What is KlarvoEngine?

KlarvoEngine is Klarvo's regulatory intelligence engine. It analyses your AI system through a 3-pass classification pipeline and produces an article-cited compliance memo with obligations, deadlines, and recommended controls — in under 60 seconds.

What is the EU AI Act?

The EU AI Act (Regulation 2024/1689) is the world's first comprehensive AI regulation. It classifies AI systems by risk level and imposes obligations on providers and deployers of AI systems operating in the EU.

Any organisation that provides or deploys AI systems affecting people in the EU — regardless of where the organisation is based. This includes websites with AI chatbots, companies using AI analytics, and businesses integrating AI models into their products.

Prohibited AI practices have been enforceable since February 2025. GPAI model obligations since August 2025. Article 50 transparency and most remaining obligations apply from August 2, 2026.

What are the penalties?

Up to €35 million or 7% of global turnover for prohibited practices. Up to €15 million or 3% for transparency and other violations. For SMEs, the penalty is whichever amount is lower.

Full Evidence Pack (ZIP)

The Evidence Pack is Klarvo's signature export — a comprehensive ZIP bundle containing everything an auditor or regulator needs to assess compliance for a single AI system. It's designed to look like a premium consultancy deliverable.

ZIP Bundle Structure

📁 EU-AI-Act_EvidencePack_[Org]_[System]_[Date]/ ├── 📁 00_Executive/ │ └── Executive_Summary.pdf ├── 📁 01_Inventory/ │ └── AI_System_Record.pdf ├── 📁 02_Classification/ │ ├── AI_Definition_Test.pdf │ ├── Prohibited_Screening.pdf │ ├── Risk_Classification_Memo.pdf │ └── Transparency_Screening.pdf ├── 📁 03_Obligations/ │ └── Obligations_Checklist.pdf ├── 📁 04_Controls/ │ └── Control_Implementation_Status.pdf ├── 📁 05_Evidence/ │ └── [All linked evidence files organized by type] ├── 📁 06_FRIA/ (if applicable) │ ├── FRIA_Report.pdf │ └── FRIA_Summary.pdf ├── 📁 07_Vendor/ │ ├── Vendor_Profile.pdf │ └── [Vendor documentation files] ├── 📁 08_Training/ │ └── Training_Completion_Report.pdf ├── 📁 09_Incidents/ │ └── Incident_Summary.pdf └── Evidence_Index.csv

Evidence Index

The Evidence_Index.csv is a master reference listing every artifact in the pack:

Column

Description

Evidence ID

Unique identifier (EV-001, EV-002...)

Title

Document name

Type	Policy, screenshot, report, certificate, etc.

Linked Controls

Control IDs this evidence supports

Date Collected

Upload date

Owner

Who uploaded it

Status

Draft / Approved / Expired

Shareability

Internal / External

Generating an Evidence Pack

Open the AI System detail page

Click Export → Evidence Pack (ZIP)

Choose options:

- Include draft evidence? (default: no)

- Include expired evidence? (default: no, but noted as missing)

- Confidentiality level: Internal / Shareable with Auditor

Click Generate

Download the ZIP bundle

Generation may take 15-30 seconds for systems with extensive evidence.

What's Included vs. Excluded

Included

Excluded

Approved, current evidence

Draft evidence (optional)

Classification memo (signed)

Unsigned classifications

FRIA report (if applicable and approved)

FRIA drafts

Control status summary

Detailed control configuration

Vendor documentation

Internal vendor notes

Training completion records

Training content files

Incident summary

Full incident details (privacy)

Pack Quality Checklist

Before sharing an Evidence Pack externally:

[ ] All critical controls have linked evidence

[ ] No draft evidence included (unless intentional)

[ ] No expired evidence (or explicitly noted)

[ ] Classification memo is signed off

[ ] FRIA is approved (if applicable)

[ ] Confidentiality marking is appropriate

Best Practices

📋 Review before sharing: Open the ZIP and check key documents before sending to an auditor

📅 Generate fresh: Always regenerate before an audit — don't use a pack from months ago

🔒 Use secure sharing: Share via Klarvo's secure link rather than email attachment

📊 Check completeness first: Review the Evidence Completeness score — anything below 80% will have visible gaps