Next deadline
T−17 days
· Main application
Policy intelligence desk · English · EU + British Isles
Flint Brief reads the EU AI Act article by article, prices SME adoption work in euros, and names the advisors worth talking to.
Status board
Next deadline
T−17 days
· Main application
In force since
Art. 4 literacy · Art. 5 prohibited practices
Penalty cap
€35M · 7%
Of worldwide turnover for prohibited practices · Art. 99
Briefings live
57 editions
Last verified
Regulatory watch
In force
Prohibited practices (Art. 5) and AI literacy obligation (Art. 4).
In force
General-purpose AI rules and governance bodies operational.
Main application
High-risk systems (Annex III) and transparency duties (Art. 50).
Grandfathered
High-risk systems already on the market must come into compliance.
Source: Regulation (EU) 2024/1689 — EUR-Lex.
Latest dispatch
A new EU clinical-data challenge turns synthetic data into a buying test. We compare Syntho, MDClone, Tonic.ai and ARCKONE.
Recent briefings
UK police will pilot AI for evidence review. The missing control is a run log that lets investigators, prosecutors and defence reconstruct each result.
New EDPB guidance turns anonymisation into an evidence task: test record isolation, linkage and inference before treating data as outside GDPR.
The EU child-safety report turns age assurance into a product decision. Compare the EU blueprint, Yoti, Verifymy and ARCKONE.
EUDI wallets arrive by end-2026. Compare ARCKONE, Signicat, IDnow and Okta for one usable identity workflow.
ENISA has given SMEs a practical cyber maturity model. The useful result is not the score but an owned backlog of product-security evidence.
The Commission's preliminary case against Facebook and Instagram targets an inadequate systemic-risk file, not one interface pattern in isolation.
The EDPB's new draft on web scraping gives EU SMEs a practical test for any generative-AI dataset built from public pages.
Brussels' new cyber-AI plan is not a buying list. EU SMEs should first map the systems, data and privileges an AI-assisted attack can reach.
Europe's new Apply AI Startup Award is not an open call. Founders first need a credible national route, sector fit and a concise proof file.
The EU's first Apply AI agriculture dialogue is a prompt to buy one useful data path, not a generic farm-AI promise.
The EU's 7 July AI cybersecurity plan turns model risk into a buying question for SMEs using advanced AI.
The EU is moving AI energy measurement from sustainability claim to procurement evidence. SMEs should ask vendors for usable numbers.
After the Council's AI Act simplification vote, SMEs need triage: public help, governance software, counsel or a build partner.
The UK Data Use and Access Act is now in force. SMEs using AI decisions need a small evidence file before they need a governance programme.
ENISA's 2026 SBOM survey turns software bills of materials from security paperwork into a supplier-readiness test for EU SMEs.
The EU Forced Labour portal turns supplier traceability into a concrete evidence job for SMEs before December 2027.
The new EU Cybersecurity Skills Coalition helps SMEs only if the training choice starts with named operational roles.
The AI Act's GPAI training-content summary turns model selection into a procurement evidence problem for EU SMEs.
ENISA's SME survey turns the Cyber Resilience Act from a legal deadline into a reporting workflow problem.
Europe's AI Factories are opening free SME access, but the useful application starts with a small workload file.
AI Act sandboxes are becoming operational work. SMEs should choose help by evidence, workflow and role, not by the sandbox label.
The EU's AI-generated content icons give SMEs a visible label, but the real work is deciding when a label belongs in the workflow.
The Commission's draft Article 6 guidelines turn a small AI Act exception into a documentation job for SME providers.
Agentic AI turns logging into a buying decision: platform traces, gateway records, security review or workflow implementation.
The AI Act Advisory Forum has started work. SMEs should use it as an early-warning feed, not a substitute for their own AI inventory.
The AI Office is formalising external model evaluation. SMEs should turn that into sharper supplier questions, not a new audit theatre.
The Commission now offers more AI Act guidance, but SMEs still need a small evidence log before tools become business process.
The Commission's June 2026 health AI survey is a warning for SMEs: adoption now depends on evidence, data access and workflow proof.
ENISA's SME CRA survey turns product security into a buying question: legal advice, tooling, assessment body or workflow builder?
The EU wants more AI-ready data. SMEs should choose help by workflow, not by platform label.
The OECD's 2026 SME AI survey shows why agents need a bounded task, not a vague autonomy mandate.
The EuroQCI consultation closes on 24 June. SMEs do not need quantum kit yet, but they do need crypto migration evidence.
The EU's June 2026 open source strategy gives SMEs a practical procurement test: less lock-in only matters when the software can be run.
The AI Act delay changes the advisory brief: EU SMEs now need a legal tracker, governance record and build evidence, not a slogan.
The AI Omnibus shifts high-risk AI timing, but SMEs still need inventories, Article 50 checks and evidence before August 2026.
The EU chose EUROPA to build a 24-language open frontier AI model. SMEs should treat it as a signal, not procurement certainty.
The Commission's 2026 guidance queue gives SMEs a practical AI Act task: document systems before legal deadlines become procurement pressure.
The EU's 2026 Digital Decade report shows AI adoption rising, but SMEs still need process, data and skills before tools become capacity.
Europe's Apply AI push gives SMEs more routes into AI adoption. The hard part is choosing public support, model vendors or workflow builders.
The EU's 2026 code turns AI content labelling into a procurement choice: C2PA tooling, model vendors, legal advice or workflow implementation.
The G7 cybersecurity declaration turns AI security into a supplier-evidence problem for SMEs buying or building AI systems in Europe.
The Omnibus deal gives Member States one more year to open AI Act sandboxes. For SMEs, the useful work starts before the doors open.
The Commission's draft high-risk AI guidance turns AI Act scoping into a buying decision for EU SMEs: legal review, governance software or implementation help.
The EU's Cloud and AI Development Act turns sovereignty into a buying question. SMEs need to compare European clouds, hyperscalers, AI factories and build partners.
Article 4 is already live, with supervision from 3 August 2026. A practical comparison of AI literacy routes for EU SMEs.
Weeks before the 2 August 2026 cliff, an 'AI Act compliance' market has appeared. Which governance platform, advisor or build partner fits which EU SME.
Most of the AI Act's Article 50 transparency duties still apply on 2 August 2026. What EU SMEs must disclose on chatbots, deepfakes and AI content, and what moved.
The Commission's new Scientific Panel and Advisory Forum do not create new SME duties, but they make AI Act interpretation and surveillance more concrete.
The EU has provisionally delayed its high-risk AI rules to 2027. Britain still has no AI Act. What the widening gap means for SMEs trading across the Channel.
For European SMEs, the next AI bottleneck is not model access. It is procurement discipline, evidence, and operating accountability.
Eurostat's 2025 data shows strong growth in AI usage, but adoption remains sharply unequal by company size, country, and digital maturity.
A Canadian firm buys Europe's second-largest LLM player. Examining what 'sovereign AI' actually delivers for EU SMEs picking an LLM in 2026.
Most EU AI Act obligations enter application on 2 August 2026. What EU SMEs must do, what waits till 2027, and what most can ignore.
57% of EU firms can't find qualified tech staff. Practical paths for SMEs to source AI capability without competing on scale-up salaries.
Curated map of AI consultancies that genuinely serve European SMEs in 2026. Named names, real strengths and limits — publisher included, with disclosure.
Dozens of 2024-2025 'AI Transformation' frameworks are now retired or rewritten. What killed them, and which survived into 2026.
Coverage
Regulation
Articles 4, 6, 50 and Annex III in plain English, with EUR-Lex references. What applies on 2 August 2026, what waits until 2027, what most small businesses can safely ignore.
Market
Project costs compared across Belgium, the Netherlands, Germany, France, Ireland and the Nordics. SME-relevant budget ranges, not enterprise quotes.
Advisors
London, Dublin, Amsterdam, Berlin, Paris boutiques and the pan-European mid-market. Same criteria for everyone, including this site's publisher.
Strategy
Which 2024–2025 'AI Transformation Roadmaps' have quietly been retired, what killed them, and what replaced them in 2026.
Source methodology
01 · Primary
Regulations, treaties, court rulings, official journals. EUR-Lex by article.
02 · Official
EU institutions, national authorities, statistical bodies, regulators.
03 · Secondary
Firms' own pages and case studies. Used to describe firms, never as proof of figures.
04 · Data
Datasets and indicators (DESI, CEDEFOP, Eurostat) with dated lookup.
Every briefing lists its sources, dated by the day of lookup, with the tier shown in the margin. See an example
Now and then, a concrete take on internal tools and practical AI for SMEs. No spam.