DIAGNOSTIC · GDPR & EU AI Act
You know you need to act. You don't know exactly what.
One session. One action card. Concrete next steps.
Most organisations are stuck between two chairs: legal advisors who tell them what the law says, and IT consultants who build systems without addressing the law. Neither maps what the organisation is actually exposed to — or who owns the responsibility when something fails.
Tells you what the law says
Legal advisory
Flux AI
Maps exposure + ownership
Builds without addressing the law
The IT consultant
Three questions answered in 90 minutes:
01
Who owns the decision when your AI system produces an incorrect output?
02
Where are your documentation gaps relative to GDPR Art. 22 and EU AI Act Art. 14?
03
What needs to change first — and what can wait?
Three prioritised exposure areas with concrete adjustments — in prompts, access control or oversight structure. Can be implemented the day after the session.
Three prioritised exposure areas
Concrete adjustments — prompts, access control, oversight
Can be implemented the day after the session
Healthcare and regulated SMBs
Insurance and finance
Mid-size private companies with AI in production
7.500 kr.
excl. VAT · 90 minutes
Book session →