Consid
Offerings
Compliance · EU AI Act · Risk Classification

AI Compliance Review

We map your AI initiatives end to end, identify compliance gaps and unclear accountability, and deliver a decision-ready roadmap — before the regulator does it for you.

By
Jeanette Hosbond Knudsen, Senior Project Manager & Risk Compliance SME
Published
June 2026
The situation

The EU AI Act is in force. Most organisations aren't ready.

The EU AI Office has already issued its first fines to a European financial institution. Most organisations have AI projects in motion — fewer know whether they actually meet the regulatory requirements.

AI projects fail in regulated environments not because AI is the problem, but because governance doesn't keep up. Compliance is integrated too late. Accountability is unclear. Risk classification happens, if at all, after go-live.

What we do

A structured review — and a concrete plan for compliant implementation.

Three to four weeks. Discovery, gap analysis, roadmap, written report, and a live Q&A session with leadership. Revisions included.

  1. 1
    Map initiatives against EU AI Act criteria

    Every AI initiative classified by risk tier with evidence of how it was assessed.

  2. 2
    Identify governance and accountability gaps

    Where ownership is unclear, where controls are missing, where documentation won't survive a regulator's review.

  3. 3
    Deliver a prioritised remediation roadmap

    Findings ranked by probability and impact, with clear owners and a sequenced path to compliance.

Weeks
3–4
Written report
1
Leadership Q&A
Live
The process

From discovery to decision-ready roadmap.

Discovery
Inventory of AI initiatives in production, near go-live, and in development. Stakeholder interviews and document review.
Risk classification
Each initiative mapped against EU AI Act risk tiers with the evidence used to classify it.
Gap analysis
Governance, accountability, documentation and control gaps ranked by probability and impact.
Roadmap
A prioritised remediation plan with owners and sequencing — what to fix first, what can wait.
Report and review
Written report ready for internal use and regulators, presentation deck for the board, and a live Q&A with leadership.
What you get

Materials that hold up in front of a regulator.

  1. AI initiative inventory with EU AI Act risk classifications

    A single source of truth for what AI you run and how each system is classified.

  2. Gap analysis ranked by probability and impact

    Findings you can act on, not a generic compliance checklist.

  3. Prioritised remediation roadmap with clear ownership

    Who does what, in what order, and what 'done' looks like.

  4. Written report and board-ready presentation

    For internal use, regulators, the compliance function and IT leadership.

  5. Live review session with Q&A

    Findings walked through with the people who need to act on them.

Your consultant

Jeanette Hosbond Knudsen — Senior Project Manager & Risk Compliance SME.

7+ years in risk management, compliance, and project delivery in regulated organisations. Most recently at Danske Bank's Financial Crime Solutions, where she led AI initiatives — AML, EDR, case handling — with compliance integrated from day one.

Who it is for

Organisations with AI in production or near go-live.

Particularly in financial services, healthcare, or critical infrastructure. If you don't know the risk classification of your AI systems, this is where to start.

Next step

Book a free 30-minute scoping call.

We clarify scope, budget and expectations — and you decide whether it makes sense to proceed. No commitment. Fast start.

Contact Consid