Vendor Actions
All major CRM vendors publish compliance materials. Documentation of AI systems. Conformity assessments for high-risk features. Trust Layer configurations enforceable for compliance. Customer-facing transparency obligations.
Shared Responsibility
Vendor provides compliant platform; customer deploys compliantly. Platform certification doesn’t automatically make customer deployment compliant. Customer governance still required.
Feature Gating
Some AI features may gate to specific regions. High-risk capabilities restricted until conformity assessment completed. Expect regional rollout variations through 2026.
Customer Actions
Review your vendor’s AI Act materials. Map your deployments to Annex III categories. Ensure documentation, audit, human oversight in place. Don’t rely solely on vendor — your specific deployment has compliance obligations.