EU AI Act full enforcement deadline — 2nd of August 2026 22 days remaining. Is your AI system classified? Start free assessment →
Registered in Zug Swiss nDSG & GDPR Compliant EU AI Act Articles 5–52 FINMA Circular 2023/1 Aligned TENNOTENRYU INH. CESARANO · BAARERSTRASSE 87 · 6300 ZUG
300+
DACH companies
assessed
90s
To your risk
classification
Aug 2026
EU AI Act full
enforcement deadline
Free
Quick-assess
no registration
EU AI Act Compliance · Switzerland

Know your risk tier before the fine arrives.

EUR 35M
maximum fine for
prohibited AI.

Risk classification, gap report and compliance roadmap
in 90 seconds — free, no registration.

or 7% of total worldwide annual turnover — whichever is higher.
Enforcement: 2nd August 2026.
EU AI Act 2024/1689 Swiss nDSG FINMA 2023/1 Risk Classification
EU regulatory compliance — law and governance
Free Quick-assess · 90 seconds
Comply Advisor from CHF 297/mo
Assessment Process

Risk classified
in 90 seconds.

No legal background required. Answer 5 questions about your AI system and receive an EU AI Act risk classification with a colour-coded gap report.

STEP 01
📋
Describe your AI system
Answer 5 questions: what the AI does, what data it processes, who it affects, and what sector you operate in. Takes under 90 seconds. No registration required for the free tier.
STEP 02
⚖️
Receive your risk classification
Certo Comply maps your system against EU AI Act Articles 5, 6, 9, 10, 11, 13, 14 and 52. You receive an instant verdict: Unacceptable · High · Limited · Minimal risk — with colour-coded gap report.
STEP 03
🗺️
Follow your compliance roadmap
Receive a prioritised action plan with specific article obligations, Swiss nDSG requirements and FINMA alignment steps — all mapped to the August 2026 enforcement deadline.
Compliance Coverage

Three frameworks.
One assessment.

Certo Comply covers the three regulatory frameworks Swiss and DACH companies must navigate simultaneously for AI deployment.

01 / 03
🇪🇺
EU AI Act 2024/1689
Full mapping against Articles 5 (prohibited AI), 6 (high-risk classification), 9 (risk management), 10 (data governance), 11 (technical documentation), 13 (transparency), 14 (human oversight) and 52 (limited-risk obligations). 4-tier risk verdict with enforcement roadmap.
Aug 2026 Enforcement
02 / 03
🇨🇭
Swiss nDSG
Revised Federal Act on Data Protection (nDSG), in force since 1 September 2023. Covers data subject rights, processing records, privacy impact assessments, data breach obligations and cross-border transfer rules — specifically for Swiss-headquartered companies processing personal data with AI.
Swiss Federal Law
03 / 03
🏦
FINMA Circular 2023/1
Operational risk management requirements for Swiss financial institutions deploying AI in credit decisions, fraud detection, customer segmentation and trading systems. Certo Comply identifies which of your AI applications trigger FINMA obligations and what model risk management documentation you need.
Swiss Financial Services
300+
DACH companies
assessed to date
90s
To risk classification
free, no registration
EUR
35M
Maximum fine for
prohibited AI practices
3
Regulatory frameworks
one unified assessment
Pricing

Start free.
Go compliant.

The free assessment takes 90 seconds and costs nothing. Upgrade when you need ongoing advisory or a full documented audit.

Free Assessment
0CHF
one assessment · no registration
  • 90-second EU AI Act risk classification
  • 4-tier risk verdict (Unacceptable / High / Limited / Minimal)
  • Colour-coded gap report
  • No account or card required
Start Free Assessment →
Full Audit
2,500CHF
one-time · documented assessment
  • Full EU AI Act compliance audit
  • Documented technical & legal assessment
  • Signed gap report (GDPR Article 35 DPiA ready)
  • Board-level executive summary
  • Remediation priority roadmap
  • Post-audit advisory session (2h)
Request Audit →
FAQ — EU AI Act

Every question your
legal team will ask.

Straight answers about EU AI Act obligations, Swiss nDSG, FINMA, risk classification and what non-compliance actually costs.

The EU AI Act (Regulation 2024/1689) enters into full enforcement on 2nd August 2026. Prohibited AI systems (Article 5) were banned from 2nd February 2025. High-risk AI systems under Annex III face the August 2026 deadline. General-purpose AI model rules apply from 2nd August 2025. Your compliance timeline depends on your risk classification.
Yes — if you deploy or market AI systems that affect EU residents or the EU market, the EU AI Act applies regardless of where you are incorporated. This includes Swiss companies with EU customers, Swiss subsidiaries of EU companies, and Swiss SaaS providers serving EU enterprises. Non-compliance fines apply to global turnover, not just EU revenue.
EUR 35M or 7% of global annual turnover (whichever is higher) for deploying prohibited AI (Article 5 violations). EUR 15M or 3% of global turnover for other Article violations including high-risk system failures. EUR 7.5M or 1.5% for providing incorrect information to regulators. Fines apply per violation — multiple systems means multiple exposure.
High-risk AI systems (Annex III of the EU AI Act) face the strictest obligations: risk management systems, data governance documentation, technical documentation, automatic event logging, transparency to users, human oversight mechanisms, and accuracy/robustness testing. Common high-risk categories include AI in hiring, credit scoring, insurance, biometrics, critical infrastructure, and law enforcement support.
The Swiss revised Federal Act on Data Protection (nDSG, in force September 2023) is Switzerland's equivalent of GDPR — but there are key differences. nDSG does not require a legal basis for processing (only for sensitive data). Data breach notification goes to FDPIC, not a lead authority. No mandatory DPO for most companies. Cross-border transfer rules differ. AI-automated decision-making triggers disclosure obligations similar to GDPR Article 22.
The free quick-assessment takes 90 seconds and covers your primary risk classification. The full CHF 2,500 audit covers a detailed system-by-system assessment, produces a signed gap report ready for GDPR Article 35 DPIA processes, includes a board-level executive summary and a 2-hour post-audit advisory session. Typical turnaround is 3–5 business days from initial questionnaire completion.
Get Compliant

August 2026 is
22 days remaining.

Start your free EU AI Act assessment now. 90 seconds. No registration. Know your risk tier before the fine arrives.

FREE QUICK-ASSESS · NO REGISTRATION · EU AI ACT · SWISS NDSG · FINMA 2023/1