Fine exposure

How much can my company be fined under AI Act?

AI Act carries penalties of up to €35M or 7% of global turnover. This page breaks down every fine tier by article, explains who is at risk, and shows live enforcement examples.

Maximum fine

€35M

or 7% of global turnover — whichever is higher

Source: Regulation (EU) 2024/1689

How AI Act penalties work

The EU AI Act (Regulation (EU) 2024/1689) establishes a three-tier penalty structure. The highest tier — up to €35M or 7% of global turnover — applies to violations of the prohibited AI practices in Article 5. The second tier — €15M or 3% — applies to most high-risk AI system and GPAI model violations. The third tier — €7.5M or 1.5% — covers incorrect or misleading information provided to authorities.

Fine tiers by article

Art. 99(3)

Prohibited AI practices (Art. 5 violations)

€35,000,000

or 7% of global turnover

Applies to:

Deploying AI systems that manipulate persons using subliminal techniques
Social scoring by public authorities
Real-time remote biometric identification in public spaces (beyond exceptions)
AI systems exploiting vulnerabilities of specific groups

EUR-Lex — Art. 99(3)

Art. 99(4)

Non-compliance with high-risk AI system obligations (Art. 6–49) and GPAI model obligations (Art. 53–55)

€15,000,000

or 3% of global turnover

Applies to:

Failure to conduct conformity assessment for high-risk AI systems
Missing technical documentation (Annex IV)
Failure to register high-risk AI systems in EU database
GPAI models lacking transparency documentation
Deployers of high-risk systems failing human oversight requirements

EUR-Lex — Art. 99(4)

Art. 99(5)

Supplying incorrect, incomplete, or misleading information to notified bodies or national authorities

€7,500,000

or 1.5% of global turnover

Applies to:

Providing false declarations of conformity
Misleading documentation provided to national market surveillance authorities
Incorrect registration information in EU AI database

EUR-Lex — Art. 99(5)

Stacked exposure with other EU regulations

If a business also processes personal data in its AI system, GDPR penalties can stack on top of AI Act penalties. A prohibited AI system that also violates GDPR Art. 5 could face both the AI Act's 7% fine and GDPR's 4% fine simultaneously, based on differing regulatory bases.

Calculate your stacked fine exposure →

Frequently asked questions

What is the maximum fine under the EU AI Act?

The maximum EU AI Act fine is €35,000,000 or 7% of global annual turnover — whichever is higher — for violations of the prohibited AI practices under Article 5, such as social scoring, subliminal manipulation, or mass biometric surveillance.

Who can be fined under the EU AI Act?

Both providers (companies that develop or place AI systems on the market) and deployers (organisations that use AI systems in professional contexts) can be fined under the AI Act. Importers and distributors have separate compliance obligations that can also attract penalties.

When do EU AI Act penalties start applying?

Penalties for prohibited AI practices (Art. 5) have applied since 2 February 2025. Penalties for high-risk AI system obligations apply from 2 August 2026.

What is your stacked fine exposure across all EU regulations?

Calculate your combined risk across AI Act, GDPR, NIS2, AI Act, DORA, and more — free, no signup.

Open fine risk calculator — free

AI Act compliance guide

For informational purposes only. This is not legal advice — consult qualified legal counsel for advice specific to your situation.

Last updated: May 2026