Introducing Proactive Agents.
Learn more
Glossary

EU AI Act

The EU AI Act is a regulation adopted by the European Union that establishes a risk-based legal framework governing the development, deployment, and use of artificial intelligence systems, with requirements that vary according to the risk level a given system poses to health, safety, and fundamental rights.

Adopted in 2024 and phased into full effect through 2026, the EU AI Act is the first comprehensive AI-specific law enacted by a major jurisdiction. It applies to any organization placing AI systems on the EU market or deploying them for EU users, regardless of where the developer is headquartered. For customer service teams, the Act's most direct implications involve the use of conversational AI systems, AI-driven decisioning, and automated processing of customer data.

How the EU AI Act works

The Act classifies AI systems into four risk tiers. Unacceptable-risk systems, such as social scoring by governments or real-time biometric surveillance in public spaces, are prohibited entirely. High-risk systems, which include AI used in employment, credit, and certain customer-facing decisioning contexts, face mandatory conformity assessments, transparency obligations, and human oversight requirements. Limited-risk systems must meet transparency requirements, most importantly informing users when they are interacting with an AI. Minimal-risk systems face no binding obligations under the current text.

  • General-purpose AI models: Foundation models above a certain compute threshold face systemic-risk requirements, including adversarial testing and incident reporting to the EU AI Office.
  • Transparency: Deployers of AI systems that interact directly with people must disclose the AI nature of the interaction, which directly affects AI voice agents and chatbots.
  • Human oversight: High-risk deployments must include mechanisms for a human to override, correct, or halt the system, intersecting with human-in-the-loop (HITL) design patterns.
  • Record-keeping: High-risk system operators must maintain logs sufficient to trace decisions, which connects to requirements for robust AI observability.

Why the EU AI Act matters for customer experience

Customer service AI sits primarily in the limited-risk tier under current guidance, meaning the main compliance obligation is disclosing that an AI is handling the interaction. However, AI systems used for automated claims processing, credit-related decisioning, or employee performance monitoring can cross into the high-risk tier, requiring more substantial compliance programs. Organizations that have already implemented AI compliance controls for GDPR are better positioned, but the Act introduces distinct requirements that GDPR does not cover, including pre-deployment risk assessments and ongoing conformity documentation.

The Act also creates competitive pressure on AI vendors. Providers who cannot demonstrate compliance will be excluded from EU deployments, reshaping procurement decisions for enterprises with European operations. The European Commission's AI Act resource page maintains the official implementation timeline and sector-specific guidance documents.

Preparing for EU AI Act compliance in customer service

For most support deployments, compliance centers on three areas: disclosure mechanisms that clearly identify AI interactions, audit logs that record model decisions and escalation triggers, and governance documentation that maps each AI use case to its risk classification. Teams using responsible AI frameworks are advised to conduct a use-case inventory before the high-risk provisions take full effect. Explainable AI tooling, which produces human-readable rationales for model decisions, is increasingly viewed as a practical requirement for demonstrating compliance with the Act's transparency provisions. More context on building AI governance into CX programs is available in Decagon's guide to the next generation of AI-powered customer experience.

For a deeper dive, download Decagon's guide to agentic AI for customer experience.

Learn more

After-call work (ACW)
Agent assist
Agent quality score
Agent SOP
AI SDR
AI voice agent
AI workflow automation
Asynchronous messaging
Authentication
Automatic call distributor
Auto-tagging
Business process outsourcing (BPO)
Buy online, pick up in store (BOPIS)
Call center
Call center shrinkage
Call routing
Canned response
Contact center as a service (CCaaS)
Conversational AI design
Conversational AI vendor evaluation
Customer journey mapping
Customer onboarding
Customer segmentation
Data residency
Digital concierge
Dual-tone multi-frequency (DTMF)
Echo cancellation (AEC)
Guardrail evaluation
Help desk
Intelligent Virtual Agent (IVAs)
Interactive voice response (IVR)
ISO 27001
Knowledge base
KYC in customer service
Latency
Live chat
Mean opinion score (MOS)
Multi-channel vs omnichannel
Next-best action
Omnichannel customer support
Outbound voice AI
PII redaction
Predictive dialer
Proactive customer support
Public Switched Telephone Network (PSTN)
QA in customer service
Queue management
Resolution-based pricing
Session border controller
Short message service (SMS)
SIP transfer
Skill-based routing
SOC 2 Type II
Telephone Consumer Protection Act (TCPA)
Telephony
Ticketing system
Ticket prioritization
Ticket routing
Ticket volume
Tiered support
Voice over Internet Protocol (VoIP)
Warm transfer vs. cold transfer
WISMO (where is my order)
Workforce management
Workforce optimization (WFO)

Deliver the concierge experiences your customers deserve

Get a demo