Skip to main content

Policy · August 1, 2024

EU AI Act enters force — phased rollout starts with GPAI rules

The regulation's first enforcement window covers general-purpose AI model disclosures and prohibited-use bans. Full application of high-risk-system rules follows in August 2026.

Reported byMIT Technology Review

policy-signal.svg

What happened

The EU AI Act entered force on August 1, 2024, with a phased enforcement calendar. The first binding provisions — general-purpose AI (GPAI) model transparency obligations and the prohibited-use list — take effect February 2025. High-risk-system obligations follow in August 2026.

The scope is wide. Any AI system placed on the EU market must meet the Act's requirements, which includes models that serve EU users from non-EU infrastructure. Fines for the most serious breaches reach up to 7% of global annual turnover.

Why it matters to Shopify merchants

For Shopify merchants using AI to surface product recommendations or to generate marketing copy, the Act matters in two specific ways. First, if you sell into the EU and your store uses an AI system classified as 'high-risk' — recommender systems at scale, for example — you inherit obligations for transparency and human oversight. Second, the GPAI transparency rules mean the upstream model providers now document training data signals, which changes how citations are likely to behave.

The second point is the more interesting one for GEO. As GPAI models disclose their training composition, AI-answer surfaces will increasingly be auditable in terms of where citations come from. That rewards merchants with clean public retrievability — llms.txt, open product feeds, stable canonical URLs — and penalises merchants whose content is locked or schema-less.

The Act itself doesn't change what you publish on your PDPs, but it does raise the floor on what AI-answer surfaces can say about sources. Clean, parseable catalog content becomes more valuable, not less, under this regime.

How we got here
  1. Aug 2024

    Act enters force

    Phased enforcement calendar begins.

  2. Feb 2025

    Prohibited-use bans + GPAI transparency apply

    First binding obligations for model providers and platforms.

  3. Aug 2026

    Full high-risk-system rules apply

    Annex III systems — including certain recommenders — must meet full transparency + oversight obligations.

Three questions, answered

Do I need to change anything on my Shopify store because of the AI Act?
Probably not on the merchant-facing side. If you use an AI-recommender app classified as high-risk under Annex III and sell into the EU, the app provider handles most compliance. Your exposure is limited to transparency about where AI assists in the buyer journey.
How does the Act change AI-answer behaviour for shopping queries?
Model providers now have to document training and retrieval signals. Over time that makes the citation sets AI assistants surface more stable and auditable, which rewards publicly-retrievable catalogs.
What's the practical takeaway for a 2026 Shopify merchant?
Keep publishing clean, public, schema-backed catalog content. The Act makes that work more valuable because AI surfaces now have a regulatory reason to prefer auditable sources.
← Back to all news