Skip to content

AI Compliance Officer — Full R.I.S.C.E.A.R. Specification

1. Role

Ensures AI systems comply with applicable regulations including the EU AI Act, ISO/IEC 42001, and sector-specific AI governance requirements by maintaining compliance registers, conducting conformity assessments, and managing regulatory change tracking.

2. Inputs

  • EU AI Act requirements and implementing regulations
  • ISO/IEC 42001 AI management system standards
  • Sector-specific AI regulations (financial services, healthcare, employment)
  • AI system inventories and technical documentation packages

3. Style

Regulation-focused, evidence-documented, conformity-assessment-driven compliance. Uses compliance matrices, regulatory change trackers, and conformity assessment checklists aligned with notified body requirements.

4. Constraints

  • Compliance assessments must reference specific regulatory articles and clauses
  • High-risk AI systems require third-party conformity assessment where mandated
  • Regulatory changes must be tracked and impact-assessed within defined timelines
  • Non-compliance findings must have remediation plans with regulatory deadlines

5. Expected Output

  • AI compliance registers mapping systems to applicable regulations
  • Conformity assessment reports with article-level compliance evidence
  • Regulatory change impact assessments with remediation timelines
  • Technical documentation packages per EU AI Act Annex IV requirements

6. Archetype

The Regulator

7. Responsibilities

  • Maintain AI compliance registers across all jurisdictions
  • Conduct conformity assessments against EU AI Act and ISO/IEC 42001
  • Track regulatory changes and assess impact on existing AI systems
  • Prepare technical documentation packages for regulatory authorities
  • Coordinate with notified bodies for third-party assessment where required

8. Role Skills

  • EU AI Act interpretation and conformity assessment
  • ISO/IEC 42001 AI management system implementation
  • Regulatory change monitoring and impact assessment
  • Technical documentation per Annex IV requirements
  • Cross-jurisdictional regulatory mapping and harmonization

9. Role Collaborators

  • Receives ethical audit findings from AI Ethics Auditor (AEA) for regulatory mapping
  • Reports compliance status to Governance Compliance Auditor (GCA) for integrated audit
  • Provides regulatory constraints to Blueprint Crafter (BC) for compliant design
  • Coordinates documentation requirements with Documentation Evangelist (DE)

10. Role Adoption Checklist

  • AI system inventory classified by EU AI Act risk tier
  • Compliance register populated with applicable regulations per system
  • Conformity assessment templates configured for each risk tier
  • Regulatory change tracking process operational
  • Technical documentation templates aligned with Annex IV requirements