EU AI Act Goes Operational

The EU AI Act is moving from law to code: teams and vendors are baking logging, model documentation and prompt scanning into build pipelines. (mondaq.com) The regulation entered into force on 1 August 2024 and set a phased application schedule that puts general-purpose AI rules into effect on 2 August 2025 and most high‑risk obligations on 2 August 2026. (ai-act-service-desk.ec.europa.eu) Vendors and tooling firms are shipping prompt-management, observability and DLP features today — examples include PromptLayer’s request logging and LangSmith’s prompt registry for versioning. (braintrust.dev) The Act forces concrete engineering work: Article 12 and related provisions require automatic record‑keeping and event logs for high‑risk systems, turning runtime traces into compliance artefacts. (ai-act-service-desk.ec.europa.eu) Providers of high‑risk AI systems must also implement post‑market monitoring plans under Article 72, including continuous performance tracking and incident collection. (artificialintelligenceact.eu) The AI Act sits alongside the EU General Data Protection Regulation, and legal guidance says organisations must map AI Act duties to GDPR obligations such as data‑protection impact assessments and controller/processor roles. (iapp.org) Technical bodies are drafting standards and templates — for example the draft prEN ISO/IEC 24970 on AI system logging — because engineers need machine‑readable schemas for logs, evidence and post‑market reports. (practical-ai-act.eu) “Understanding when specific obligations take effect is crucial for organizations developing or deploying AI technologies in the European market,” said Zahra Laher in a recent timeline briefing, a reminder legal calendars are now engineering roadmaps. (mondaq.com) Enforcement steps up on 2 August 2026; organisations that ship high‑risk systems will need audited logs, documented prompts and post‑market monitoring in their CI/CD pipelines or face conformity and sanction processes. (ai-act-service-desk.ec.europa.eu)