BETA Hydrate is in beta. Register during beta and lock $5/mo Pro forever - free during beta + 1 month after v1 launches. Join the waitlist →
Legal / Compliance

EU AI Act compliance assessment.

A tier-by-tier analysis of Hydrate under Regulation (EU) 2024/1689. Written for procurement teams, legal reviewers, and enterprise customers who need a specific, honest account of where Hydrate sits in the regulatory framework, not a marketing summary.

Last reviewed: 2026-04-24 · Sedasoft Ltd, United Kingdom

Status at a glance

Provision Live as of Free / Pro / Team Enterprise (SiteEngine AI)
Art. 5 - Prohibited practices 2 Feb 2025 Clean - no violations Clean - no violations
GPAI deployer obligations (Ch. V) 2 Aug 2025 Upstream providers compliant (OpenAI, Anthropic) Upstream providers compliant
Art. 50 - Transparency 2 Aug 2026* Not directly applicable - no user-facing AI persona Expert personas require disclosure when user-facing
Annex III - High-risk obligations 2 Aug 2026* No Annex III category hit for developer-tool use Depends on customer deployment context
EU representative (Art. 2) Currently live Under review - EU user base triggering obligation Under review - EU enterprise customers

* These provisions are due to apply from 2 August 2026. A Digital Omnibus amendment reportedly proposed November 2025 may extend this deadline; we are monitoring the Official Journal and will update this page accordingly.

1. Legislative background and application timeline

Regulation (EU) 2024/1689 (the EU AI Act) was published in the Official Journal on 12 July 2024 and entered into force on 1 August 2024. It establishes a risk-based framework for AI systems placed on the EU market or put into service where the output affects persons in the EU. The Act applies regardless of where the provider is established.

The Act applies in staggered phases. As of April 2026, the following provisions are in force and fully enforceable:

The following provisions are not yet in force but are scheduled to apply from 2 August 2026 (subject to any amendment from the Digital Omnibus package):

The Act does not apply retrospectively to systems deployed before the relevant application date, but those systems must comply when modified in a way that constitutes a "substantial modification."

2. Product classification under Article 3(1)

The first question is whether Hydrate is an "AI system" as defined in Article 3(1):

"a machine-based system that is designed to operate with varying levels of autonomy and that may exhibit adaptiveness after deployment, and that, for explicit or implicit objectives, infers, from the input it receives, how to generate outputs such as predictions, content, recommendations, or decisions that can influence physical or virtual environments."

The operative word is infers. Recital 12 confirms that purely rule-based systems where operations are "defined solely by natural persons" are excluded. The EU AI Office's published guidelines (6 February 2025) distinguish classical statistical and rule-based approaches from machine-learning inference.

Hydrate contains components across this boundary. The analysis differs by component:

Assessment: Hydrate as a whole product is best characterised as an AI-assisted software tool. The Free tier in pure keyword-only mode (no API key configured, no embedding provider) is arguably outside the Article 3(1) definition entirely. With an embedding provider configured, it uses third-party AI systems and the tool overall is within scope. The Enterprise tier (SiteEngine AI) is unambiguously an AI system - it includes trained ONNX classifiers, LLM generation, and embedding-based retrieval throughout its pipeline.

For the purposes of this assessment, we treat Hydrate as an AI system and apply the full regulatory framework conservatively.

3. Prohibited practices (Article 5)

Article 5 is in force. The eight prohibited categories are assessed below. All eight are assessed as not applicable to any Hydrate tier.

Art. 5(1)(a) - Subliminal techniques
Not applicable
Hydrate does not influence human behaviour by techniques operating below conscious awareness. It injects factual context into an AI session. The user directs the AI tool; Hydrate does not target human psychology.
Art. 5(1)(b) - Exploitation of vulnerabilities
Not applicable
Hydrate is a developer tool. It does not target any population defined by age, disability, or social/economic situation. Its users are developers.
Art. 5(1)(c) - Social scoring by public authorities
Not applicable
Sedasoft is a private entity and Hydrate does not produce citizen scores for any public authority. Enterprise customers are prohibited from deploying the system for this purpose under the platform terms.
Art. 5(1)(d) - Real-time remote biometric ID in public spaces
Not applicable
Hydrate stores text facts. It performs no biometric identification of any kind, in real time or otherwise.
Art. 5(1)(e) - Biometric categorisation from sensitive attributes
Not applicable
Hydrate does not process biometric data. It does not infer race, political opinions, religious beliefs, sexual orientation, or other sensitive attributes from biometric signals.
Art. 5(1)(f) - Emotion recognition in workplace / education
Not applicable
This prohibition targets systems that infer the emotions of natural persons in workplace or educational contexts. It does not apply to systems that simulate emotional states for AI characters. The Enterprise emotion system (used in SiteEngine AI) models the emotional state of fictional AI personas, not the emotional state of human users. No inference of human emotion is performed. This distinction is explicit in the Act: see Recital 44 ("emotion recognition systems should be understood as AI systems that are used to identify or infer emotions or intentions of natural persons").
Art. 5(1)(g) - Predictive policing
Not applicable
Hydrate is not used for law enforcement purposes.
Art. 5(1)(h) - Scraping facial recognition databases
Not applicable
Hydrate does not process or store facial images. It stores text facts extracted from developer tool sessions.

Conclusion: No prohibited AI practice is present in any Hydrate tier. This assessment covers both current design and stated roadmap. Any future feature that touches the prohibited categories will require a fresh legal review before deployment to EU users.

4. Per-tier risk classification

4.1 Free tier

Minimal risk

The Free tier is a fully local, single-user tool. Data is stored exclusively in SQLite at ~/.hydrate/. No data leaves the user's machine except: (a) if the user configures an LLM API key for fact extraction (in which case conversation transcripts are sent to the user's chosen provider - OpenAI, Anthropic, or a local endpoint they control), and (b) if the user configures an embedding provider (in which case text is sent to the embedding API for vectorisation).

In its default installation without any API key configured, the Free tier uses only TF-IDF summarisation and SQLite FTS5 retrieval. Under the EU AI Office's February 2025 guidelines on the Article 3(1) definition, this configuration is arguably outside the AI system definition entirely. No inference is performed; all operations are classical statistics or deterministic text operations.

With an API key configured, the tool uses third-party AI systems for extraction and embedding. In that configuration:

  • Sedasoft is a downstream deployer of those GPAI models. The provider obligations (Chapter V) fall on OpenAI, Anthropic, or whichever model provider the user selects. Sedasoft's obligation is to ensure it does not use those models in a way that violates Article 5 or exploits a GPAI model for prohibited purposes. This assessment confirms no such violation.
  • The processing of user conversation data by a third-party API is governed by GDPR. The user configures their own API key and sends their own data to their chosen provider. Sedasoft is not a data processor in this flow on the Free tier.

Annex III: The Free tier does not fall within any of the eight high-risk categories. It is a developer productivity tool with no application in biometrics, critical infrastructure, education assessment, employment decisions, essential service access, law enforcement, migration, or justice.

Article 50: The Free tier does not interact directly with natural persons in the sense of Article 50(1). The UserPromptSubmit hook injects retrieved facts into a developer's existing Claude Code session. It does not present as a chatbot or interactive AI persona. The developer is fully aware they are operating a developer tool. No disclosure obligation applies.

4.2 Pro tier

Minimal risk

The Pro tier adds per-project backup and restore. A project's facts and session summaries can be exported to a passphrase-encrypted bundle (hydrate backup --project=x) and imported on another machine (hydrate restore x.hyd). The encryption is client-side; Sedasoft never receives or processes the bundle. No Sedasoft server or intermediary handles the exported data.

The risk classification is identical to the Free tier. The backup feature does not alter the AI system classification, the Annex III assessment, or the Article 50 analysis. The movement of data between machines is under the user's control and does not constitute a new "deployment" of an AI system on the market.

Stripe payment processing is used for subscription billing. Stripe is a payment processor and its operations are governed by PSD2 and financial services regulation, not the EU AI Act.

4.3 Team tier

Minimal risk

The Team tier enables multiple developers to share project canon across a small team. The synchronisation mechanism uses the team's existing private git repository. A senior developer pins canon rules, runs hydrate sync, commits the resulting CLAUDE.md block, and pushes to the team's private repo. Teammates pull the repo and receive the new canon at next session start.

Sedasoft never processes or receives team facts. The data path does not traverse Sedasoft's infrastructure. The git repository that hosts the shared canon is under the team's own control. This means the team (specifically the repository owner or administrator) is the data controller for any personal data that may be embedded in the canon under GDPR.

The Team tier dashboard includes manager controls allowing authorised team members to review and reject facts contributed by teammates. This human oversight mechanism is architecturally beneficial from an EU AI Act perspective: it corresponds to the kind of meaningful human control that the Act encourages in all AI systems regardless of risk tier, and that it mandates for high-risk systems.

Annex III: Team canon sharing does not constitute an employment management AI system within the meaning of Annex III, point 4. The canon system stores architectural decisions about code; it does not evaluate, monitor, or score employees. It does not influence employment decisions.

4.4 Enterprise tier (SiteEngine AI)

Minimal risk (current use cases) / requires customer assessment for Annex III deployments

The Enterprise tier is substantively different from the consumer tiers. It consists of the SiteEngine AI platform: a full RAG (Retrieval-Augmented Generation) pipeline deployed on-premise on customer infrastructure. The system is materially more complex and warrants a dedicated analysis below in Section 5. The risk classification is conditional on the use case context in which the customer deploys it.

In the primary use cases for which SiteEngine AI has been designed and benchmarked (AI character simulation for creative/entertainment applications, knowledge-base-augmented Q&A for developer productivity, internal document retrieval), the system falls within the minimal-risk category and no mandatory compliance obligations arise under the current framework.

If a customer deploys SiteEngine AI in a context that falls within an Annex III category (e.g., using it to assist with employment decisions, credit assessment, education outcome determination, or justice applications), the customer becomes responsible for the full high-risk AI system compliance path under Article 25. Sedasoft's Enterprise terms of service prohibit deployment in high-risk Annex III contexts without a separate compliance assessment and written agreement with Sedasoft.

5. SiteEngine AI - detailed assessment

SiteEngine AI is the backend platform powering the Enterprise tier. It is deployed on customer infrastructure (typically an on-premise server such as a Mac Mini in a development environment, or an enterprise-managed server in production). The system is not cloud-hosted by Sedasoft in the Enterprise tier; the customer controls the deployment environment.

5.1 System architecture relevant to the Act

SiteEngine AI consists of:

5.2 Annex III classification for SiteEngine AI

The eight Annex III categories are assessed for SiteEngine AI below. The assessment covers Sedasoft's own deployment and design. Where a customer could deploy the system in a way that triggers a category, that is noted as a customer responsibility.

Category 1 - Biometrics
Not applicable (Sedasoft)
SiteEngine AI does not process biometric data in any form. The user memory system stores text facts extracted from conversation transcripts. No biometric identification, biometric categorisation, or emotion recognition of natural persons is performed. Customer prohibition: deployment for biometric identification or emotion recognition of employees or students is prohibited without separate assessment and agreement.
Category 2 - Critical infrastructure
Not applicable
SiteEngine AI is not designed or marketed as a safety component of critical infrastructure. Customer prohibition: use as a safety-critical control system in infrastructure governed by existing EU harmonisation legislation is prohibited.
Category 3 - Education / vocational training
Customer assessment required for EdTech deployments
SiteEngine AI's primary education-adjacent use case is knowledge retrieval (a student asking an AI character questions about course material). This is arguably outside Category 3 because it does not determine access to educational institutions, evaluate learning outcomes that determine future education paths, or monitor behaviour during examinations. However, a customer who deploys the system specifically to generate assessments that influence student progression must conduct a Category 3 high-risk compliance assessment under Article 26.
Category 4 - Employment / worker management
Customer assessment required for HR deployments
SiteEngine AI's developer-productivity use case (Hydrate Free/Pro/Team) assists developers with their own work and does not evaluate them. The expert persona system is not an HR tool. However, a customer who deploys the RAG pipeline to screen CVs, evaluate worker performance, or allocate tasks in an algorithmic management context falls within Category 4 and must comply with Article 26 before deployment.
Category 5 - Essential services
Customer assessment required for fintech / insurance / social assistance
The RAG pipeline is not designed or intended for creditworthiness assessment, insurance risk scoring, or social benefit eligibility determination. A customer deploying it in such a context triggers Category 5 and must treat the system as high-risk under Article 26.
Category 6 - Law enforcement
Not applicable and prohibited
SiteEngine AI is not deployed or licensed for law enforcement purposes. Customer terms explicitly prohibit use by law enforcement agencies without prior agreement and appropriate compliance assessment.
Category 7 - Migration / asylum / border control
Not applicable
SiteEngine AI has no application in migration, asylum, or border management contexts.
Category 8 - Justice / democratic processes
Not applicable
SiteEngine AI is not deployed as a judicial research tool and is not used for electoral targeting at scale.

5.3 Article 6(3) derogation

Even where a system falls within an Annex III category, Article 6(3) provides that the system is not treated as high-risk if it:

The RAG pipeline in its typical knowledge-retrieval use (surfacing relevant information for a human to consider) is a strong candidate for the "narrow procedural task" and "preparatory to human assessment" derogations. However, reliance on Article 6(3) requires documented assessment; it is not automatic. Customers deploying in education, employment, or essential services contexts should document their Article 6(3) analysis explicitly.

6. Transparency obligations (Article 50)

Article 50 becomes applicable on 2 August 2026. Sedasoft is assessing compliance now in order to ensure all tiers are compliant on that date.

6.1 Article 50(1) - Disclosure of AI interaction

Article 50(1) requires providers of AI systems "intended to interact directly with natural persons" to ensure those persons are informed they are interacting with an AI system.

Free / Pro / Team tiers: The UserPromptSubmit hook injects retrieved context into a developer's Claude Code session. It does not interact directly with natural persons in the sense of Article 50(1); it interacts with the Claude Code process, which the developer operates fully knowingly. No disclosure obligation applies to these tiers under Article 50(1).

Enterprise (SiteEngine AI) - Expert personas: When a customer deploys an expert persona (e.g., a named fictional or historical character) as a conversational interface to end users, Article 50(1) requires that end users are informed they are interacting with an AI system. A natural person interacting with a chatbot presented as "Arthur C. Clarke" is not interacting with the actual Arthur C. Clarke; unless this is obvious from context (which it often is not - the character simulation is designed to be high-fidelity), disclosure is mandatory.

Sedasoft's compliance approach for Enterprise:

6.2 Article 50(2) - Synthetic and AI-generated content

Article 50(2) requires that AI-generated content that could be mistaken for authentic human content be marked with a machine-readable watermark or equivalent label.

The SiteEngine AI API returns generated text responses from LLM providers. The question of whether the generated content requires an Article 50(2) mark depends on the downstream application context. Sedasoft's API response format includes metadata indicating the content was AI-generated; customers are responsible for propagating this information in their user-facing interfaces. This is a deployer obligation under Article 25 and Article 50.

6.3 Article 50(3) - Emotion recognition

Article 50(3) requires disclosure when an AI system performs emotion recognition on a natural person. As noted in Section 3, the SiteEngine AI emotion system models AI character emotional states, not human user emotions. Article 50(3) is therefore not triggered by the emotion system. If a customer were to deploy a modified configuration that inferred human emotional states from user inputs, that would require disclosure and may constitute a prohibited practice under Article 5(1)(f) if used in a workplace or educational context.

7. General Purpose AI model obligations (Chapter V)

Chapter V is in force since 2 August 2025. It imposes obligations primarily on providers of GPAI models: companies that train and make available large foundation models (OpenAI, Anthropic, Mistral, Google, Meta, etc.). Sedasoft is not a GPAI model provider. Sedasoft builds products and services that use GPAI models via API.

As a downstream deployer of GPAI models, Sedasoft's obligations under Chapter V are limited. The key obligations that apply:

Sedasoft does not operate or fine-tune any foundation model. All language model inference is performed either via third-party API (OpenAI, Anthropic) or by a locally deployed open-weights model run on customer infrastructure (Qwen 2.5, Llama 3, Mistral, or equivalent). For locally deployed models, the customer is the operator of that inference infrastructure and bears the applicable obligations for their chosen open-weights model.

8. Territorial scope and EU representative

Article 2(1)(c) extends the Act's reach to providers established outside the EU where the output of their AI system is used in the EU. Sedasoft is incorporated in the United Kingdom, a third country following Brexit. Hydrate has users in EU member states. Accordingly, the Act applies to Sedasoft's operations.

EU representative obligation: Non-EU providers of AI systems used in the EU are required to appoint an EU representative (analogous to the GDPR Article 27 representative obligation). This representative acts as the point of contact for national competent authorities in the EU. Sedasoft is currently assessing whether its EU user base triggers this obligation and is taking steps to appoint an EU representative in a member state with competent AI Act authority.

UK regulation of AI is currently governed by the UK Government's pro-innovation principles-based framework (AI Regulation White Paper, 2023) rather than a binding EU-equivalent regulation. UK-specific compliance requirements are not within the scope of this document but are assessed separately.

9. Interface with GDPR

The EU AI Act does not replace GDPR. Where AI systems process personal data, both frameworks apply. Key intersections for Hydrate:

9.1 Article 22 GDPR - Automated decision-making

GDPR Article 22 applies to "solely automated" decisions that produce "legal or similarly significant effects" on natural persons. The Hydrate memory and retrieval system does not produce such decisions. The output of the retrieval pipeline is a set of facts injected into context; the LLM then generates a response. The LLM's response is not "solely automated" in the Article 22 sense for most developer tool use cases (a developer interacts with the AI tool and exercises their own judgment over the output). Article 22 does not appear to be triggered by the standard use cases.

For Enterprise deployments where the SiteEngine AI output influences decisions about natural persons (e.g., a lending decision-support tool, an HR screening tool), the customer must assess Article 22 obligations including the right to human review.

9.2 Data controller and processor roles

9.3 Special category data (Article 9 GDPR)

Hydrate's fact extraction pipeline applies an eligibility classifier that filters out highly personal, sensitive, or special-category content before storage. Facts containing health data, political opinions, religious beliefs, or other Article 9 categories are rejected at the extraction stage. This filter is a default safeguard, not a guarantee: if a user explicitly inputs special-category data as a fact via the CLI or API, the filter may not catch all instances. Customers with specific special-category data requirements should configure additional filtering or prohibit relevant inputs in their usage policies.

9.4 User memory - data subject rights

The SiteEngine AI user memory system provides built-in support for GDPR data subject rights:

10. What Sedasoft does and commits to

This section summarises the compliance measures Sedasoft has implemented or is implementing, by obligation category.

Article 5 - Prohibited practices
All eight prohibited categories assessed and confirmed absent from design, implementation, and roadmap. Any future feature touching a prohibited category requires legal review before deployment to EU users. Policy documented in product development guidelines.
Article 50(1) - AI disclosure
Enterprise terms of service require customers to implement end-user AI disclosure for any user-facing persona deployment. API response headers include X-AI-System: true. Reference implementation provided in integration docs. Assessed as compliant from August 2026.
GPAI upstream verification
OpenAI and Anthropic Chapter V documentation confirmed (technical documentation, copyright compliance summaries, usage policies). Verification recorded in compliance file. Quarterly review cadence established.
Technical documentation
SiteEngine AI API documentation, system architecture description, data flows, intended and prohibited use cases, and performance limitations are maintained in the public documentation and provided to Enterprise customers. This forms the basis of any Article 13 technical documentation obligation that may apply from August 2026.
EU representative
Assessment in progress. Appointment expected before August 2026. Contact [email protected] for current status.
Data Processing Agreements
Enterprise DPA available as Schedule 2 of the Enterprise agreement. GDPR-compliant provisions covering processor obligations, sub-processor list, data retention, and cross-border transfer mechanisms.
Audit logging
Enterprise tier includes structured audit logs for fact writes, canon promotions, and sync events. Exportable as JSON. Retained for 90 days by default; configurable per customer requirements.
GDPR data subject rights
API endpoints for access, portability, and erasure are live on all SiteEngine AI deployments. Free / Pro / Team: data stays on user machine; user controls deletion directly via hydrate facts forget or filesystem deletion of ~/.hydrate/.

11. Obligations that fall on Enterprise customers

Enterprise customers who deploy SiteEngine AI bear the following EU AI Act obligations in their own right. These are not delegated by Sedasoft; they arise from the customer's role as deployer (and potentially provider, if they substantially modify the system or release it under their own name) under the Act.

12. Upcoming obligations - August 2026

The high-risk AI system chapter (Articles 8-49) and Article 50 transparency obligations are scheduled to apply from 2 August 2026. For Sedasoft, the practical steps required before that date are:

We will publish an updated version of this assessment when any of the above deadlines pass or when material guidance is issued by the EU AI Office.

13. Questions and compliance contact

For EU AI Act compliance questions relating to an Enterprise deployment, a procurement assessment, or this document:

This assessment is Sedasoft's good-faith interpretation of Regulation (EU) 2024/1689 as it applies to the products and services described. It does not constitute legal advice. Enterprise customers with specific regulatory requirements should obtain independent legal advice from qualified counsel in their jurisdiction.

Version 1.0 · Reviewed 2026-04-24 · This document will be updated when material guidance is issued or when obligations change. Next scheduled review: 2026-07-01 (ahead of August 2026 application date for Annex III and Article 50).