¿Qué es el EU AI Act y qué obliga a las empresas?

El EU AI Act es el primer reglamento europeo específico para sistemas de inteligencia artificial, en vigor desde agosto de 2024. Obliga a las empresas a inventariar sus sistemas de IA, clasificarlos por nivel de riesgo (prohibido, alto, limitado o mínimo) y cumplir obligaciones de documentación, transparencia y supervisión humana. Los sistemas de alto riesgo deben registrarse en la base de datos europea de la UE.

¿Cuándo entran en vigor las obligaciones del EU AI Act para sistemas de alto riesgo?

Las obligaciones plenas para sistemas de IA de alto riesgo (Anexo III) entran en vigor en agosto de 2026. Las prohibiciones de sistemas de riesgo inaceptable ya son aplicables desde febrero de 2025. Las obligaciones para modelos de IA de uso general (GPAI) son exigibles desde agosto de 2025.

¿Cómo hacer un inventario de sistemas de IA en mi empresa?

Un inventario de sistemas de IA debe identificar todos los sistemas desplegados o en desarrollo, asignar un responsable a cada uno, documentar los datos que procesan, los casos de uso y la lógica de decisión. Kaitalog automatiza este proceso con un agente de registro asistido que extrae metadatos mediante conversación en lenguaje natural y los estructura en un inventario auditable.

¿Qué diferencia hay entre el EU AI Act e ISO 42001?

El EU AI Act es un reglamento legal europeo de obligado cumplimiento con sanciones de hasta el 7% de la facturación global. ISO 42001 es un estándar internacional voluntario de sistemas de gestión de IA que proporciona un marco de gobernanza. Cumplir ISO 42001 facilita la demostración de conformidad con el EU AI Act, ya que ambos comparten principios de gobernanza, evaluación de riesgos y supervisión humana.

¿Qué es una plataforma de governance de IA?

Una plataforma de governance de IA centraliza el inventario, la clasificación de riesgo, la gestión de obligaciones regulatorias y la auditoría de todos los sistemas de IA de una organización. Permite al Comité de IA tener visibilidad completa, asignar responsables, gestionar ciclos de revisión y generar evidencias de cumplimiento ante inspecciones o auditorías externas.

AI governance platform · EU AI Act compliance

Govern your company\'s AI deployment.
No improvisation.

Kaitalog is the AI governance platform for European companies. Register, classify and manage your AI systems in compliance with the EU AI Act, ISO 42001 and GDPR — from a single auditable inventory.

Get Started See demo →

Supported frameworks EU AI Act ISO 42001 ISO 27001 RGPD DORA

kaitalog.eu / inventario

Sistemas

+6 últ. mes

Compliance

82%

+4 pts

Alertas

2 críticas

Dl. AI Act

117

días

SistemaRiesgoMarcoEstado

Scoring crediticioSYS-0142 · Finanzas ALTO EU AI Act Revisión

Chatbot atención clienteSYS-0088 · Soporte LIMIT. EU AI Act Conforme

Detección de fraudeSYS-0027 · Riesgos ALTO ISO 42001 Conforme

Recomendador productosSYS-0211 · Comercial MÍNIMO ISO 42001 Conforme

Ficha de sistema

Scoring
crediticio

ResponsableC. Fernández

ProveedorInterno

Datos personalesSí

MarcoAnexo III

Riesgo Alto

Deadlines · EU AI Act en curso

Ago 2026 · alto riesgo

Feb 25Ago 25Feb 26Ago 26Feb 27

The regulatory context

The EU AI Act is already in force. Deadlines won\'t wait.

European companies face a new layer of legal obligations for each of their AI systems. The challenge is not technical — it\'s about governance. And the window to get organised is closing.

01 / Visibility

No inventory, no compliance.

Organisations don\'t know which AI systems they\'re using, who is responsible, or what data they process. Compliance starts with knowing what you have.

02 / Classification

Risk classification is complex.

The EU AI Act distinguishes between prohibited, high, limited and minimal risk. An incorrect classification can lead to fines of up to 3% of global turnover.

03 / Audit

Audits arrive unannounced.

Documentation scattered across emails and spreadsheets does not prove compliance. An audit demands continuous traceability, not post-hoc reconstruction.

Ago'26

Key date

Obligations for high-risk AI systems come fully into force in August 2026.

What is Kaitalog

One platform for the entire AI compliance lifecycle.

Kaitalog connects inventory, risk classification and obligations management in a single traceable system. Designed for the AI Committee, not for developers.

Register your AI systems

Structured inventory with metadata, owners and providers. A single, shared, versioned catalogue.

Automatically classify risk

Guided questionnaire aligned with EU AI Act and ISO 42001. Kaitalog proposes the classification with reasoning.

Manage and demonstrate compliance

Obligations, evidence and continuous audit. All exportable when the review arrives.

Features

Five capabilities. One platform.

Every tool in Kaitalog is designed to reduce friction in the AI Committee\'s day-to-day work, without sacrificing the documentary rigour audits demand.

01 / Inventory

A centralised catalogue of all your AI systems.

Register metadata, owners, providers and status for every system. A single source of truth that any Committee member can consult in seconds.

Normalised and versioned metadata
Filters by risk, area, provider or framework
Direct CSV / JSON export

SistemaRiesgoÁreaResponsable

Scoring crediticio

SYS-0142

ALTO

Finanzas

CFC. Fernández

Detección de fraude

SYS-0027

ALTO

Riesgos

MGM. García

Chatbot soporte

SYS-0088

LIMIT.

Soporte

LRL. Ruiz

Recomendador productos

SYS-0211

MÍNIMO

Comercial

APA. Peña

02 / Classification

Assisted risk classification, with reasoning.

Answer a guided questionnaire and Kaitalog classifies each system according to EU AI Act and ISO 42001. With auditable normative justification and decision traceability.

Annex III applied automatically
Justification citing the relevant article
One-click validation by the Committee

Paso 3 de 7 · Impacto

¿El sistema influye en el acceso a servicios esenciales (crédito, seguro, empleo)?

Sí, de forma determinante

Sí, pero solo como apoyo a decisión humana

Clasificación propuesta: ALTO RIESGO · Anexo III (5)(b) Revisar

03 / Obligations

Obligations and controls management, mapped to your inventory.

Each regulatory obligation is assigned to an owner, marked by status and documented with evidence. Kaitalog knows what applies to each system.

Obligation ↔ system ↔ evidence map
Review workflows per framework
Complete history for audit

ObligaciónMarcoOwnerEstado

Gestión del riesgo (Art. 9)EU-AIA-09

EU AI Act

CFCF

Calidad de datos (Art. 10)EU-AIA-10

EU AI Act

MGMG

Documentación técnica (Art. 11)EU-AIA-11

EU AI Act

LRLR

Registro de actividades (Art. 12)EU-AIA-12

EU AI Act

MGMG

Supervisión humana (Art. 14)EU-AIA-14

EU AI Act

APAP

04 / Conversational agent

Any employee can declare an AI system by talking.

The registration agent extracts metadata, owners and use cases from a natural language conversation. It structures the information into a system ready for the Committee.

No long forms for declarants
The Committee validates the draft with one click
Reduces shadow AI

¿Qué sistema de IA quieres declarar?

Estamos probando un resumidor de contratos con un modelo de OpenAI para el equipo legal.

Entendido. He extraído lo siguiente:

nombre : Resumidor de contratos
proveedor : OpenAI (GPT-4)
área : Legal
datos_pers. : posibles (contratos)
uso : interno — apoyo a revisión

Responde al agente…→

05 / Committee dashboard

Executive view of compliance status in real time.

Systems by risk level, prioritised alerts, progress by regulatory framework and upcoming deadlines. All the information the Committee needs, at a glance.

Risk KPIs by business area
Progress board by framework (EU AI Act, ISO 42001…)
Actionable alerts, not noise

Alto riesgo

Conformes

82%

Alertas

Sistemas por riesgo

Scoring crediticio · documentación técnica pendiente07 días

Detección fraude · revisión anual del Comité21 días

Getting started

From registration to your first audit in days, not months.

Kaitalog is designed to integrate into existing processes. No complex setup, no prior consulting: start with what you already know.

Step 01

Create your account in two minutes.

No credit card. Set up your organisation and add Committee members with their roles.

> Create workspace

> Invite 3 members ✓

> Configure frameworks ✓

> Done in 1 m 48 s

Step 02

Import or register your systems.

Use the guided form, the conversational agent or a CSV import. Every system is traced from the first moment.

Formulario Agente IA CSV API

Step 03

Classify and prioritise.

Kaitalog analyses each system and proposes its risk level. The Committee reviews, validates or adjusts with one click — with full traceability.

8 sistemasALTO

14 sistemasLIMITADO

25 sistemasMÍNIMO

Step 04

Monitor and demonstrate.

Real-time dashboard, change history and evidence export ready for internal and external audits.

Audit package

evidencias.zipready

informe-comite.pdfready

historial-cambios.csvready

Who is it for

Designed for the four angles of the AI Committee.

One system, four perspectives. Each Committee member finds the view they need in Kaitalog.

Comité de IA Total visibility

"I need visibility into all the AI systems the company uses and their compliance status."

Kaitalog → Centralised dashboard and prioritised alerts by impact.

DPO GDPR traceability

"I need to ensure that AI use doesn\'t compromise personal data or GDPR."

Kaitalog → Personal data traceability per system and direct mapping to GDPR obligations.

Compliance Officer Deadlines under control

"I\'m responsible for ensuring the company complies with the EU AI Act before the deadlines."

Kaitalog → Obligations by framework with status, owner and evidence.

Dirección Clear exposure

"I need to know our regulatory exposure without diving into technical details."

Kaitalog → Executive view with risk KPIs and progress indicators.

Trust

Built on the standards you already know.

EU AI Act

Regulation 2024/1689

ISO 42001

AI management system

ISO 27001

Information security

RGPD

Data protection

DORA

Operational resilience

"Designed with and for legal and compliance teams. Not for developers."

Plans

Clear pricing. No fine print.

Start for free with up to 10 systems. Upgrade when your inventory grows. Cancel anytime.

Starter

Free

To start inventorying today.

Up to 10 AI systems
3 users
Basic inventory
Manual classification
Email support

Get Started

Deadlines won\'t wait.
Neither should your compliance.

Join the European companies already preparing their AI compliance with Kaitalog. Early access available now.

No card·No commitment·Data protected

Govern your company\'s AI deployment.No improvisation.

The EU AI Act is already in force. Deadlines won\'t wait.

No inventory, no compliance.

Risk classification is complex.

Audits arrive unannounced.

One platform for the entire AI compliance lifecycle.

Register your AI systems

Automatically classify risk

Manage and demonstrate compliance

Five capabilities. One platform.

A centralised catalogue of all your AI systems.

Assisted risk classification, with reasoning.

Obligations and controls management, mapped to your inventory.

Any employee can declare an AI system by talking.

Executive view of compliance status in real time.

From registration to your first audit in days, not months.

Create your account in two minutes.

Import or register your systems.

Classify and prioritise.

Monitor and demonstrate.

Designed for the four angles of the AI Committee.

Built on the standards you already know.

Clear pricing. No fine print.

Deadlines won\'t wait.Neither should your compliance.

Govern your company\'s AI deployment.
No improvisation.

Deadlines won\'t wait.
Neither should your compliance.