EU AI Act · Article 12
The fastest path to EU AI Act compliance
High-risk AI systems must automatically log every decision for at least 6 months. Sovergate handles logging, PII scrubbing, hash chaining, and report generation — so your legal team can sign off and move on.
Article 12 requirements — and how we meet them
Every obligation mapped to a specific Sovergate feature.
Automatic logging
High-risk AI systems must automatically record events throughout their operational lifetime.
Every LLM call is captured automatically the moment you instrument the SDK.
Sufficient detail
Logs must enable post-market monitoring and investigation of incidents.
We log model, prompt, response, tokens, latency, PII detections, and finish reason.
6-month retention
Logs must be retained for at least 6 months unless other law requires longer.
6 months retention on all plans. Enterprise plans support custom retention periods.
Data minimisation + residency
PII must be minimised. Data cannot leave the EU without appropriate safeguards.
PII scrubbed locally before transmission. All data stored in Hetzner, Germany.
Which companies need to comply?
Recruitment & HR
CV screening, performance monitoring
Credit & Insurance
Credit scoring, risk assessment
Healthcare
Medical diagnosis, treatment AI
Education
Student evaluation, access decisions
Law enforcement
Risk profiling, evidence evaluation
Infrastructure
Traffic, energy, water management
Migration & asylum
Application assessment systems
Justice systems
Legal research and case analysis AI
Source: EU AI Act Annex III. If you are unsure whether your system is high-risk, read our guide.
The December 2027 enforcement deadline
is closer than it looks.
Initializing the Sovergate SDK takes less than 10 minutes. Securing explicit governance sign-off from your corporate internal audit team takes weeks. Deploy the staging proxy today, export your first verification ledger, and clear compliance blockers early.