Definition

The EU AI Act (Regulation (EU) 2024/1689) is the world's first comprehensive legal framework for artificial intelligence. It entered into force on 1 August 2024 and will apply fully from 2 August 2026. The AI Act classifies AI systems by risk level and imposes proportionate requirements on providers and deployers of AI systems in the EU market.

The AI Act's risk classification system has four levels. Unacceptable risk AI systems — such as social scoring systems and real-time biometric surveillance in public spaces — are prohibited. High-risk AI systems — such as AI used in employment decisions, credit scoring, and critical infrastructure — are subject to extensive requirements including conformity assessments, technical documentation, and human oversight. Limited risk AI systems — such as chatbots and AI-generated content — are subject to transparency obligations. Minimal risk AI systems — such as spam filters and AI-powered games — have no specific requirements.

AI systems that generate business recommendations — including AI-powered search engines, recommendation engines, and conversational AI assistants like ChatGPT and Perplexity — are subject to the AI Act's transparency obligations at minimum, and may be classified as high-risk systems depending on their use case. This creates a regulatory environment where AI systems are under increasing pressure to use verified, authoritative data sources when generating business recommendations.

How the EU AI Act affects business identity

The EU AI Act affects business identity through three mechanisms: transparency obligations, accuracy requirements, and the general-purpose AI model provisions.

Transparency obligations (Article 52). AI systems that interact with natural persons must disclose that they are AI systems. For AI systems that generate business recommendations, this means that users must be informed that the recommendation is generated by an AI system. This transparency requirement creates pressure on AI system providers to ensure that their recommendations are based on verified, authoritative data — because recommending an unverified or fraudulent business could expose them to liability.

Accuracy requirements (Annex III). High-risk AI systems must be designed to achieve appropriate levels of accuracy, robustness, and cybersecurity. For AI systems used in business contexts — such as AI-powered procurement tools, credit scoring systems, or business intelligence platforms — this means that the data used to generate recommendations must be accurate and verifiable. Verified business identity records provide the kind of authoritative, machine-readable data that high-risk AI systems require to meet the AI Act's accuracy requirements.

General-purpose AI model provisions (Title VIII). The AI Act imposes specific requirements on providers of general-purpose AI models — large language models like GPT-4, Claude, and Gemini. These providers must maintain technical documentation, comply with copyright law, and publish summaries of the training data used. For business identity, this means that the data used to train these models — including information about businesses — must be documented and verifiable. Businesses with verified digital identities are more likely to have their information included accurately in AI training data.

Why the EU AI Act matters for business visibility

The EU AI Act matters for business visibility because it creates a regulatory environment where AI systems are under increasing pressure to use verified, authoritative data sources. Businesses that have established verified digital identities — with machine-readable structured data anchored to national business registries — are better positioned to be cited accurately and confidently by AI systems that are subject to the AI Act's requirements.

The AI Act does not specifically require AI systems to verify the businesses they recommend. However, it creates strong incentives for AI system providers to prefer verified data sources over unverified ones. A business with a verified AI Verified passport provides AI systems with a machine-readable, authoritative identity record that can be cited with confidence — reducing the AI system provider's exposure to the AI Act's accuracy and transparency requirements.

Frequently asked questions

What is the EU AI Act?

The EU AI Act (Regulation (EU) 2024/1689) is the world's first comprehensive legal framework for artificial intelligence. It entered into force on 1 August 2024 and will apply fully from 2 August 2026. The AI Act classifies AI systems by risk level and imposes proportionate requirements on providers and deployers of AI systems in the EU market.

Does the EU AI Act apply to AI systems that recommend businesses?

Yes. AI systems that generate business recommendations are subject to the EU AI Act's transparency requirements. The AI Act does not specifically require AI systems to verify the businesses they recommend, but it creates an environment where verified business identity becomes increasingly important for AI compliance.

What are the transparency obligations under the EU AI Act?

Under Article 52, AI systems that interact with natural persons must disclose that they are AI systems. For AI systems that generate or manipulate content (including business recommendations), there are additional transparency requirements. The AI Act also requires providers of general-purpose AI models to maintain technical documentation and comply with copyright law.

How does the EU AI Act affect business identity verification?

The EU AI Act creates pressure on AI system providers to use verified, authoritative data sources when generating business recommendations. It also creates an incentive for businesses to establish verified digital identities, because AI systems subject to the AI Act will prefer to cite businesses with verified identities over those without.

When does the EU AI Act come into full effect?

The EU AI Act entered into force on 1 August 2024. The prohibited AI practices provisions applied from 2 February 2025. The general-purpose AI model provisions apply from 2 August 2025. The high-risk AI system provisions and the full regulation apply from 2 August 2026.

Sources and further reading

1. EU AI Act (Regulation (EU) 2024/1689) — EUR-Lex
2. Artificial Intelligence Act — Wikipedia
3. EU AI Act — European Commission
4. Organization Schema — Schema.org