Back
01
Service

AI Governance & Documentation

AI system inventory, risk classification, and governance documentation — for deployers as well as developers.

Review AI documentation readiness
02

The EU AI Act creates compliance obligations for organisations that develop, deploy, or use AI systems. Many organisations are deployers — and deployers of high-risk applications carry direct obligations under Article 26, not only developers. We assess which systems in your organisation fall under the Act, classify their risk level, design a proportionate governance framework, and produce the technical and policy documentation required.

03

What you receive

  • AI use-case / system inventory template documenting AI systems and their use contexts.
  • EU AI Act applicability assessment — which obligations apply to which systems.
  • Risk classification worksheet under the Act's prohibited, high-risk, and limited-risk categories.
  • AI governance policy draft aligned to your governance framework.
  • Technical documentation templates for high-risk systems, ready for internal adaptation.
  • Documentation roadmap with the recommended order for closing gaps.
04

What is out of scope

  • Ongoing AI governance monitoring (available as a separate retainer engagement).
  • Technical implementation of AI systems or model development.
  • Legal advice on regulatory interpretation.
  • Third-party conformity assessment or certification.
  • Data protection impact assessments (separate service scope).
05

What you have when the engagement closes

  • A documented AI system inventory that reveals your full AI footprint and applicable obligations.
  • A risk classification that clarifies precisely what the EU AI Act requires of your organisation.
  • A governance framework that can be operationalised and maintained without ongoing advisory dependency.
  • Technical documentation templates that can be adapted as your organisation adopts new AI systems.
06

How the engagement is delivered

1

Inventory

We map existing and planned AI systems, their use contexts, and the actors involved in their deployment.

2

Classification

We apply EU AI Act risk levels, identify which systems are in scope, and determine compliance obligations.

3

Framework

We design a governance structure proportionate to your risk profile — practical, not over-engineered.

4

Documentation

We prepare the required technical documentation and internal policy documentation for each in-scope system.

Scope boundaries

Regcytech provides advisory and documentation readiness support. Clear boundaries are part of a trustworthy engagement:

  • We do not provide legal advice, legal representation or binding legal opinions.
  • We do not certify, and we are not an accredited audit body — our work supports your preparation.
  • We do not guarantee legal compliance: compliance also depends on how your organisation operates and on regulatory interpretation.
  • Our current services are not self-service software products — they include no client portal or automated compliance platform.

For questions of legal interpretation, we always recommend involving a qualified lawyer.

Service

Start with an AI Act applicability review.

A scoping conversation establishes which AI systems are in scope and what the classification and documentation engagement would involve.

30 minutes. No obligation. No hard pitch — just a structured conversation about where you stand and what may be useful next.