EU AI Act, NIS2, DORA, GDPR, the Cyber Resilience Act and CSRD/ESG interlock — and the fines are real. AIGOY maps them to concrete obligations and modules. Four layers: from the regulation to the obligation, the current state today, and the AIGOY module that fulfils it.
Request the full mapping →Each of these regulations hits mid-sized businesses — with real deadlines and severe penalties. AIGOY brings them together on one platform instead of isolated point solutions.
AI literacy obligation since 02/2025 · full enforcement from 08/2026.
Transposed into national law in Germany since 12/2025 · 30,000+ companies affected.
In force since 01/2025 · EU-wide and mandatory across the financial sector.
Ongoing · EU data protection authorities are publishing AI guidance · applies to any AI involving personal data.
Vulnerability reporting from 09/2026 · full SBOM obligation in 2027.
Phased rollout 2025–2028 · AI governance increasingly part of ESG reporting.
AIGOY doesn't just meet the regulations — the platform itself is built to be European-sovereign. End to end.
Fully developed in Germany and hosted on IONOS in Frankfurt — German jurisdiction, beyond the reach of the US CLOUD Act.
Felix, the compliance co-worker, runs primarily on sovereign European AI (Mistral). Your data does not leave the European space.
Primary and backup providers with automatic failover — business continuity without dependence on a single vendor.