7-Day Content
Calendar — AI Act
& AI Agents

Follow with a thread listing Annex III categories: biometrics, critical infrastructure, education, employment, essential services, law enforcement, migration, justice. For each: one sentence on how an AI agent might fall in.

Article 6 + Annex III creates the classification trigger. The list is not exhaustive of use-cases — it's categorical. An agent that automates hiring screening, credit scoring, or patient triage is high-risk by definition, regardless of how small or "assistive" it is.

Art. 6(1)Annex IIIArt. 3(1)

Agent angle: "Most teams shipping AI agents think the Act is about chatbots. It's not. An agent that reads employee performance data to generate a review draft is processing employment data — that's Annex III, point 4."

CTA: "Which Annex III categories could your agent touch? Drop it in the replies."

Open with the statistic: Article 10 requires training data to be "relevant, representative, free of errors and complete to the best extent possible." Ask: can you prove that today?

Article 10(3) mandates data governance practices covering collection, processing, and preparation. Article 10(5) allows processing of special category data (health, biometrics) only where "strictly necessary" — AI agents querying such data must justify it.

Art. 10(2)Art. 10(3)Art. 10(5)

Agent angle: "Agentic RAG systems retrieving financial records, health summaries, or HR files at query time are performing real-time data access over potentially special-category data. That access must be purposeful, logged, and justified — not just technically possible."

CTA: "Does your team have a documented data governance policy for your agent's retrieval layer? Honest answers only."

Lead with the poll: "What's your current human oversight model for AI agents in production?" Options: Full automation / Human reviews outputs / Human approves before action / No agents yet.

Article 14(1)–(4): High-risk AI must allow natural persons to fully understand the system's capacities, correctly interpret outputs, and decide not to use it or override its output. This means your agent needs interpretable output, an audit trail, and a hard stop mechanism.

Art. 14(1)Art. 14(4)(a)Art. 14(4)(e)

Agent angle: "Multi-step agents are the hardest case. If your agent autonomously chains tool calls — search → query DB → draft email → send — at what point does a human actually see what's happening? Article 14 requires that oversight is built into the architecture, not bolted on post-deployment."

CTA: "Share your HITL architecture — what does 'pause for human review' actually look like in your agent stack?"

Frame as the "double obligation" problem — model provider obligations (Art. 52–53) AND deployer obligations (Art. 13, 26) stack on top of each other.

Article 52: AI systems interacting with humans must disclose they are AI. Article 53: GPAI model providers must publish training data summaries and maintain model cards. Article 13: Deployers must ensure outputs are interpretable. When your agent takes action on behalf of a user, transparency must exist at both the model and application layer.

Art. 52(1)Art. 53(1)(b)Art. 13(1)

Agent angle: "A financial services agent using Claude to summarise client portfolios and generate advice drafts is: (1) subject to Art. 13 — output must be explainable to the deployer; (2) reliant on Anthropic's Art. 53 obligations for model-level transparency; and (3) possibly violating Art. 52 if the client doesn't know they're interacting with AI."

CTA: "Does your agent disclose its AI nature at every user-facing touchpoint? Where does transparency break down in your stack?"

Thread format: "Here are the 5 components of an Article 9-compliant risk management system for an AI agent in production" — identification, estimation, evaluation, mitigation, residual risk documentation.

Article 9(1): Risk management must be "a continuous iterative process." Article 9(4): Risk mitigation measures must consider foreseeable misuse. Article 17: Quality management system must cover design, testing, monitoring, and post-market surveillance. Together: compliance is an ongoing engineering discipline, not a legal checkbox.

Art. 9(1)Art. 9(4)Art. 17(1)(e)

Agent angle: "AI agents in production drift. Prompts change, tools are added, data sources expand. Article 9 requires that your risk register reflects the system as it runs — not as it was designed. Every new tool call your agent can make is a new risk surface that must be evaluated."

CTA: "Is your agent's risk management process manual or automated? What triggers a risk re-evaluation in your team?"

Open with a myth vs. reality format. Myth: "Anthropic / OpenAI handles this." Reality: Model provider handles GPAI obligations. YOU handle deployment obligations.

Article 26(1): Deployers must use AI only as intended. Article 26(5): Deployers must conduct Data Protection Impact Assessments (DPIA) where Art. 35 GDPR is triggered. Article 26(6): Deployers must inform providers of any serious incidents. The Act creates a shared but distinct responsibility chain — providers and deployers both have independent obligations.

Art. 26(1)Art. 26(5)Art. 26(6)

Agent angle: "An enterprise deploying a third-party AI agent (built on LangChain + Claude) to process customer support data cannot point to Anthropic when the regulator asks about human oversight mechanisms, data access logs, or incident reporting. Article 26 is your problem."

CTA: "Have you mapped where your obligations end and your AI provider's begin? Most teams haven't. What does your vendor contract actually say about compliance responsibilities?"

Thread format — one question per article covered this week. Each question is binary: "Can you answer YES to this right now? If not, that's your compliance gap."

1. Have you classified your agent under Annex III? (Art. 6)
2. Can you document your agent's data governance? (Art. 10)
3. Is human override technically built into your agent? (Art. 14)
4. Are all user-facing touchpoints disclosed as AI? (Art. 52)
5. Do you have a continuous risk management process? (Art. 9)
6. Have you mapped deployer vs. provider obligations? (Art. 26)
7. Do you have incident reporting and logging in place? (Art. 26(6))

Penalties hook: "Article 71 penalties for high-risk violations: up to €15M or 3% of global annual revenue. For prohibited practices: €35M or 7%. These aren't theoretical. National authorities are building enforcement capacity right now."

CTA: "Save this checklist. Share it with your compliance team. And if you're building tooling to automate any part of this audit trail — I'd genuinely love to talk."