EU AI Act Compliance for Irish Organisations

The deadline hasn't moved. The rulebook is still being written.

August 2 2026 remains the main application date for high-risk AI system obligations under the EU AI Act. Ireland's AI Office becomes operational from that date and enforcement begins. That timeline has not changed.

What has changed is the regulatory clarity organisations were expecting by now. The European Commission missed its February 2026 deadline to publish Article 6 guidance on classifying high-risk systems. The Digital Omnibus — currently in trilogue between the Council, Parliament, and Commission — proposes linking high-risk obligations to the availability of harmonised standards. Those standards will not arrive until late 2026 at the earliest, which pushes practical enforcement of high-risk requirements into 2027 for many organisations.

For Irish boards, the honest message is this: the compliance deadline is fixed, but the detail of what compliance looks like is still emerging. That ambiguity is itself a governance risk. Boards that wait for final clarity before acting will find themselves scrambling. Boards that build governance foundations now — risk inventories, classification frameworks, oversight structures — will be positioned to adapt as the rulebook solidifies.

The Regulation of AI Bill 2026 — Ireland's enforcement architecture

Ireland has published the General Scheme of the Regulation of Artificial Intelligence Bill 2026 — the domestic legislation that transforms the EU AI Act into an operational Irish enforcement system. Central to the Bill is a distributed enforcement model: 15 National Competent Authorities (NCAs) oversee compliance along existing sectoral lines. Your AI regulator is almost certainly a body you already know.

• —Central Bank of Ireland — credit scoring, fraud detection, AML, insurance AI
• —Health Products Regulatory Authority — medical devices and clinical AI
• —Data Protection Commission — AI systems processing personal data (most AI)
• —CCPC — consumer-facing AI in non-specialist-regulated sectors
• —AI Office of Ireland — central coordinator; default NCA for cross-sectoral cases

The AI Office of Ireland — a new statutory independent body — must be operational by 1 August 2026. Enforcement powers, including unannounced inspections and documentation demands, activate the same day. Maximum penalties reach €35 million or 7% of worldwide annual turnover.

Which AI uses trigger obligations?

The EU AI Act does not just apply to technology companies. If your organisation uses automated decision-making, HR and recruitment tools, customer-facing AI systems, credit scoring, or document processing — you have obligations under the Act. Many Irish organisations are already in scope without knowing it.

What a readiness review covers

• Inventory of AI currently in use across your organisation
• Risk classification: minimal, limited, high-risk and unacceptable use
• Gap analysis against your specific obligations under the Act
• Remediation roadmap with prioritised actions
• Documentation required for regulatory audit-readiness

Acuity's approach

Our review is a structured diagnostic, not a generic checklist. We work through your actual AI use — not a hypothetical inventory — and produce an assessment you can act on. In an environment where the regulatory detail is still emerging, the diagnostic is designed to build foundations that hold regardless of how the final rules land. No platform to sell. No preferred vendor. The output is yours to keep.

Particular relevance for

• —Regulated professional services (legal, accounting, advisory)
• —Financial services and insurance
• —State bodies and public sector organisations
• —Healthcare and life sciences
• —HR, recruitment and performance management systems

Common questions