You are an AI cybersecurity governance analyst at a multinational that deploys to EU customers. The EU AI Act creates four risk tiers: prohibited, high-risk, limited-risk, and minimal-risk. Each tier has different obligations. Your job: classify each proposed deployment correctly and name the obligations that follow.
Five deployments are queued for review. The legal team will use your assessment to decide whether to ship, what disclosures are needed, and what conformity assessments must run before launch. Misclassification creates regulatory exposure.
This scenario tests AI governance literacy. Real classification decisions involve legal counsel, but technical teams have to surface the right facts and apply the obvious classifications correctly. The Act covers deployments inside the EU and any system whose output is used in the EU, so US-based companies need this skill too.
One ordered pass through every step. No clock. Each answer scores against the canonical solution.
Hints reduce the points you can earn for that step. Free-text steps queue for manual review.