August 2, 2026.
Every obligation. One platform.
From Article 50(1) disclosure to Article 14 human oversight to GPAI model provenance — Eniyan is the only platform that addresses every compliance obligation the EU AI Act creates for operators of consumer-facing and high-risk AI systems.
⏰ Article 50 applies from August 2, 2026. GPAI obligations already effective August 2025. Fines up to €30M or 6% of global turnover for high-risk violations.
Seven obligations. All addressed.
Each article creates a specific, enforceable requirement. Here is exactly what the law says and how Eniyan closes the gap.
Inform users they are interacting with an AI system clearly and at the time of first interaction.
Know Your Agent issues a cryptographic identity credential to each agent. Trust Transparency publishes a consumer-readable verification page operators link to at first interaction — satisfying the disclosure obligation with a third-party-verified artifact.
Disclosure must be clear, distinguishable, and presented at first interaction — not buried in terms or shown post-interaction.
The public verification page is designed for consumers, not compliance teams. No account required. The seal embeds directly in the chat interface, rendered before the first message is exchanged.
Technical documentation covering purpose, capabilities, limitations, performance metrics, and risk management must be produced and maintained before market placement.
AI System Cards automatically generate Article 11/13-compliant technical documentation PDFs from your agent's registered identity, scope declarations, uploaded system prompt and tool manifest, AI review findings, and linked GPAI model. One click from the Know Your Agent dashboard.
High-risk AI must be designed so human operators can effectively oversee it — including ability to override or interrupt the AI at any time and to authorize tasks before the agent acts.
JIT (Just-In-Time) activation enforces Article 14 at the cryptographic layer: operators must authorize each task window before the credential becomes active. When no task window is open, the credential is technically suspended — the agent cannot act. Every authorization and expiry is logged immutably.
Providers must establish and continuously maintain a documented risk management system across the AI system's full lifecycle.
The Risk Registry tracks risk entries across your agent fleet — auto-populated from AI review findings or added manually. Records risk type, severity, description, mitigation notes, and resolution status. Exportable as a formatted Risk Registry Report PDF for regulatory inspection.
High-risk AI systems must record relevant operational events. Deployers must retain and be able to produce logs for national competent authorities.
Eniyan's tamper-evident audit log (append-only, signed) captures 50+ AI operation event types throughout every agent's lifecycle. The Compliance Audit Log Export generates a regulatory-formatted PDF or structured CSV with human-readable event descriptions, ISO 8601 timestamps, and signing key fingerprint.
Deployers building on GPAI models must be able to demonstrate which model powers each system and obtain the downstream compliance documentation.
The GPAI Model Registry links each deployed agent to its underlying model — provider, version, capability summary, known limitations, and training cutoff — from Eniyan's pre-maintained registry of major GPAI models. Flows automatically into AI System Card PDFs.
Article 50 compliant in 48 hours
Four steps from signup to a live Article 50 disclosure seal. High-risk compliance stack activatable in the same dashboard.
Register each agent in 15 minutes
Declare the agent's purpose, capabilities, and explicit restrictions using the structured Know Your Agent checklist. Upload your system prompt and tool manifest as the Article 13 evidence layer. No legal team required.
Eniyan reviews and issues credentials
Our trust team cross-checks your scope declaration against the uploaded evidence. Approved agents receive a cryptographic identity credential and a consumer-readable public verification URL — your Article 50(1) disclosure artifact.
Embed disclosure at the first interaction
Add the verification link to your chat widget header before the first message is exchanged. This satisfies Article 50(1) and 50(5): the disclosure is third-party verified, consumer-accessible, and presented at the moment of first contact.
Activate the high-risk compliance stack
Enable JIT activation for Article 14 human oversight. Log risks in the Risk Registry for Articles 9/17. Export Compliance Audit Logs for Articles 12/26. Link each agent to its GPAI model for Articles 53–55. Scope changes trigger automatic re-review.
Who needs to act now
Any company deploying consumer-facing AI that reaches EU users is in scope. Sector determines whether high-risk obligations apply on top of Article 50.
AI credit, fraud, and payment agents face EU AI Act + FCA dual compliance pressure. Consequential decisions trigger full high-risk obligations.
Consumer-facing AI at scale across EU jurisdictions. Article 50(1) applies to every customer interaction.
Platforms exposing AI to EU end-users are in scope. Deployers bear Article 50 responsibility.
Patient-facing AI is high-risk under EU AI Act and sector rules. Full technical documentation and human oversight required.
AI legal assistants serving EU consumers face Article 50 disclosure and potential high-risk classification.
Consumer-facing tracking and customer service agents trigger Article 50(1) disclosure obligations.
Why not just write a policy page?
Article 50(5) requires disclosure at first interaction — not a buried policy link. And Article 50 is only one of seven obligations. Third-party verification demonstrates good faith to regulators; technical enforcement is what actually closes the high-risk AI requirements.
| Approach | Art. 50 satisfied | Art. 14 satisfied | Art. 9/13 satisfied |
|---|---|---|---|
| Eniyan (full stack) | ✓ | ✓ | ✓ |
| Privacy policy page | ✗ | ✗ | ✗ |
| Internal compliance tool | ✗ | ✗ | Partial |
| Build your own disclosure page | Partial | ✗ | ✗ |
| Compliance consultant (report only) | Partial | ✗ | Partial |
| Do nothing | ✗ | ✗ | ✗ |
KYA Add-on
The KYA Compliance Pack covers all 7 EU AI Act obligations with one-click documentation.
Live PDFs from your real agent data — AI System Cards, Risk Registry, Audit Log, GPAI Provenance, and more.
Eniyan
Start shipping verifiable trust.
Today. On a free plan.
Pick one product or all three. No credit card to start. Switch or combine whenever you're ready.