EU AI Act · Article 12 + 19 · Aug 2 2026

Article 12 logging.
Built in. Self-hosted.

89 days until €15M / 3% global revenue becomes a real number. Auto-generated logs that satisfy EU AI Act Article 12 + 19, 6-month retention by default. Free for self-hosted teams under 250 employees.

See an Article 12 log →View on GitHub

Auch auf Deutsch verfügbar — auf Anfrage. · Disponible en français — sur demande.

why SMBs are the squeezed middle

Big 4 won't touch you. Solo dev tools won't survive an audit.

IBM / Accenture / KPMG

Enterprise-priced engagements assume €200k+ budgets and an in-house compliance team. Off the table for 50-500 person shops.

US-only AI governance SaaS

No EU localisation, no on-prem option, GDPR transfer questions. Your DPO will say no on day one.

Hand-rolled spreadsheets

Article 12 requires automatic logging "throughout the lifetime" of the system. A spreadsheet is not a logging system. The Notified Body will say so.

what AttestProto provides

Article 12 logs + Article 19 conformity evidence, signed and exportable.

# every decision your high-risk AI system makes $ attestproto sign \ --agent recruitment-screen-v2 \ --tool decision.shortlist \ --input '{"candidate_id":"...","model_version":"...","factors":[...]}' \ --out attestation.json # at audit time — export the Article 12 log bundle $ attestproto export \ --rule eu-ai-act \ --from 2026-04-01 --to 2026-06-30 \ --out conformity-bundle-q2.zip # Article 12 § 1-3 logs · Article 19 evidence package · DPIA-ready
EU AI Act, Article 12 § 1High-risk AI systems shall technically allow for the automatic recording of events ('logs') over the duration of the lifetime of the system.
EU AI Act, Article 19 § 1Providers of high-risk AI systems shall ensure that their system undergoes the relevant conformity assessment procedure prior to its placing on the market.
try it

Sign one Article 12 log entry in your browser.

No install, no account. The keypair is generated client-side and never leaves this page. Same code path as the production CLI.

Generates an Ed25519 keypair in your browser. Nothing leaves this page.
SMB-friendly

Free for organisations under 250 staff. MIT-licensed. Hosted in your EU data centre, not ours.

GDPR-native

Self-hosted. Personal data never enters a US-controlled cloud. DPO sign-off in minutes, not months.

Localisation

Article citations and rule mappings translated to DE, FR (more on request). UI in English; documentation localised.

Notified Body export

The conformity-assessment bundle is a single signed archive. Drop it into your Notified Body submission unchanged.

Stand up Article 12 logging this week.

Reference deployment in < 1 day. We'll review your conformity-assessment plan with you. Free for SMBs.

Email Lex →Other use cases