The AI Act divides AI systems into four risk levels: unacceptable risk (prohibited systems), high risk, limited risk, and minimal risk. High-risk systems are those used in contexts with significant impact on people's lives and rights — such as recruitment, credit scoring, medical diagnostics, law enforcement, and critical infrastructure. If your organisation deploys or implements such systems, stricter requirements apply to documentation, risk assessment, transparency, and human oversight. NorthGRC supports the classification of your AI systems and helps establish the governance structure required for the high-risk category.