI) models apply from August 2, 2025, with full enforcement beginning August 2, 2026.
The AI Act categorizes AI systems by risk level (unacceptable, high, limited, minimal) and imposes requirements accordingly. For generative AI systems, it mandates transparency requirements including disclosure of AI-generated content, copyright compliance documentation, and detailed technical documentation. Penalties for non-compliance can reach €35 million or 7% of global annual turnover, whichever is higher.

​
Understanding ABV’s Role in AI Act Compliance

Important Distinction: ABV is NOT an AI system provider or deployer under the EU AI Act. ABV is an observability and governance platform.
  • You (if building AI systems) = Provider with AI Act obligations
  • You (if using AI systems) = Deployer with AI Act obligations
  • ABV = Infrastructure tool that helps you meet those obligations
ABV itself does not create, train, or deploy GenAI models. We provide the monitoring, testing, and documentation infrastructure that helps YOU comply with the AI Act.

​
How ABV Helps You Meet AI Act Requirements

If you’re an AI system provider or deployer, ABV helps you meet specific AI Act obligations:
Article 13 requires providers of high-risk AI systems to ensure transparency toward deployers.
  • Logging Every Interaction: Capture all prompts, responses, and model interactions with full context and timestamps. Learn more
  • Generating Documentation: Export audit trails showing GenAI system operations, data processing, and decision paths.
  • Managing Versions: Track prompt versions, model changes, and configurations for historical compliance records. Learn more
Article 14 requires human oversight for high-risk AI systems.
  • Human Review Workflows: Set up annotation, scoring, and approval processes for oversight requirements. Learn more
  • Intervention Controls: Monitor GenAI operations in real-time and enable operators to override or halt systems.
  • Oversight Documentation: Maintain complete audit logs of all human oversight actions as compliance evidence. Learn more
Article 15 requires testing and validation of high-risk AI systems.
  • Performance Testing: Use our evaluation framework to test GenAI outputs for accuracy, bias, fairness, and quality. Learn more
  • Dataset Management: Create and version test datasets to validate your GenAI system performance over time. Learn more
  • Production Monitoring: Track quality metrics, error rates, and performance degradation in deployed systems.
Article 9 requires a risk management system throughout the AI lifecycle.
  • Safety Controls: Deploy guardrails to detect and prevent harmful GenAI outputs. Learn more
  • Incident Monitoring: Set up alerts for anomalous behavior or quality issues in your GenAI operations.
  • Data Governance: Classify and tag sensitive data your GenAI systems process for proper handling. Learn more
Article 12 mandates record-keeping for high-risk AI systems.
  • Immutable Audit Trails: Store all GenAI system interactions with tamper-evident timestamps for regulatory audits.
  • Compliant Retention: Configure data retention policies that meet regulatory requirements. Learn more
  • Regulatory Export: Export logs and data for regulatory reporting or third-party audits. Learn more

​
If You’re a GPAI Model Provider

GPAI (General Purpose AI) model providers face specific obligations starting August 2, 2025. If you train or provide foundation models like LLMs, you have additional requirements under Articles 53-55 of the AI Act.
Use ABV’s metadata and tagging to maintain records of data used to train or fine-tune models. Learn more
Export model capability documentation from operational data collected in ABV for regulatory transparency requirements.
For high-capability models, use ABV’s evaluation framework for required adversarial testing and systemic risk assessments.

​
Data Residency Options for AI Act Compliance

Organizations subject to the AI Act often need specific data residency to meet regulatory requirements:

​
Standard Deployment Options

  • EU Region (Ireland): AWS eu-west-1 - Immediate availability, data never leaves the EU
  • US Region (Virginia): AWS us-east-1 - For global GenAI deployments

​
Custom Regional Deployments

Full EU Coverage Available: ABV can provide custom deployments in any EU AWS region to meet specific member state requirements or organizational preferences.Available EU regions include:
  • Frankfurt (eu-central-1) - Central EU location
  • Paris (eu-west-3) - For French organizations
  • Stockholm (eu-north-1) - For Nordic countries
  • Milan (eu-south-1) - For Southern Europe
  • Spain (eu-south-2) - For Iberian organizations
  • Other AWS regions - Most global regions available

​
Benefits for AI Act Compliance

  • Data Localization: Keep GenAI training and operational data within specific EU member states
  • Regulatory Alignment: Meet national AI authority requirements
  • GDPR Synergy: Simplify compliance with both AI Act and GDPR
  • Performance: Deploy closer to your GenAI systems for reduced latency

​
Requesting Regional Deployment

Contact Security Team

Email [email protected] to initiate regional deployment request.

Specify Requirements

Include your preferred AWS region, AI Act compliance requirements, data volume, and performance needs.

Receive Deployment Plan

Our team will provide deployment timeline (typically 2-4 weeks) and pricing details.
Learn more about data regions

​
Documentation to Support Your AI Act Compliance

Remember: YOU are responsible for AI Act compliance as the AI provider or deployer. ABV provides tools and documentation to support your compliance efforts, but ultimate compliance responsibility rests with you.
Enterprise customers can request documentation to support their AI Act compliance:
  • Feature Mapping Guide: How to use ABV features to meet specific AI Act obligations
  • Export Templates: Formats for exporting ABV data aligned with AI Act documentation requirements
  • Best Practices Guide: How other customers use ABV for AI Act compliance
To request: Email [email protected] from your company email with:
  • Your organization name and ABV account details
  • Your role under the AI Act (provider, deployer, GPAI model provider)
  • The AI system risk level (high-risk, limited risk, GPAI)
  • Specific compliance challenges you’re facing
We typically respond within 1-2 business days with relevant resources.

​
Related Topics

ISO 42001 (AI Management)

See our AI management system certification

GDPR Compliance

Learn about our GDPR compliance framework

Evaluations

Test and validate AI system performance

Guardrails

Implement AI safety controls