Part 3 user-to-user and search services likely accessed by children must implement proportionate measures including highly effective age assurance where required. Compliance guide · Scope checker
AFFIXIO
Enforcement calendar
Regulatory deadlines
A single calendar of enforcement dates that matter for verification infrastructure buyers: UK Online Safety Act age assurance, EU AI Act automatic logging, NIS2 audit evidence, and US federal post-quantum procurement milestones. Updated 12 July 2026.
At a glance
- Updated
- 12 July 2026
- UK focus
- Online Safety Act HEAA enforcement
- EU focus
- AI Act Art. 12 logging by Dec 2027
- US focus
- PQC contractor compliance by 2030
- Plain text
- compliance-index.txt
Regulatory deadlines for verification are the enforcement dates when age assurance, AI logging, NIS2 evidence, or post-quantum procurement requirements become contractual or statutory obligations for infrastructure buyers.
Timeline
Enforcement dates
Procurement and compliance teams need one view of when verification architecture choices become mandatory. Each card links to a buyer guide or interactive tool.
Industry effectiveness review expected. Platforms should document HEAA method against Ofcom four criteria. Age assurance scorer · Age check product
High-risk AI systems must support automatic, tamper-evident event logging. Article 12 guide · Readiness checker
Logging obligations extend to AI embedded in regulated products. Plan proof-not-log audit now. Product page · Compare vs SIEM
FAR rule trajectory requires NIST-approved PQC on contractor systems. PQC migration guide · PQC verifier
How to use this calendar
From dates to engineering epics
Assign internal owners, link each date to a verification boundary, and reproduce evidence before procurement gates.
- Map which regulations touch your verification boundaries: age, AI logging, critical infrastructure, or long-lived proofs.
- Assign internal owners for each date and link to engineering epics with acceptance criteria.
- Reproduce sandbox flows and export Merkle inclusion proofs from public tools.
- Subscribe to connector updates and docs changelog for material changes.
- Share planning output with legal; this page supports technical due diligence, not statutory interpretation.
Buyer guides
Compliance hubs linked to these dates
Online Safety Act
HEAA criteria, Part 3 vs Part 5, privacy-preserving age paths.
EU AI Act Art. 12
Automatic logging design, tamper-evident audit, deployer retention.
PQC migration
Procurement language, ML-DSA attestation, harvest-now-decrypt-later risk.
NIS2 verification
Incident reconstruction with cryptographic audit evidence.
Shadow AI agents
Authorisation gates for unsanctioned autonomous actions.
Full compliance hub
All guides, tools, and plain-text indexes on one page.
FAQ
Frequently asked questions
Is this legal advice?
No. This calendar summarises public regulatory timelines for engineering and procurement planning. Confirm obligations with your counsel.
How often is this page updated?
We review dates when regulators publish new guidance. Last review: 12 July 2026.
Where is the plain-text index?
See compliance-index.txt and glossary.txt on this site for LLM crawlers.
Which deadline is most urgent for age assurance?
Part 3 and Part 5 Online Safety Act duties are live. Ofcom's July 2026 effectiveness report is the next industry milestone.
Does Article 12 apply to our chatbot?
Only if classified as high-risk under Annex III. Confirm classification with counsel.
How do we prove readiness before audit?
Reproduce sandbox flows and export Merkle inclusion proofs from public tools.
Discovery
Continue your review
Compliance and deadlines
Evidence and trust
Reproduce evidence before procurement
Call live verify endpoints, score your readiness, and export Merkle proofs from public tools.