Cookie settings

By clicking “Accept”, you agree to the storage of cookies on your device to improve navigation on the website and ensure the maximum user experience. For more information, please see our privacy policy and cookie policy.

AI regulation in Austria: What companies need to know now

Bild des Autors des Artikels
Alexander Schurr
December 12, 2024
Find out everything about the AI regulation in Austria. What rules are already in place, what is still in store for us?

The regulation of artificial intelligence (AI) is picking up steam, and Austria — as part of the EU — is relying on the new AI Act. This AI regulation is intended to create standards for the safe and ethical use of AI systems. But what does this actually mean for companies and citizens? Which regulations are already in place and what is still in store for us?

In this article, we provide a comprehensive overview of the current and future regulations on AI regulation in Austria — and show you what you should do now to remain compliant.

What is the AI Regulation (EU AI Act)?

The AI regulation, also known as EU AI Act, is the world's first legal framework for the use of artificial intelligence. The aim is to promote innovation while minimizing risks through AI.

Key features of the AI regulation:

  • Risk-based approach: AI systems are divided into risk categories (minimal, limited, high, unacceptable).
  • Prohibition of certain uses: AI systems that could violate fundamental rights, such as surveillance systems for facial recognition, are prohibited.
  • Transparency obligations: Users must be informed when they interact with AI.
  • Safety requirements: High-risk AI systems, for example in medicine or in traffic, are subject to strict testing and reporting requirements.

Which regulations already apply?

Although the AI Act is fully in force from August 2024, some regulations are already in force now or will be relevant shortly.

1. Transparency in AI systems

All AI systems that interact with consumers must make it clear that they are AI-based. Examples include chatbots, AI-supported customer services, or generative AI such as ChatGPT.

2. Data protection

The processing of personal data by AI must continue to comply with the strict requirements of the GDPR. Companies should ensure that their AI applications do not use sensitive data without explicit consent.

3. Documentation requirements

High-risk AI systems, for example in healthcare or in the financial sector, must already be comprehensively documented to ensure their security and trustworthiness.

4. Risk-based classification of AI systems

AI applications are divided into various risk categories — from minimal to unacceptable risk. Depending on the rating, providers must meet specific security and transparency requirements.

5. Prohibition of certain AI systems

Applications that are considered to be particularly harmful are prohibited. These include, for example, systems for biometric real-time recognition in public spaces without a court order.

What is in store for us?

From 2024, additional regulations and deadlines will take effect, which companies and institutions in Austria must comply with.

August 1, 2024: AI Ac comes into force

From this date, uniform regulations for the use of AI apply across the EU. Until then, companies must check their systems and adapt them if necessary.

February 2, 2025: Discontinue prohibited applications

Certain AI applications, such as discriminatory systems or manipulative technologies, must be removed from use.

August 3, 2026: Extend transparency requirements

Generative AI systems, such as image or text generators, must make it clear that their content was created by a machine. This also applies to the labeling of AI-generated videos or texts.

From August 1, 2026 Does he write EU AI Act requires that all generative AI content (texts, images, videos) must be clearly marked as AI-generated. As of today (2025), there is no need to label anythingwhen you create images or texts with AI — unless there are deceptive or legally relevant aspects. However, from 2026, labeling will be mandatory for generative content.

4. 2027: Transition period for high-risk systems ends

Companies that use high-risk AI systems must meet all security and transparency requirements from this point on.

What does the AI regulation mean for companies?

Companies are required to ensure compliance with their AI applications. That means:

1. Risk assessment:
Check which risk category your AI systems fall into and what requirements apply.

2. Adjustment of systems:
Make sure that your AI applications are documented, tested, and — if necessary — adapted.

3. Training of employees:
Train your teams to use AI systems and legal requirements.

4. External advice:
In complex cases, it may be useful to consult experts or AI service centers.

What does the AI regulation mean for users?

Consumers also benefit from the AI regulation. You get more transparency and protection, particularly when handling personal data.

Your rights:

  • Duty to provide information: You need to know when you're interacting with an AI.
  • Right to complain: You can file an appeal in the event of incorrect or discriminatory decisions made by AI systems.
  • Data protection: Your data may not be used without your consent.

Common questions about the AI regulation

What is the EU AI Act?

The EU AI Act is a regulation that sets standards and rules for the use of AI in the EU. It comes into force in August 2024.

Which AI systems are prohibited?

AI systems that could violate fundamental rights, such as biometric monitoring or manipulative algorithms, are prohibited.

How do I prepare my company?

Perform a risk assessment of your AI applications, train your employees and adapt your systems to the new requirements.

What are the penalties for violations?

Failure to comply with the regulations could result in heavy fines — similar to breaches of the GDPR.

Where can I get support?

RTR's Austrian AI service center offers advice and information on the implementation of the AI regulation.

Conclusion: Act now to remain compliant

Die AI regulation brings clear rules and more security when using artificial intelligence. Companies in Austria should act proactively to comply with the new regulations in good time. Through targeted training, system audits, and external advice, you can ensure that your AI applications meet legal standards.

Would you like to find out more? Contact the KI Company — we provide you with comprehensive advice on how to implement the new regulations and help you safely use the potential of AI.