AI Act

AI Act Fines and Penalties: Enforcement Powers Across EU Member States

Maximum penalties, enforcement authority powers, and early enforcement patterns across 32 EU jurisdictions. Based on verified enforcement data.

Export PDF (Pro)
At a glance
Who this applies to
All AI providers, deployers, importers, and distributors operating in the EU market.
Deadline
August 2, 2026. Penalty provisions under Articles 99-101 become enforceable.
What you must have
  • Understand penalty tiers: up to EUR 35M or 7% of global turnover for prohibited practices (Article 99(1))
  • Up to EUR 15M or 3% for other violations (Article 99(2))
  • Identify your national market surveillance authority
63
days until AI Act enforcement begins
2026-08-02
Not sure if your AI system is high-risk? Take the 5-minute diagnostic
Intelligence briefing

Who this applies to

The AI Act applies to providers (Article 2(2)), deployers (Article 2(3)), importers (Article 2(4)), and distributors (Article 2(5)) of AI systems, as well as product manufacturers placing AI systems on the EU market (Article 4(1)). The obligations extend to public authorities using high-risk AI (Article 3(1)) and third-party conformity assessment bodies (Article 43).

What is required

  • Prohibit AI practices listed in Article 5 (e.g., social scoring, manipulative subliminal techniques, exploitation of vulnerabilities) – effective February 2025 (Article 5(1)).
  • Register high-risk AI systems in the EU database (Article 60(1)) before placement on the market or use.
  • Conduct conformity assessments for high-risk AI systems (Article 43(1)) and maintain technical documentation (Article 11(1)).
  • Implement risk management systems (Article 9) and data governance measures (Article 10) for high-risk AI.
  • Report serious incidents to market surveillance authorities (Article 62(1)) within 15 days of detection.
  • Comply with transparency obligations for limited-risk AI (e.g., deepfakes, emotion recognition) under Article 52.

Key deadlines

The primary deadline for this obligation is August 2, 2026, when the AI Act enters into full enforcement.

Enforcement patterns

AI Act enforcement begins August 2, 2026. No precedent currently exists. This page will be updated as enforcement cases emerge.

Cross-border considerations

Data indicates Austria (AT) and Spain (ES) have early engagement with AI Act enforcement mechanisms, as evidenced by citations of Article 99 in national guidance. No jurisdiction-specific enforcement patterns are yet verifiable beyond these references.

Cross-reference intelligence

No AI Act article citations in corpus yet. AI Act entered into force August 2024. Article 50 transparency obligations take effect 2 August 2026; Annex III high-risk obligations are expected 2 December 2027 (pending Digital Omnibus formal adoption). This section will populate as citations accumulate.

Analogous GDPR articles

GDPR article citations that relate to this AI Act topic and may inform enforcement patterns.

ArticleCitationsTop CountriesMost Co-Cited
GDPR Art. 99 2 AT (1), ES (1) GDPR Art. 12(6), GDPR Art. 15, GDPR Art. 30
Regulatory framework
AI Act: AI Regulatory Sandboxes (Articles 57-62)
EU · ai_office · 2026-03-24 · aio-regulatory-sandbox
AI Act: AI Regulatory Sandboxes (Articles 57-62) Sandboxes The AI Act requires EU
AI Act: Implementation timeline — key dates for compliance
EU · ai_office · 2026-03-24 · aio-implementation-timeline
AI Act: Implementation timeline — key dates for compliance AI Act implementati
AI Act: Prohibited AI practices (Article 5) — effective from February 2025
EU · ai_office · 2026-03-24 · aio-prohibited-practices
AI Act: Prohibited AI practices (Article 5) — effective from February 2025 Practices
EU AI Act — Regulation (EU) 2024/1689 on Artificial Intelligence
EU · ai_office · 2026-03-24 · aio-ai-act-overview
EU AI Act — Regulation (EU) 2024/1689 on Artificial Intelligence Act The EU AI Act (Regulation 2024/1689) is the worl
Cross-regulatory overlap
ESMA: Supervisory Convergence and Enforcement Actions
EU · esma · 2026-03-23 · esma-enforcement-convergence
ESMA: Supervisory Convergence and Enforcement Actions ESMA: Supervisory Convergence and Enforcement Actions Sourc
| European Securities and Markets Authority
EU · esma · 2026-04-09 · esma-page-home
| European Securities and Markets Authority | European Securities and Markets Authority ESMA
ESMA: MiCA — Markets in Crypto-Assets Regulation
EU · esma · 2026-03-23 · esma-mica-crypto
ESMA: MiCA — Markets in Crypto-Assets Regulation ESMA: MiCA — Markets in Crypto-Assets Regulation
EDPB Opinion 28/2024 on certain data protection aspects related to the processing of personal data i
EU · edpb · 2026-03-18 · Opinion 28/2024
EDPB Opinion 28/2024 on certain data protection aspects related to the processing of personal data in the context of AI models EDPB Opinion 28/2024 on
ENISA: AI and Cybersecurity — Securing Artificial Intelligence Systems
EU · enisa · 2026-03-23 · enisa-ai-cybersecurity
ENISA: AI and Cybersecurity — Securing Artificial Intelligence Systems ENISA: AI and Cybersecurity — Securing Artificial Intelligence Systems Category
ENISA: Artificial Intelligence and Cybersecurity Research
EU · enisa · 2026-03-24 · enisa-artificial-intelligence-and-cybersecurity-research
ENISA: Artificial Intelligence and Cybersecurity Research ENISA: Artificial Intelligence and Cybersecurity Research
Sources (12)

Get the complete AI Act compliance checklist as a PDF

Mapped to enforcement precedents and cross-referenced against 1.2 million regulatory citations. Free.

We'll email you the PDF. No spam. Unsubscribe anytime.

Get unlimited briefings on Fontvera Pro — or browse all intelligence briefings
This is a research tool, not legal advice. Always verify sources and consult a qualified legal professional.
Privacy · Terms · About
🇪🇺 100% European infrastructure · Helsinki 🇫🇮 · Berlin 🇩🇪 · Paris 🇫🇷 · Your data never leaves Europe