Skip to main content
European Union
AI Regulation

EU AI Act

European Union Artificial Intelligence Act

The world's first comprehensive AI regulation. Classifies AI systems by risk level and imposes requirements on high-risk AI in healthcare.

EU AI Act — Official
Max Penalty
Up to €35M or 7% of global annual revenue
Manual Implementation
4 to 12 months for AI Act compliance depending on risk classification
With VertiComply
Generated code includes human oversight, transparency, and documentation patterns for high-risk AI healthcare applications

The EU AI Act, which entered into force in 2024 with phased enforcement through 2027, is the first comprehensive legal framework for artificial intelligence. Healthcare AI systems are classified as high-risk, requiring conformity assessments, transparency, human oversight, and documentation. This impacts any healthcare app using AI for diagnosis, treatment recommendations, triage, or clinical decision support — even if the organization is based outside the EU.

What It Covers

Risk classification — minimal, limited, high, unacceptable risk categories

Transparency requirements for AI systems interacting with humans

Human oversight mechanisms for high-risk AI

Data governance — training data quality, bias testing, documentation

Technical documentation — model cards, performance metrics, limitations

Conformity assessment for high-risk AI systems

Penalties & Enforcement

Prohibited AI practices: up to €35M or 7% of global revenue

High-risk AI non-compliance: up to €15M or 3% of global revenue

Supplying incorrect information: up to €7.5M or 1% of global revenue

Enforcement begins February 2025 (prohibited practices), August 2026 (high-risk AI)

How VertiComply Helps

AI system documentation and model card generation

Human oversight mechanisms (review, override, escalation)

Transparency labels and explainability features

Data governance patterns for training data management

Risk classification documentation templates

Frequently Asked Questions

Is healthcare AI always high-risk under the EU AI Act?

Most healthcare AI systems are classified as high-risk — including AI for diagnosis, triage, treatment recommendations, and clinical decision support. This triggers conformity assessment and documentation requirements.

Does the EU AI Act apply to US companies?

Yes — if your AI system is used by people in the EU or if its output is used in the EU. The territorial scope is similar to GDPR.

Related Articles

How to Build a Compliant Healthcare App in 2026

Automated Compliance Scoring: How AI Validates Healthcare Code

Build EU AI Act-compliant from day one

VertiComply generates production-ready code with EU AI Act safeguards built in automatically.

Quick Facts

Region

European Union

Category

AI Regulation

Max Penalty

Up to

Manual Timeline

4 to 12 months

With VertiComply

Minutes

Other Frameworks

HIPAA

United

GDPR

European

SOC 2

Global

ISO 27001

Global

HITRUST CSF

United

FDA 21 CFR Part 11

United
View all frameworks →

Free EU AI Act Checker

Answer a few questions to assess your EU AI Act compliance readiness.