ArticleProof

EU AI Act Article 50 · effective 2 Aug 2026

Prove your AI disclosed.

A timestamped event log and a one-click Article 50 audit-pack PDF — the verifiable record SaaS teams shipping AI hand to a regulator.

Effective 2 Aug 2026 · €15M / 3% turnover penalty per Art. 99(4)


How it works

01

Drop the script tag.

One line of HTML on your site. Shadow-DOM widget, 5KB gzipped, no framework dependency.

02

Capture disclosure events.

Every render, ack, dismiss, synthetic output, and deepfake label is timestamped server-side and stored so you cannot edit or delete it after the fact.

03

Export the audit pack.

One click in the dashboard. Returns a deterministic PDF — re-running the export produces byte-identical output.


Source regulation

What Article 50 actually requires.

Providers and deployers of certain AI systems must disclose AI use to natural persons, mark synthetic outputs, and label deepfakes — in a clear, accessible, machine-readable way, no later than the first interaction.

Read the full Article 50 page →
Providers shall ensure that AI systems intended to interact directly with natural persons are designed and developed in such a way that the natural persons concerned are informed that they are interacting with an AI system, unless this is obvious.
Regulation (EU) 2024/1689, Art. 50(1)·eur-lex.europa.eu
Providers of AI systems generating synthetic audio, image, video or text content shall ensure that the outputs of the AI system are marked in a machine-readable format and detectable as artificially generated or manipulated.
Regulation (EU) 2024/1689, Art. 50(2)·eur-lex.europa.eu
Deployers of an AI system that generates or manipulates image, audio or video content constituting a deep fake, shall disclose that the content has been artificially generated or manipulated.
Regulation (EU) 2024/1689, Art. 50(4) ¶1·eur-lex.europa.eu

What the widget logs

Every disclosure becomes evidence.

The widget posts an event for each render, ack, dismiss, synthetic-output marking, and deepfake label. Raw IPs are never stored — only a salted sha256 hash and a coarse-truncated form for abuse signals.

The audit pack groups statutory Article 50 obligations separately from best-practice indicators and includes a SHA-256 hash over the full event log, so the pack can be verified against the underlying records.

POST /api/events · 202 Acceptedarticleproof.app
type
render
sessionId
sess_h7Qm3Vp...n2Bk
pageUrl
https://acme.com/chat
timestamp
2026-06-01T14:22:09.183Z
aiModel
gpt-4o
provider
openai
jurisdiction
eu
ipHash
a3f2c91d…b4e7a5c9
ipTruncated
203.0.113.0/24