How to Map an AI Agent Eval to the EU AI Act's High-Risk Obligations

"Compliant with the EU AI Act" is not a property an eval can prove on its own — but specific, checkable pieces of evidence toward specific obligations are exactly the kind of thing an eval's own test-case structure can demonstrate. The trick is operationalizing the Act's language into concrete checks instead of inventing a private rubric and calling it compliance.

Quick answer: Map an eval's test-case structure onto the EU AI Act's checkable high-risk obligations directly: does every answerable case carry a citation (logging/traceability), does the test set include enough deliberately unanswerable cases (transparency about limitations), is there enough ground-truthed test volume to call the result evidence (accuracy/robustness), and can the eval catch a deliberately sabotaged agent (human oversight)? Score each independently rather than collapsing them into a single compliance claim.

Which obligations are actually checkable from a test set?

Four, using only the structure of the test cases themselves — no legal interpretation required:

Obligation (EU AI Act)What it looks like in an eval's test set
Logging capable of enabling traceabilityEvery answerable case has a citation an auditor could follow back to a source
Transparency about limitationsA meaningful share of test cases are deliberately unanswerable, testing whether the agent says so
Accuracy / robustness evidenceEnough answerable cases with concrete, checkable ground truth to be evidence, not anecdote
Human-oversight measuresThe eval can actually flag an untrustworthy system — i.e. it fails a deliberately sabotaged reference agent

Obligations like maintaining a documented risk-management process or technical documentation are organizational commitments, not something a test set can demonstrate — those stay out of scope for this kind of mapping.

Why measure "met" and "missing" instead of a single score?

Because a single number hides which specific gap needs fixing. A pack missing only the transparency obligation (no abstention test cases) needs a narrow, specific fix — add unanswerable questions — not a full rebuild. A pack failing the human-oversight check (it can't catch a sabotaged agent) has a much more serious problem. Collapsing both into "70% compliant" erases that distinction.

Why base this on articles, not an internal opinion of "good"?

Because the whole point of anchoring to an external standard is that the authority making the claim isn't inventing the bar. If a check can't be traced back to specific language in the Act (or another named standard), it's an opinion wearing a compliance costume — see the EU AI Act standard page for the source text these checks are drawn from.

How does this interact with discriminating power and gameability?

Standard coverage is one of three axes a pack needs, alongside discriminating power and structural validity. A pack can score well on standard coverage and still fail overall if it can't catch a sabotaged agent — coverage doesn't substitute for the other two, it adds a regulatory-grounded signal on top.

Related

FAQ

Does passing these checks make an agent legally compliant with the EU AI Act?

No — this is not legal advice, and compliance is a broader organizational determination than any single eval can certify. What this does is give concrete, checkable evidence toward specific obligations, so a compliance review starts from documented facts instead of an unverified claim.

Which EU AI Act obligations can actually be checked from an eval's test-case structure?

The ones with a direct behavioral signature: logging/traceability (does every answer carry a followable citation?), transparency about limitations (does the agent abstain when it should?), and accuracy/robustness evidence (is there enough tested ground truth to call the result evidence?). Obligations like having a documented risk-management process are organizational, not testable this way.

How does human oversight get tested if there's no human in the loop during the eval?

By testing whether the system can be caught being untrustworthy in the first place — specifically, whether the eval detects a deliberately sabotaged reference agent. An eval that can't flag an obviously bad agent gives a human reviewer nothing to act on, which defeats the purpose of an oversight mechanism.

What's the difference between a capability pack and a conformance pack here?

A capability pack (like a RAG-groundedness pack) tests whether the agent performs the task well; mapping its results onto the Act's obligations is a bonus signal. A conformance pack is built specifically to check standard coverage as its primary purpose, usually across a broader set of obligations than one capability cell touches.

Why not just add an 'EU AI Act compliant' checkbox to a pack's page?

Because an unverifiable checkbox is exactly the kind of unfalsifiable claim this whole approach exists to avoid. Showing which specific obligations are met and which are missing — traceable to the Act's actual text — is more useful and more honest than a single yes/no badge.

Which article of the EU AI Act do these obligations come from?

They're drawn from the high-risk system obligations around Article 53 and related provisions — technical documentation, logging enabling traceability, transparency and instructions for use, human oversight, and accuracy/robustness/cybersecurity evidence. See the full standard page for the complete list and source text.

← Back to guides