EU AI Act

What it requires

High-risk AI systems must automatically log events during operation. Logs must be kept for a minimum of 6 months and be detailed enough for post-market monitoring and incident investigation.

How Svalin addresses it

Automatically captures and retains all MCP server calls and AI model interactions with configurable retention periods. Tamper-evident audit trail satisfies the Art. 12 evidence requirement directly.

What it requires

High-risk AI systems must ensure sufficient transparency so deployers can interpret outputs and use them appropriately.

How Svalin addresses it

Dashboard gives deployers full visibility into what data AI systems are accessing and sending — making behaviour transparent and interpretable. Policy engine provides a documented framework for governance decisions.

What it requires

High-risk AI systems must allow effective human oversight. Operators must be able to monitor operation, detect anomalies, and intervene or stop the system.

How Svalin addresses it

Incident dashboard and policy engine give human operators direct visibility and control over AI agent data flows. Real-time alerts on policy violations and anomalous data transfers satisfy oversight requirements with an auditable evidence trail.

What it requires

Providers and deployers of high-risk AI systems must report serious incidents to supervisory authorities without undue delay and maintain incident records.

How Svalin addresses it

Audit trail provides the complete data record needed for incident reporting — what data was involved, which AI system processed it, when, and what policy decisions were made. Exportable as structured compliance reports.