EU AI Act — Regulation (EU) 2024/1689

Why it matters for NETEVO

The EU AI Act is the most comprehensive comparator instrument in the NETEVO substrate and the regulation every AU AI governance discussion now refers to. Three operational consequences follow.

Art. 27 FRIA is the international convergence template. The Fundamental Rights Impact Assessment that Art. 27 establishes for high-risk AI in specified deployer categories is the instrument toward which Australian Privacy Act 1988 (Cth) PIAs, OAIC AI ethics-framework workflows, and the DISR Mandatory Guardrails impact-assessment guardrail most plausibly converge. NETEVO's AI system impact assessment workflow, built on ISO/IEC 42005, already satisfies FRIA structurally — citing the Regulation anchors the international authority for the convergence argument without requiring AU clients to maintain a parallel EU template.

Brussels-effect direct binding for AU entities with EU reach. Under Art. 2, AU entities offering AI systems or outputs into the EU market, or to EU persons, are directly bound by the Regulation. NETEVO clients with EU operations, EU subsidiaries, or EU customers operate against the EU AI Act in addition to AU instruments. The cross-walk to AU surfaces is the NETEVO-specific contribution that prevents a duplicate compliance stack — one engineered control set, evidenced once, satisfying both regimes.

Definitional alignment with ISO/IEC 22989. Art. 3(1) defines AI system in close alignment with the OECD definition that ISO/IEC 22989 also imports. The alignment is the operational basis for using the ISO/IEC family as a single substrate that satisfies both EU and AU regimes. Drafters using the Regulation in NETEVO output should specify when it is cited as a cross-jurisdictional benchmark versus as a directly binding obligation for an EU-reach client.