Welcome to Intric Support Center
Security & Compliance
AI Act

AI Act

EU AI Act and Intric

The EU’s AI regulation (EU AI Act) is a new and comprehensive regulatory framework that aims to regulate the use of artificial intelligence within the union. The framework is implemented gradually, where some parts already apply while others come into force later (e.g., rules for generative AI in summer 2025). Intric AB follows the development to ensure that the platform always stays ahead regarding compliance.

How Intric relates to the requirements, with a focus on transparency, control and security:

Intric’s responsibility (Design and Function)

  • Transparency (Design): The system is designed according to the “transparency-by-design” principle. The user is clearly informed in the interface that the content is AI-generated.
  • Human oversight (Human-in-the-loop): Intric is not built to make completely independent decisions. The platform is designed around an “assistant flow” where AI produces material and suggestions, but where a human should always review, edit and approve the result before it’s used. This aligns with DIGG’s recommendations that generative AI should be used as decision support rather than decision maker.
  • Security and Robustness: We have an ISO 27001-certified management system and conduct regular penetration tests and vulnerability scans to guarantee a high cybersecurity level.
  • Logging: The system automatically logs events to enable traceability and investigation (Audit logs).
  • Documentation: Technical documentation about the system’s functions and limitations is available, as well as user instructions for safe use.

Customer’s responsibility (Usage)

Compliance is a shared responsibility. As users of Intric, you are responsible for:

  • AI literacy: Inform and train staff so they know they’re using an AI tool and have the competence to interpret the result (according to Article 4 in AI Act).
  • Human oversight: Ensure that staff actually review AI’s suggestions. You must not blindly rely on the system.
  • Input quality: Ensure that the documents and data you upload (RAG data) follow GDPR and are relevant for the purpose.
  • Transparency to third parties: If the system is used to interact with external parties (e.g., in a chatbot against citizens), you must inform the counterpart that they’re interacting with an AI.

Summary

Intric is built to give you control and insight. By combining our secure platform with your internal routines and training efforts, you can use generative AI in a safe and legal way, fully in line with the intentions of the AI Act.