EU acts¶

European Union normative acts with relevant cross-reference to the AI Act: regulations and directives referenced in the text or recitals of Regulation (EU) 2024/1689, or which intersect its material scope.

Published acts¶

AI Act

Regulation (EU) 2024/1689 — the cornerstone act of European law on artificial intelligence. Dedicated page with full bilingual text, recitals and annexes.

AI Act
GDPR

Regulation (EU) 2016/679 — the EU framework act on personal data protection, applicable since 25 May 2018. Dedicated page with full bilingual text (11 chapters, 99 articles), 173 recitals and cross-references with the AI Act.

GDPR
DGA

Regulation (EU) 2022/868 — Data Governance Act: horizontal EU framework for the re-use of protected public sector data, data intermediation services, data altruism and the establishment of the European Data Innovation Board (EDIB). First pillar of the European data strategy. Dedicated page with full bilingual text (9 chapters, 38 articles), 63 recitals and quintuple cross-references with the AI Act, GDPR, Data Act and PLD.

DGA
Data Act

Regulation (EU) 2023/2854 — EU framework on fair access to and use of data (IoT, B2G, cloud switching, interoperability). Dedicated page with full bilingual text (11 chapters, 50 articles), 119 recitals and triangular cross-references with the AI Act and GDPR.

Data Act
PLD

Directive (EU) 2024/2853 — Product Liability Directive: new EU framework on liability for defective products, with explicit qualification of software and AI systems as 'products' and a rules-of-evidence regime favourable to the injured person for black-box systems. Dedicated page with full bilingual text (4 chapters, 24 articles), 63 recitals, correlation annex with Directive 85/374/EEC and quadripartite cross-references with the AI Act, GDPR and Data Act.

PLD
DSA

Regulation (EU) 2022/2065 — Digital Services Act: harmonised rules on intermediary services in the internal market (mere conduit, caching, hosting), with a conditional liability exemption regime, due diligence obligations tiered by provider category (including VLOPs/VLOSEs ≥ 45 million active recipients), national Digital Services Coordinators and Commission enforcement powers. Dedicated page with full bilingual text (5 chapters, 93 articles), 156 recitals and sextuple cross-references with the AI Act, GDPR, Data Act, DGA and PLD.

DSA
CRA

Regulation (EU) 2024/2847 — Cyber Resilience Act: horizontal cybersecurity requirements for products with digital elements placed on the Union market, across the whole lifecycle. Dedicated page with full bilingual text (8 chapters, 71 articles), 130 recitals and 8 annexes with septuple cross-references to the AI Act, GDPR, Data Act, DGA, PLD, DSA and NIS2.

CRA
NIS2

Directive (EU) 2022/2555 — Network and Information Security 2: new horizontal EU framework for a high common level of cybersecurity, with risk-management and incident-reporting obligations on essential and important entities across 18 sectors (Annex I and II), supervision and enforcement regime, and cross-border cooperation. Repeals Directive 2016/1148. Dedicated page with full bilingual text (9 chapters, 46 articles), 144 recitals and 3 annexes with septuple cross-references to the AI Act, GDPR, Data Act, DGA, PLD, DSA and CRA.

NIS2

Immediate references¶

Pending publication of dedicated pages, EU acts can be consulted directly at:

EUR-Lex — official database of European Union law