Free Compliance Tool

AI System Compliance Checker

Check your AI system against GDPR, EU AI Act, HIPAA, SOC2, and more. Get a risk rating and action list in seconds.

System Profile

Where are your users located?

Industry / sector

AI system type

Risk profile of decisions made

✓

Processes personal data (names, emails, IDs, location)

Triggers GDPR, CCPA, and other privacy laws

✓

Processes sensitive data (health, race, religion, biometrics, political opinions)

Highest protection category under GDPR Art. 9

✓

May process data from children (under 16 in EU, under 13 in US)

COPPA (US), GDPR special rules for minors

✓

Shares data with third-party AI providers (OpenAI, Anthropic, Google)

Data processor agreements required

✓

Uses customer/user data for model training

Requires explicit consent under most frameworks

✓

Makes or significantly influences decisions without human review

Triggers GDPR Art. 22 and EU AI Act requirements

✓

Deployed in a public-facing product (not just internal use)

Broader compliance obligations apply

✓

Processes data in real time from user interactions

Affects data retention and breach notification timelines

✓

Builds user profiles or behavioral models over time

GDPR profiling rules + FTC guidance apply

✓

Users cannot currently understand why the AI made a decision

Explainability required under GDPR Art. 22 and EU AI Act