Italy became the first EU member state to adopt an AI Act implementation decree on June 10, 2026.
Italy's AI Act Implementation Decree: First in the EU
Overview
Italy became the first EU member state to adopt an AI Act implementation decree on June 10, 2026. National authority, sanctions, and sector-specific guidance. As the August 2, 2026 deadline for transparency and GPAI obligations approaches, understanding this member state's national implementation is essential for businesses operating there.
National AI Authority
this member state has designated its national competent authority for EU AI Act enforcement. This authority is responsible for market surveillance, enforcement of AI Act obligations, oversight of high-risk AI systems deployed in this member state, and coordination with the EU AI Office on GPAI model matters.
The national authority has the power to investigate potential violations, conduct inspections, request documentation, and impose administrative fines. It also serves as the point of contact for AI system providers and deployers operating in this member state.
Implementation Status
As of June 2026, this member state is in the process of transposing EU AI Act requirements into national law where necessary and establishing operational procedures for enforcement. While the AI Act is a regulation (directly applicable), member states must designate authorities, establish complaint mechanisms, and define national penalty procedures.
Key implementation elements include establishing the notified body framework for conformity assessment, setting up the regulatory sandbox programme, and defining national procedural rules for investigations and penalties.
Regulatory Sandbox
Under the EU AI Act, each member state is encouraged to establish at least one AI regulatory sandbox. this member state's sandbox programme, when operational, will allow AI providers to develop, train, and test AI systems under regulatory supervision before market placement.
Sandbox participation does not exempt providers from compliance but provides a structured environment for testing compliance approaches, receiving regulatory guidance, and building relationships with the national authority.
Compliance for Businesses in this member state
Businesses operating AI systems in this member state should register with the national authority as required, monitor national implementation developments for this member state-specific guidance, establish a compliance contact point for authority communications, and prepare for potential market surveillance inspections.
Cross-border operators should note that while the AI Act is harmonised across the EU, enforcement approaches and priorities may vary between member states. Operating in this member state means the this member state authority is the primary enforcement body for AI systems deployed in its territory.
Key Deadlines
August 2, 2026: Transparency (Article 50) and GPAI model obligations take effect. August 2, 2027: High-risk AI system obligations take full effect. Ongoing: Article 5 prohibited practices and Article 4 AI literacy obligations have been in effect since February 2, 2025.
Check your AI compliance readiness — free.
Take the Readiness Check 3 minutes · 10 questions · no signup requiredThis article is for informational purposes only and does not constitute legal advice. Regulatory requirements change frequently — verify current rules with official sources. Built by Sawai Gyoseishoshi Office, Hiroshima, Japan.