SME-friendly provisions: sandboxes, waivers, and the AI Pact

Each Member State must establish at least one AI regulatory sandbox by August 2, 2026. Sandboxes provide a controlled environment to develop, test, and validate innovative AI systems under regulatory supervision before placing them on the market.

SMEs and startups receive priority access, and sandbox participants benefit from structured guidance from national competent authorities. The sandbox does not exempt participants from AI Act obligations, but it provides a safe space to iterate on compliance approaches with direct supervisory feedback.

Launched by the Commission in 2024, the AI Pact is a voluntary initiative whereby organizations commit to start applying AI Act principles before the legal deadlines. Signatories publish their commitments and progress, gaining visibility and trust with regulators and customers.

For SMEs, the AI Pact offers a structured way to demonstrate good faith compliance efforts while implementation infrastructure is still being built. It signals market readiness to enterprise buyers who increasingly require AI governance attestations from their suppliers.

The AI Act mandates that conformity assessment fees and administrative fines are proportionate to the size and resources of the organization. SMEs face lower fine caps and may access simplified conformity procedures where available.

ActLoom is purpose-built for this segment: it automates the most resource-intensive compliance tasks — classification, evidence management, gap analysis, and reporting — so small teams can achieve and maintain conformity without dedicated legal departments.