Navigating the evolving and complex landscape for AI governance requirements can be a real challenge for organizations. We’ve created this comprehensive cheat sheet comparing three important compliance frameworks: the EU AI Act, the NIST AI Risk Management Framework, and ISO 42001. This easy to understand visual maps the similarities and differences between these frameworks, providing a concise reference for organizations implementing responsible AI guardrails.
Should the EU “Stop the Clock” on the AI Act?
The European Union (EU) AI Act became effective in August 2024, after years of negotiations (and some drama). Since entering into force, the AI Act’s implementation has been somewhat bumpy. The initial set of obligations for general-purpose AI (GPAI) providers took effect in August 2025 but the voluntary Code of Practice faced multiple drafting delays. The finalized version was released with less than a month to go before GPAI providers needed to comply with the law.
