Authoritative regulatory Q&A on Regulation (EU) 2024/1689, the EU AI Act. Grounded in 70 structured reference files across 15 subdirectories — full regulation text + recitals, Commission guidelines, EDPB/EDPS opinions, codes of practice, harmonised standards, FRIA guides, and incident templates. Every answer cites article, paragraph, and recital.
Each capability is documented separately, tested separately, and called by the workflow at the right moment. Compose them or invoke individually.
Ten structured steps. The human stays accountable; the skill carries the structure, the citations, and the document trail.
Single-folder skill. SKILL.md is the runtime spec; references hold the knowledge corpus; evals hold the proof.
ai-act-knowledge/ ├── evals # Test cases + assertions │ └── evals.json # 8 cases, 78 assertions ├── references # Reference corpus │ ├── codes-of-practice │ │ ├── README.md # Deployment guide │ │ ├── gpai-code-detailed.md │ │ ├── gpai-code-ec-overview.md │ │ ├── gpai-code-final.md │ │ ├── transparency-code-draft-1.md │ │ ├── transparency-code-draft-2.md │ │ └── transparency-code-overview.md │ ├── commission-guidelines │ │ ├── art-6-classification-annex-i-2026.md │ │ ├── art-6-classification-annex-iii-2026.md │ │ └── art-6-classification-general-principles-2026.md │ ├── compliance-guides │ │ ├── README.md # Deployment guide │ │ ├── ai-literacy-repository.md │ │ ├── copyright-tdm-consultation.md │ │ ├── modifying-ai-classification.md │ │ ├── small-businesses-guide.md │ │ └── whistleblowing-ai-act.md │ ├── core │ │ ├── README.md # Deployment guide │ │ ├── annex-iii-high-risk.md │ │ ├── decision-trees.md │ │ ├── high-level-summary.md │ │ ├── regulation-preamble-recitals.md │ │ ├── regulation-title-I-general.md │ │ ├── regulation-title-II-prohibited.md │ │ ├── regulation-title-III-high-risk.md │ │ ├── regulation-title-IV-transparency.md │ │ ├── regulation-title-V-gpai.md │ │ ├── regulation-title-VI-X-governance.md │ │ └── regulation-title-XI-XIII-final.md │ ├── cybersecurity │ │ ├── README.md # Deployment guide │ │ ├── enisa-advisory-opinion.md │ │ ├── enisa-ai-cybersecurity.md │ │ └── enisa-cybersecurity-standardisation.md │ ├── fria │ │ ├── README.md # Deployment guide │ │ ├── article-27-fria.md │ │ ├── ecnl-fria-guide.md │ │ └── fria-guide-danish-institute.md │ ├── governance │ │ ├── README.md # Deployment guide │ │ ├── ai-office-faq.md │ │ ├── ai-pact.md │ │ ├── ec-qa-navigating-ai-act.md │ │ ├── governance-enforcement.md │ │ ├── implementation-next-steps.md │ │ ├── implementation-timeline.md │ │ └── whistleblower-tool.md │ ├── guidelines │ │ ├── README.md # Deployment guide │ │ ├── ai-system-definition.md │ │ ├── digital-omnibus.md │ │ ├── ec-regulatory-framework.md │ │ ├── gpai-obligations-scope.md │ │ ├── guidelines-roadmap.md │ │ ├── prohibited-practices-full.md │ │ └── prohibited-practices-web.md │ ├── impact-assessments │ │ ├── README.md # Deployment guide │ │ ├── healthcare-study-2026.md │ │ ├── impact-assessment-original.md │ │ └── supporting-study.md │ ├── law-enforcement │ │ ├── README.md # Deployment guide │ │ ├── europol-ai-policing.md │ │ └── gpai-guidelines-overview.md │ ├── national │ │ ├── README.md # Deployment guide │ │ ├── german-ai-bill.md │ │ ├── national-implementation-plans.md │ │ ├── national-resources-service-desk.md │ │ └── regulatory-sandboxes.md │ ├── opinions │ │ ├── README.md # Deployment guide │ │ ├── edpb-edps-joint-opinion-2021.md │ │ ├── edpb-edps-joint-opinion-2026.md │ │ └── edpb-opinion-28-2024.md │ ├── sector-specific │ │ ├── README.md # Deployment guide │ │ ├── banking-ai-implications.md │ │ ├── medical-devices-ai.md │ │ └── staffing-businesses-ai.md │ ├── standards │ │ ├── README.md # Deployment guide │ │ ├── article-40-harmonised-standards.md │ │ ├── harmonised-standards-map.md │ │ ├── pren-18286.md │ │ ├── standardisation-overview.md │ │ ├── standardisation-qa.md │ │ └── standardisation-request-c2025-3871.md │ └── templates │ ├── README.md # Deployment guide │ ├── draft-guidance-art73-high-risk.md │ ├── gpai-submitting-documents.md │ ├── gpai-training-data-summary.md │ └── serious-incident-template-gpai.md ├── CHANGELOG.md # Version history ├── README.md # Deployment guide └── SKILL.md # Main skill instructions
Two deployment surfaces. The skill auto-triggers on relevant keywords once installed.
ai-act-knowledge/ foldercp -r ai-act-knowledge/ \ ~/.claude/skills/user/
Every output is documented, version-pinned, and traceable to its source citation.
Every release runs against a fixed test suite. Assertions check numeric consistency, citation accuracy, and decision-tree branches.
Every legal verdict resolves to one of these instruments. No invented articles, no synthetic recitals.
The trace is the product. Nothing happens off the record — no hidden tool calls, no silent retrieval, no opaque chain-of-thought.
See CHANGELOG.md for version history.
EU AI Act Knowledge Engine — an authoritative regulatory Q&A skill grounded in 70 official EU source documents:
ai-act-knowledge/
├── SKILL.md # Main skill instructions (deploy this)
├── CHANGELOG.md # Version history
└── references/ # 70 reference files across 15 subdirectories
├── core/ # Regulation text by Title (I–XIII) + preamble + Annex III + decision trees
├── guidelines/ # Commission guidelines (AI system definition, prohibited, GPAI, omnibus)
├── codes-of-practice/ # GPAI Code + Transparency Code (multiple versions)
├── opinions/ # EDPB/EDPS opinions (2021, 2026, 28/2024)
├── standards/ # Art. 40 harmonised standards, prEN 18286, JTC 21
├── fria/ # Art. 27 FRIA — text + practical guides
├── governance/ # AI Office FAQ, AI Pact, enforcement, timeline
├── national/ # National implementation (DE bill, sandboxes, service desks)
├── sector-specific/ # Banking, medical devices, staffing
├── cybersecurity/ # ENISA advisories
├── law-enforcement/ # Europol AI policing
├── compliance-guides/ # AI literacy, SME guide, copyright/TDM, whistleblowing
├── impact-assessments/ # Commission IA + supporting study + healthcare 2026
└── templates/ # GPAI training data, serious incident, high-risk draft
ai-act-knowledge/ folder structureai-act-knowledge/ folder to your skills directory:
bash
cp -r ai-act-knowledge/ /path/to/your/skills/user/ai-act-knowledge/Ask any AI Act question:
"What does Art. 27 require for a Fundamental Rights Impact Assessment, and when does it apply to deployers of high-risk systems?"
The skill will route to the right reference files and produce a cited answer.
For assessment workflows that produce a classification decision, use
ai-act-classifierinstead.
| Step | Description |
|---|---|
| 1. Classify Question | Topic Router determines which reference subdirectory(ies) to consult |
| 2. Load References | Read targeted reference files (article text, guidelines, opinions, codes) |
| 3. Synthesise | Produce answer with article-level citations and cross-references to related provisions |
| Feature | Description |
|---|---|
| Article-Level Q&A | Direct answers grounded in the full regulation text (preamble + 13 Titles) |
| Commission Guidelines | AI system definition, prohibited practices, high-risk, Digital Omnibus |
| EDPB/EDPS Opinions | 2021 joint, 2026 joint, Opinion 28/2024 (AI-DPIA) |
| Codes of Practice | GPAI Code (3 versions), Transparency Code (drafts + overview) |
| FRIA Materials | Art. 27 text + Danish Institute and ECNL practical guides |
| Harmonised Standards | Art. 40 framework, prEN 18286, JTC 21 roadmap |
| Sector Guidance | Banking, medical devices, staffing, healthcare, law enforcement |
| National Implementation | German AI bill, regulatory sandboxes, Member State service desks |
| Incident Templates | GPAI serious incident reporting, Art. 73 high-risk draft |
| Cross-Framework | AI Act ↔ GDPR, ENISA cybersecurity overlays |
| Document | Reference |
|---|---|
| EU AI Act | Regulation (EU) 2024/1689 (full text + recitals) |
| Commission Guidelines | AI system definition, Art. 5 prohibitions, Art. 6 high-risk, Digital Omnibus |
| EDPB Opinion 28/2024 | DPIA for AI processing |
| EDPB-EDPS Joint Opinions | 2021 and 2026 |
| GPAI Code of Practice | Art. 53/55 implementation framework |
| Art. 50 Code of Practice | Transparency labeling framework |
| Art. 40 Harmonised Standards | JTC 21 framework, prEN 18286 |
| ENISA Advisories | AI cybersecurity, standardisation |
This skill provides structured AI Act regulatory information based on Regulation (EU) 2024/1689 and official EU institutional sources. It is not legal advice. Specific compliance decisions should involve qualified legal counsel with AI Act expertise.
Licensed under AGPL-3.0 — see LICENSE at the repo root.
Created by Oliver Schmidt-Prietz — OneZero Legal