🔺
loading... ← Back

EU AI ACT COMPLIANCE

Delta AI is fully committed to the European Union's AI regulation framework. This page provides transparent information about our compliance status, risk classification, and data protection practices.

EU AI Act Compliant
GDPR Compliant
Article 13 Transparency
EU-Based Infrastructure
Download Compliance PDF

Overview

What is the EU AI Act?

The EU AI Act (Regulation (EU) 2024/1689) is the world's first comprehensive legal framework for artificial intelligence. Adopted by the European Parliament and Council in 2024, it establishes harmonized rules for the development, deployment, and use of AI systems within the European Union.

The regulation introduces a risk-based classification system: Unacceptable Risk (banned), High Risk (strict obligations), Limited Risk (transparency duties), and Minimal Risk (voluntary codes of conduct). Full enforcement begins on 2 August 2026.

How does it apply to Delta AI?

Delta AI has been designed with EU AI Act compliance from inception. As an AI-powered business communication assistant, Delta AI falls within the scope of the regulation and proactively meets all applicable requirements well ahead of the enforcement deadline.

Delta AI Classification

MINIMAL RISK

Under the EU AI Act's risk-based framework, Delta AI is classified as a Minimal Risk AI system — the lowest risk category. This classification is based on the nature and scope of the system's functionality.

Why Minimal Risk?

  • Non-executing assistant — prepares responses and communicates, does not autonomously make decisions
  • No control over physical systems, devices, or critical infrastructure
  • No legal, medical, financial, or employment decisions
  • No biometric identification, emotion recognition, or social scoring
  • No manipulation techniques or subliminal influence
  • Full human oversight maintained at all times — business owners review all interactions
  • Operates solely as a communication tool for scheduling, Q&A, and customer service
Minimal Limited High Unacceptable
Delta AI — Minimal Risk Level

Transparency Requirements (Article 13)

Article 13 of the EU AI Act requires that AI systems are designed and developed in such a way that their operation is sufficiently transparent. Delta AI meets these requirements through the following measures:

AI Disclosure

  • All automated responses are clearly identified as AI-generated
  • Customers are informed they are interacting with an AI system
  • WhatsApp, email, and chat messages include AI attribution

AI Provider Chain

Delta AI uses large language models from multiple providers. All providers have committed to EU AI Act compliance:

OpenAI GPT-4o-mini
Primary AI provider
EU AI Pact Signatory
Google Gemini
Secondary fallback
EU AI Pact Signatory
Mistral AI
Tertiary fallback
EU-based company (Paris)
Ollama (Local)
Offline fallback
Local — no external data transfer

Documentation & Endpoints

The following endpoints are publicly accessible for regulatory review and transparency:

GET /api/version — System version, compliance flags
GET /api/changelog — Full version history (JSON)
GET /api/compliance/pdf — Downloadable compliance report
GET /eu-ai-act.html — This compliance page

Data Protection

GDPR Compliance

Delta AI is fully compliant with the General Data Protection Regulation (EU) 2016/679 (GDPR). Data protection is embedded into the system architecture by design and by default (Article 25).

EU-Only Data Storage

  • All data stored exclusively on EU-based servers
  • PostgreSQL database hosted in EU data centers
  • No data transfers outside the European Economic Area (EEA)
  • Data minimization — only essential business data is processed
  • Automated data retention policies with configurable periods

Your GDPR Rights

  • Right to Access (Art. 15) — Request all your stored data at any time
  • Right to Rectification (Art. 16) — Correct inaccurate personal data
  • Right to Erasure (Art. 17) — "Right to be forgotten"
  • Right to Data Portability (Art. 20) — Export your data as CSV/ZIP
  • Right to Object (Art. 21) — Object to specific processing activities

Automated data export is available through the Admin Dashboard. No manual request required.

Technical Measures

Delta AI implements industry-standard security measures to protect customer data and ensure system integrity:

🔒

Encryption

TLS 1.3 for all connections. AES-256 encryption at rest. End-to-end protection for all data in transit and storage.

🛡

Access Controls

Role-based access control (RBAC). Multi-factor authentication support. Per-tenant data isolation.

📄

Audit Logging

Complete audit trail of all system operations. Immutable logs. Configurable retention. Available for regulatory review.

  • Regular security assessments and penetration testing
  • Automated vulnerability scanning and dependency updates
  • Incident response procedures with 72-hour breach notification (GDPR Art. 33)
  • Data backup with geographic redundancy within the EU

Risk Assessment

Delta AI conducts ongoing risk assessments in accordance with the EU AI Act's requirements. The following summarizes the current assessment:

Risk Category

MINIMAL

Last Review

2026-Q1

Minimal Limited High Unacceptable

Assessed Areas

  • Fundamental rights impact — None. No decisions affecting legal rights or access to services.
  • Safety risk — None. No control of physical systems or safety-critical processes.
  • Bias and fairness — Monitored. Responses are based on business context, not personal characteristics.
  • Data protection risk — Low. Data minimization, EU-only storage, encryption at rest and in transit.
  • Transparency risk — Low. AI nature is disclosed to all end users.

EU AI Act Timeline

2024-03-13
EU Parliament approves the AI Act
2024-05-21
Council of the EU formally adopts the AI Act
2024-08-01
AI Act enters into force (published in Official Journal)
2024-09
EU AI Pact launched — OpenAI, Google, Microsoft, Amazon and 100+ companies sign
2025-02-02
Prohibited AI practices ban takes effect
2025-08-02
General-purpose AI model obligations apply
2026-08-02
Full enforcement — all provisions in effect

Delta AI has been designed with EU AI Act compliance from day one — well ahead of the full enforcement deadline.

Live System Status

Loading system information...

Contact & Regulatory Inquiries

For questions about Delta AI's compliance, data protection practices, or regulatory inquiries:

Regulatory authorities can request additional technical documentation upon written request to the above email addresses.