Skip to content

Map controls to EU AI Act risk categories #5

New issue
New issue
Open
Open
Map controls to EU AI Act risk categories#5
Labels
communityCommunity contribution welcomedraft-1Framework Draft 1 milestonenist-mappingRelated to NIST GenAI Risk Domain mappings
@amberb617

Description

@amberb617
amberb617
opened on Mar 9, 2026

The framework currently maps controls to NIST GenAI Risk Domains. We should also provide mappings to EU AI Act risk categories to support organisations operating in or selling to the EU.

Scope

  • Map each control to relevant EU AI Act articles
  • Identify which controls are mandatory vs. recommended for each risk category (Unacceptable, High, Limited, Minimal)
  • Note any gaps where the framework does not cover EU AI Act requirements

Context

The EU AI Act entered into force in 2024 with phased compliance deadlines through 2027. Many enterprises need to demonstrate alignment now.

Metadata

Metadata

Assignees

No one assigned

    Labels

    communityCommunity contribution welcomedraft-1Framework Draft 1 milestonenist-mappingRelated to NIST GenAI Risk Domain mappings

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions