AffixIOAFFIXIO
Contact

Enforcement calendar

Regulatory deadlines

A single calendar of enforcement dates that matter for verification infrastructure buyers: UK Online Safety Act age assurance, EU AI Act automatic logging, NIS2 audit evidence, and US federal post-quantum procurement milestones. Updated 12 July 2026.

Online Safety ActEU AI ActNIS2PQC 2030
5Key dates
3Jurisdictions
Jul 2026Last reviewed

At a glance

Updated
12 July 2026
UK focus
Online Safety Act HEAA enforcement
EU focus
AI Act Art. 12 logging by Dec 2027
US focus
PQC contractor compliance by 2030

Regulatory deadlines for verification are the enforcement dates when age assurance, AI logging, NIS2 evidence, or post-quantum procurement requirements become contractual or statutory obligations for infrastructure buyers.

Timeline

Enforcement dates

Procurement and compliance teams need one view of when verification architecture choices become mandatory. Each card links to a buyer guide or interactive tool.

UK Online Safety Act: children's safety duties

Part 3 user-to-user and search services likely accessed by children must implement proportionate measures including highly effective age assurance where required. Compliance guide · Scope checker

Ofcom statutory report on age assurance

Industry effectiveness review expected. Platforms should document HEAA method against Ofcom four criteria. Age assurance scorer · Age check product

EU AI Act Article 12 (Annex III stand-alone)

High-risk AI systems must support automatic, tamper-evident event logging. Article 12 guide · Readiness checker

EU AI Act embedded high-risk systems

Logging obligations extend to AI embedded in regulated products. Plan proof-not-log audit now. Product page · Compare vs SIEM

US federal PQC contractor compliance

FAR rule trajectory requires NIST-approved PQC on contractor systems. PQC migration guide · PQC verifier

How to use this calendar

From dates to engineering epics

Assign internal owners, link each date to a verification boundary, and reproduce evidence before procurement gates.

  1. Map which regulations touch your verification boundaries: age, AI logging, critical infrastructure, or long-lived proofs.
  2. Assign internal owners for each date and link to engineering epics with acceptance criteria.
  3. Reproduce sandbox flows and export Merkle inclusion proofs from public tools.
  4. Subscribe to connector updates and docs changelog for material changes.
  5. Share planning output with legal; this page supports technical due diligence, not statutory interpretation.

FAQ

Frequently asked questions

Is this legal advice?

No. This calendar summarises public regulatory timelines for engineering and procurement planning. Confirm obligations with your counsel.

How often is this page updated?

We review dates when regulators publish new guidance. Last review: 12 July 2026.

Where is the plain-text index?

See compliance-index.txt and glossary.txt on this site for LLM crawlers.

Which deadline is most urgent for age assurance?

Part 3 and Part 5 Online Safety Act duties are live. Ofcom's July 2026 effectiveness report is the next industry milestone.

Does Article 12 apply to our chatbot?

Only if classified as high-risk under Annex III. Confirm classification with counsel.

How do we prove readiness before audit?

Reproduce sandbox flows and export Merkle inclusion proofs from public tools.

Discovery

Continue your review

Reproduce evidence before procurement

Call live verify endpoints, score your readiness, and export Merkle proofs from public tools.