PAC views the European Union Artificial Intelligence (EU AI) Act, required to be implemented and enforced by 2027, as a pivotal development in AI governance, introducing a risk-based regulatory framework that strikes a balance between innovation, accountability, and security. The Act categorises AI capabilities by potential harm, imposing stricter obligations on high-risk capabilities such as generative and agentic AI. It expands cybersecurity requirements to include algorithmic integrity, data provenance, and decision explainability, mandating secure, ethical, and transparent AI operations.
Compliance requires a comprehensive organisational response that integrates governance, operational processes, and cultural change. PAC considers that organisations must adopt secure development practices, maintain traceable documentation, and embed continuous risk management across the AI lifecycle. Collaboration between cybersecurity, data science, and compliance teams is essential to ensure human oversight and verifiable AI outputs. Accountability also extends to third-party suppliers, necessitating enhanced due diligence and monitoring.
PAC highlights that beyond regulatory alignment, the Act offers strategic advantages because organisations that embed its principles can build trust, improve AI reliability, and mitigate reputational and operational risks. Compliance promotes effective data governance and cross-functional collaboration, thereby supporting innovation and growth. Ultimately, a cybersecurity-first approach to AI enables scalable, responsible deployment, aligning ethical governance with strategic objectives and enhancing competitiveness in an AI-driven landscape.
Recommended advisory: PAC Leadership Session – Cybersecurity Compliance
SHARE :
This Vendor Profile reviews Accenture’s digital customer engagement portfolio, detailing CX strategy, experience design, digital marketing, ...
Event Date : April 09, 2026
In a challenging economic environment, companies have to relentlessly pursue operational optimization, eliminating redundant and costly processes. ...
Event Date : February 05, 2024
PAC has evaluated 28 providers of AI-related services in Europe, France, and Germany in different lines of business.
Event Date : September 18, 2024
This document provides market volumes, growth rates and forecasts for the total IoT market (consolidated) for the 2021-2027 period.
Event Date : October 10, 2023
The Cybersecurity vendor profiles portray leading cybersecurity providers, analyzing their strategies and ...
Event Date : December 09, 2024
IT Services - Preliminary Vendor Rankings - France
Datamart May 13, 2026 NEW 
Datamart May 12, 2026 NEW
Datamart May 12, 2026 NEW
Kyndryl - Figures - France - FY 31-Mar-2025
Datamart May 12, 2026 NEW
Kyndryl - Vendor Profile - France
Vendor Profile May 12, 2026 NEW
Atos: Cause for Optimism, Despite the Headlines
Blog Post February 05, 2024
Blog Post May 11, 2026
DataCenter Forum 2026 – Key Takeaways from the 8th Edition
Blog Post May 08, 2026
[update] How the Middle East Conflict Could Shape the IT Services Market
Blog Post May 07, 2026
Claude Mythos and the Strategic Recalibration of Cybersecurity
Blog Post May 05, 2026
Blog Post April 27, 2026
