Providers of General Purpose AI (GPAI) models face extensive obligations under the EU AI Act
– covering the entire lifecycle, from model development and training to system integration, release, and ongoing updates.
Highly compute-intensive models trained with more than 10²⁵ FLOPS are classified as GPAI with systemic risk. These models are subject to additional requirements. In particular, providers must carry out a continuous and comprehensive cyber risk assessment throughout the entire lifecycle.
This assessment must consider not only technical factors but also ethical and societal risks.
More details can be found in the guest Heise article by Mirko Ross here:
https://www.heise.de/hintergrund/KI-Modelle-nach-den-Vorgaben-des-AI-Acts-entwerfen-11076636.html
Konrad Buck
Head of Press and Media Relations
Background & Expert Access for Media
I provide journalists with access to in-depth background information beyond our public materials, including:
- Product & technology insights – technical context, solution architecture, and real-world use cases for professional and trade media
- Expert commentary & background talks – our CEO is available as an expert source on current cybersecurity developments, threat landscapes, and the impact of AI on security and regulation
Media contact
I speak openly, fact-based, and without PR spin. I am a former IT journalist with decades of experience in the IT and cybersecurity space, familiar with the highs and lows of the industry. Off-the-record discussions are possible upon request.
I speak openly, fact-based, and without PR spin. I am a former IT journalist with decades of experience in the IT and cybersecurity space, familiar with the highs and lows of the industry. Off-the-record discussions are possible upon request.
