AI Regulation in European Union
European Union has 59 tracked AI regulatory updates across 5 frameworks. This page provides an overview of the current regulatory landscape, upcoming deadlines, and recent enforcement activity.
Upcoming Deadlines
Commission expects publication of additional transparency guidance in Q2 2026
EU AI Act implementation timeline and support instrumentsSecond-half exchange and consolidation of national findings begins
CEF 2026 coordinated enforcement on transparency and information obligationsTransparency rules become applicable in August 2026
EU AI Act transparency and AI-generated content initiativesTransparency obligations under Article 50 become applicable
EU AI Act enters into forceArticle 50 AI Act transparency obligations become applicable
AI Act code of practice process for transparent generative AI systemsAI Act fully applicable and transparency rules apply
EU AI Act implementation timeline and support instrumentsMarket surveillance authorities start supervising and enforcing Article 4
AI Act Article 4 AI literacy Q&A guidanceAI Act fully applicable
AI Act and European AI Office implementation and enforcementRecent Regulatory Updates
EU consults on future cloud and AI policies tied to AI Act implementation
The Commission’s cloud-and-AI policy consultation explicitly seeks input on AI Act implementation, so organisations should treat it as an active policy-development channel that may shape future operational obligations.
EU AI Office advances GPAI code of practice and AI-generated content transparency work
The EU AI Office is actively operationalizing the AI Act through codes of practice and related guidance for general-purpose AI and AI-generated content, meaning providers should align now to avoid being behind the forthcoming compliance baseline.
ESAs publish first annual report on DORA major ICT-related incidents
On 2026-06-03, the EBA, EIOPA and ESMA published their first annual overview of major ICT-related incidents under DORA, underscoring that borderless ICT and AI-driven risks now require financial entities to tighten cybersecurity and incident-reporting readiness.
EU consultation on transparency obligations under the AI Act
The Commission has launched a consultation on AI Act transparency rules, signaling that providers should prepare for clearer obligations on informing users and marking synthetic content.
EU AI Office finalizes General-Purpose AI Code of Practice
The Commission’s 2025 AI Act update makes the General-Purpose AI Code of Practice available as a voluntary compliance tool, meaning GPAI providers now have a concrete benchmark for transparency, copyright, and safety/security obligations.
EU AI Office implementation guidance and content-labeling work advances
The EU AI Office says it is preparing implementation guidelines and a code of practice for AI-generated content labeling, so providers should expect near-term interpretive detail on transparency obligations.
EU AI Act sandbox implementing act consultation closes
The Commission’s consultation on the AI Act implementing act for regulatory sandboxes closed on 2026-01-13, so organizations seeking sandbox access should now watch for the final rules and application conditions.
EU AI Office final GPAI Code of Practice available
The European Commission announced the final General-Purpose AI Code of Practice, giving GPAI providers a practical route to demonstrate AI Act compliance before the AI Office begins enforcing the relevant obligations.
AI Act: Have Your Say on Trustworthy General-Purpose AI
The EU AI Office’s GPAI consultation closed on September 18, 2024, and its outcomes feed the Code of Practice and training-data-summary guidance, making the consultation record relevant to present-day AI Act readiness.
General-Purpose AI Code of Practice Now Available
The European Commission made the General-Purpose AI Code of Practice available for voluntary signatories, creating an immediate compliance benchmark for GPAI providers seeking to demonstrate readiness for upcoming AI Act obligations.
EDPB marks 10 years of GDPR and ongoing AI governance impact
The EDPB’s 10-year GDPR anniversary update underscores that AI training, deployment, and cross-border processing continue to be governed by the GDPR framework and its supervisory ecosystem, so organizations should refresh their AI privacy controls and supervisory authority mapping now.
EU AI Act GPAI provider guidance and code-of-practice process
The Commission’s GPAI guidance and code-of-practice process makes the AI Act’s provider obligations operational now, so GPAI developers need to finalize transparency, copyright, risk-management, and documentation controls rather than waiting for enforcement practice to settle.
EU AI Act consultation on prohibitions and system definition
The European Commission opened consultation on AI Act prohibitions and the AI system definition, signaling that scope and banned-use guidance are still being refined and may affect classification decisions.
EU AI Act timeline and FAQ update on phased obligations
The European Commission’s AI Act FAQ confirms the Act entered into force on 2024-08-01 and is being applied in phases, making AI Act readiness an immediate governance issue rather than a future-only project.
EDPB adopts scientific research and anonymisation guidance package
On 2026-04-16, the EDPB adopted new guidelines on processing personal data for scientific research purposes and accelerated finalisation of anonymisation guidance, creating immediate compliance relevance for organizations that rely on research exemptions or anonymized datasets under GDPR.
Applicable Frameworks
Key Topics
Weekly digest — coming soon
Leave your email to get the first issue when it ships. Free, no account required.
We use your email only for the digest. Privacy policy