AI Act risk classifier
AI Act Risk Classifier
Classify an AI workflow against EU AI Act risk signals and generate a practical control checklist. The generated output is a working draft for governance review and should be validated by the accountable business, technical, legal, and compliance owners.
Risk category
High Risk
79% indicative signal strength
Based only on the answers provided. This is governance support, not a legal determination.
# AI Act Risk Assessment: AI candidate screening workflow Risk category: High Risk Signal strength: 79% (indicative, based only on the answers provided — not a legal determination) ## Reasoning - High-risk signal: employment or worker-management decisions. - High-risk signal: candidate scoring or recruitment ranking. - High-risk signal: automated decision-making with material impact. ## Applicable obligations - Maintain risk-management and quality controls for the AI system. - Keep technical documentation and instructions for use current. - Enable logging, monitoring, and post-market review. - Define effective human oversight before consequential action. - Track data governance, accuracy, robustness, and cybersecurity controls. ## Required controls - Human oversight required - Logging required - Documentation required - Monitoring required - Legal review required ## Recommendations - Add approval gates before consequential actions. - Generate technical documentation and DPIA/FRA working papers. - Record model, data-source, owner, reviewer, and review cadence. - Monitor post-deployment outcomes and override actions. This is a governance support assessment, not legal advice. Final classification and obligations should be reviewed by qualified legal and compliance owners.
Problem
AI workflows are often created faster than organizations can inventory, classify, document, monitor, audit, review, and govern them.
Regulatory relevance
GDPR and the EU AI Act both reward clear records, risk assessment, human oversight, logging, and accountable review processes.
Corelyx solution
Inside Corelyx, these draft reports become workflow-native evidence connected to schemas, approvals, execution logs, and exports.