[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhdDnexFM3Mx4H9AyjtZ0q9w8QKUh3VxG-Eu2KbPigGw":3,"$fDuOfbrGklFg9DNstLQj01v77JKgm8YTNP3W1V3nd5U4":57,"white_papers":222},{"tableOfContents":4,"markDownContent":5,"htmlContent":6,"metaTitle":7,"metaDescription":8,"wordCount":9,"readTime":10,"title":7,"nbDownloads":11,"excerpt":12,"lang":13,"url":14,"intro":12,"featured":4,"state":15,"author":16,"authorId":17,"datePublication":21,"dateCreation":22,"dateUpdate":23,"mainCategory":24,"categories":40,"metaDatas":46,"imageUrl":47,"imageThumbUrls":48,"id":56},false,"On 16 June 2026, the European Parliament cast its final vote approving the Digital Omnibus on AI, a package of targeted amendments to the EU AI Act. The Council is expected to formally adopt the text on 29 June 2026, after which it will be published in the Official Journal. For organisations operating in the EU AI space, the timetable has been restructured but not the framework itself.\n\nFormal publication in the Official Journal is expected following Council adoption on 29 June 2026. We will continue to monitor and report on implementing developments.\n\n**A recalibrated timeline**\n\nThe core architecture of the AI Act, which includes its risk-based classification, prohibited practices, and general-purpose AI rules, remains unchanged. Two categories of high-risk AI systems under the Act will now face extended application dates.\n\n- High-risk AI systems listed in Annex III and deployed on a standalone basis will be subject to full compliance requirements as of 2 December 2027, rather than 2 August 2026. That is a seventeen-month extension. \n- High-risk AI systems embedded as safety components in products regulated under existing EU safety legislation (Annex I) will not face those requirements until 2 August 2028 — twelve months later than the previous deadline of 2 August 2027.\n\n{% button href=\"https://www.dastra.eu/en/blog/the-ai-act-high-risk-ai-draft-guidelines-first-reactions-key-takeaways/60047\" text=\"To understand the AI high-risk system classification, read here\" target=\"\\_blank\" role=\"button\" class=\"btn btn-primary\" %}\n\nFor Article 50 transparency and watermarking obligations, the picture is more nuanced : AI systems already on the market before 2 August 2026 benefit from an extended deadline of 2 December 2026. For all other systems, the 2 August 2026 date continues to apply. \n\nThis distinction matters & renders the mapping of which systems are already deployed, and when, an important prerequisite for knowing which deadline actually applies.\n\n**Prohibition on AI-generated abuse content**\n\nBeyond calendar adjustments, the Omnibus introduces a substantive addition to the list of prohibited AI practices under Article 5. \\\n\\\nAI systems designed to generate non-consensual intimate imagery (so-called nudification tools or child sexual abuse material) are now explicitly banned. \\\n\\\nThe prohibition covers both providers placing such systems on the EU market and deployers using them for those purposes. Compliance with this new prohibition is required by 2 December 2026.\n\n**Structural clarifications worth noting**\n\nThe package also addresses several points of regulatory friction that practitioners have raised since the AI Act's adoption. \\\n\\\nOverlapping obligations with existing sectoral safety legislation particularly in the machinery sector are being streamlined to avoid duplication. The concept of \"safety component\" receives further clarification, which will be relevant to product manufacturers navigating the boundary between product safety law and AI-specific requirements.\n\nOn data processing, the amendments permit the use of personal data, subject to appropriate safeguards, strictly for the purpose of detecting and correcting bias in AI systems. \\\n\\\nSME-style flexibilities are extended to small mid-caps. \\\n\\\nEnforcement of general-purpose AI model obligations is also being centralised at the level of the EU AI Office, which will have operational implications for how companies engage with regulators on GPAI matters.\n\n**Practical takeaway**\n\nThe Omnibus buys meaningful time for organisations working to align high-risk AI systems with the Act's technical requirements; requirements that, in many cases, depend on harmonised standards not yet finalised. That rationale is legitimate. \n\nHowever, 2 August 2026 remains a live and proximate compliance date for transparency obligations under Article 50. \n\nThe regulatory clock has not been stopped, rather it has been reset for some systems and left running for others.\n\nFor legal counsel, DPOs and compliance leads, the immediate priority remains the same: complete the inventory of AI systems in scope, determine which classification and which deadline applies to each, and sequence remediation accordingly. \\\n\\\nFor executive teams, the Omnibus offers breathing room on the most resource-intensive high-risk obligations, but it does not remove the need to have a documented AI governance posture in place well before the summer.","\u003Cp>On 16 June 2026, the European Parliament cast its final vote approving the Digital Omnibus on AI, a package of targeted amendments to the EU AI Act. The Council is expected to formally adopt the text on 29 June 2026, after which it will be published in the Official Journal. For organisations operating in the EU AI space, the timetable has been restructured but not the framework itself.\u003C/p>\n\u003Cp>Formal publication in the Official Journal is expected following Council adoption on 29 June 2026. We will continue to monitor and report on implementing developments.\u003C/p>\n\u003Cp>\u003Cstrong>A recalibrated timeline\u003C/strong>\u003C/p>\n\u003Cp>The core architecture of the AI Act, which includes its risk-based classification, prohibited practices, and general-purpose AI rules, remains unchanged. Two categories of high-risk AI systems under the Act will now face extended application dates.\u003C/p>\n\u003Cul>\n\u003Cli>High-risk AI systems listed in Annex III and deployed on a standalone basis will be subject to full compliance requirements as of 2 December 2027, rather than 2 August 2026. That is a seventeen-month extension.\u003C/li>\n\u003Cli>High-risk AI systems embedded as safety components in products regulated under existing EU safety legislation (Annex I) will not face those requirements until 2 August 2028 — twelve months later than the previous deadline of 2 August 2027.\u003C/li>\n\u003C/ul>\n\u003Cdiv class=\"content-btn-container\">\u003Ca href=\"https://www.dastra.eu/en/blog/the-ai-act-high-risk-ai-draft-guidelines-first-reactions-key-takeaways/60047\" target=\"_blank\" role=\"button\" class=\"btn btn-primary\">To understand the AI high-risk system classification, read here\u003C/a>\u003C/div>\n\u003Cp>For Article 50 transparency and watermarking obligations, the picture is more nuanced : AI systems already on the market before 2 August 2026 benefit from an extended deadline of 2 December 2026. For all other systems, the 2 August 2026 date continues to apply.\u003C/p>\n\u003Cp>This distinction matters & renders the mapping of which systems are already deployed, and when, an important prerequisite for knowing which deadline actually applies.\u003C/p>\n\u003Cp>\u003Cstrong>Prohibition on AI-generated abuse content\u003C/strong>\u003C/p>\n\u003Cp>Beyond calendar adjustments, the Omnibus introduces a substantive addition to the list of prohibited AI practices under Article 5. \u003Cbr />\n\u003Cbr />\nAI systems designed to generate non-consensual intimate imagery (so-called nudification tools or child sexual abuse material) are now explicitly banned. \u003Cbr />\n\u003Cbr />\nThe prohibition covers both providers placing such systems on the EU market and deployers using them for those purposes. Compliance with this new prohibition is required by 2 December 2026.\u003C/p>\n\u003Cp>\u003Cstrong>Structural clarifications worth noting\u003C/strong>\u003C/p>\n\u003Cp>The package also addresses several points of regulatory friction that practitioners have raised since the AI Act's adoption. \u003Cbr />\n\u003Cbr />\nOverlapping obligations with existing sectoral safety legislation particularly in the machinery sector are being streamlined to avoid duplication. The concept of \"safety component\" receives further clarification, which will be relevant to product manufacturers navigating the boundary between product safety law and AI-specific requirements.\u003C/p>\n\u003Cp>On data processing, the amendments permit the use of personal data, subject to appropriate safeguards, strictly for the purpose of detecting and correcting bias in AI systems. \u003Cbr />\n\u003Cbr />\nSME-style flexibilities are extended to small mid-caps. \u003Cbr />\n\u003Cbr />\nEnforcement of general-purpose AI model obligations is also being centralised at the level of the EU AI Office, which will have operational implications for how companies engage with regulators on GPAI matters.\u003C/p>\n\u003Cp>\u003Cstrong>Practical takeaway\u003C/strong>\u003C/p>\n\u003Cp>The Omnibus buys meaningful time for organisations working to align high-risk AI systems with the Act's technical requirements; requirements that, in many cases, depend on harmonised standards not yet finalised. That rationale is legitimate.\u003C/p>\n\u003Cp>However, 2 August 2026 remains a live and proximate compliance date for transparency obligations under Article 50.\u003C/p>\n\u003Cp>The regulatory clock has not been stopped, rather it has been reset for some systems and left running for others.\u003C/p>\n\u003Cp>For legal counsel, DPOs and compliance leads, the immediate priority remains the same: complete the inventory of AI systems in scope, determine which classification and which deadline applies to each, and sequence remediation accordingly. \u003Cbr />\n\u003Cbr />\nFor executive teams, the Omnibus offers breathing room on the most resource-intensive high-risk obligations, but it does not remove the need to have a documented AI governance posture in place well before the summer.\u003C/p>\n","Digital Omnibus on AI : Parliament Votes, Deadlines Redrawn","The EU Parliament approved the Digital Omnibus on 16 June 2026. Key AI Act deadlines move but August 2026 obligations remain. Here is what changes or not.",646,4,0,null,"en","digital-omnibus-on-ai-parliament-votes-deadlines-redrawn","Published",{"id":17,"displayName":18,"avatarUrl":19,"bio":12,"blogUrl":12,"color":12,"userId":17,"creationDate":20},20352,"Leïla Sayssa","https://static.dastra.eu/tenant-3/avatar/20352/TDYeY3C8Rz1lLE/dpo-avatar-h01-150.png","2025-03-03T11:08:22","2026-06-17T14:27:00","2026-06-17T14:27:45.2024977","2026-06-17T16:03:52.2033213",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":30},2,"Blog","A list of curated articles provided by the community","blog","#28449a",[31,34,37],{"lang":32,"name":26,"description":33},"fr","Une liste d'articles rédigés par la communauté",{"lang":35,"name":26,"description":36},"es","Una lista de artículos escritos por la comunidad",{"lang":38,"name":26,"description":39},"de","Eine Liste von Artikeln, die von der Community verfasst wurden",[41],{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":42},[43,44,45],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},[],"https://static.dastra.eu/content/88486bac-f4d6-48d0-8143-2d8ee7d6bef0/visuel-article-3-original.jpg",[49,50,51,52,53,54,55],"https://static.dastra.eu/content/88486bac-f4d6-48d0-8143-2d8ee7d6bef0/visuel-article-3-1000.webp","https://static.dastra.eu/content/88486bac-f4d6-48d0-8143-2d8ee7d6bef0/visuel-article-3.webp","https://static.dastra.eu/content/88486bac-f4d6-48d0-8143-2d8ee7d6bef0/visuel-article-3-1500.webp","https://static.dastra.eu/content/88486bac-f4d6-48d0-8143-2d8ee7d6bef0/visuel-article-3-800.webp","https://static.dastra.eu/content/88486bac-f4d6-48d0-8143-2d8ee7d6bef0/visuel-article-3-600.webp","https://static.dastra.eu/content/88486bac-f4d6-48d0-8143-2d8ee7d6bef0/visuel-article-3-300.webp","https://static.dastra.eu/content/88486bac-f4d6-48d0-8143-2d8ee7d6bef0/visuel-article-3-100.webp",60108,{"total":58,"items":59,"parent":217},8,[60,81,102,123,145,166,184,200],{"id":61,"name":62,"description":63,"url":64,"color":65,"parentId":25,"count":12,"imageUrl":12,"parent":66,"order":58,"translations":71},20,"Inside Dastra","Go behind the scenes at Dastra: company news, culture, events, team highlights, and the people driving our GDPR solution.","dastra-life","#e3cf68",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":67},[68,69,70],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},[72,75,78],{"lang":32,"name":73,"description":74},"Vie de Dastra","Plongez dans les coulisses de Dastra : actualités internes, culture d’entreprise, événements, équipes et engagements. Découvrez qui se cache derrière notre solution RGPD.",{"lang":38,"name":76,"description":77},"Innerhalb von Dastra","Eintauchen in das Unternehmen",{"lang":35,"name":79,"description":80},"Dentro de Dastra","Sumérjase en la empresa",{"id":82,"name":83,"description":84,"url":85,"color":86,"parentId":25,"count":12,"imageUrl":12,"parent":87,"order":92,"translations":93},69,"Expertise","Gain insights from our experts on GDPR compliance, data protection, and privacy challenges. In-depth articles, professional analysis, and real-world best practices.","indepth","#000000",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":88},[89,90,91],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},7,[94,96,99],{"lang":32,"name":83,"description":95},"Bénéficiez des conseils de nos experts sur la conformité RGPD, la protection des données et les enjeux privacy. Articles de fond, analyses et retours d’expérience métier.",{"lang":38,"name":97,"description":98},"Fachwissen","Entdecken Sie die Artikel unserer DSGVO-Experten",{"lang":35,"name":100,"description":101},"Experiencia","Descubre los artículos de nuestros expertos en Privacy",{"id":10,"name":103,"description":104,"url":105,"color":106,"parentId":25,"count":12,"imageUrl":12,"parent":107,"order":112,"translations":113},"Use cases","Discover how companies use Dastra to manage their GDPR compliance. Testimonials, use cases, and real-world integrations of our privacy management solution.","case-studies","#b61b9c",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":108},[109,110,111],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},6,[114,117,120],{"lang":32,"name":115,"description":116},"Retours d'expérience","Découvrez comment les entreprises utilisent Dastra pour piloter leur conformité RGPD. Témoignages, cas d’usage et intégrations concrètes de notre solution de privacy management.",{"lang":38,"name":118,"description":119},"Case Studies","Entdecken Sie die Erfahrungsberichte unserer Kunden",{"lang":35,"name":121,"description":122},"Casos prácticos","Descubra los testimonios de nuestros clientes",{"id":124,"name":125,"description":126,"url":127,"color":128,"parentId":25,"count":12,"imageUrl":12,"parent":129,"order":134,"translations":135},10,"Release notes","Keep up with the latest features of Dastra: product updates, new functionalities, and improvements to our GDPR compliance and data management platform.","release","#8c316a",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":130},[131,132,133],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},5,[136,139,142],{"lang":32,"name":137,"description":138},"Notes de version","Restez informé(e) des dernières fonctionnalités de Dastra : mises à jour, évolutions produit et améliorations de notre solution de conformité RGPD et de gestion des données personnelles.",{"lang":38,"name":140,"description":141},"Veröffentlichungen","Alle Versionshinweise und Funktionen von Dastra",{"lang":35,"name":143,"description":144},"Lanzamientos","Todas las notas de la versión e información sobre las funciones de Dastra",{"id":146,"name":147,"description":148,"url":149,"color":150,"parentId":25,"count":12,"imageUrl":12,"parent":151,"order":10,"translations":156},9,"News","Stay up to date with the latest news from data protection authorities: decisions, fines, guidelines, and regulatory trends in GDPR and privacy.","news","#1676ca",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":152},[153,154,155],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},[157,160,163],{"lang":32,"name":158,"description":159},"Actualités","Suivez les dernières actualités des autorités de protection des données (CNIL, EDPS, etc.) : décisions, sanctions, lignes directrices et tendances réglementaires en matière de RGPD et de privacy.",{"lang":35,"name":161,"description":162},"Actualidad","Todos los artículos relativos a las autoridades de protección de datos",{"lang":38,"name":164,"description":165},"Nachrichten","Alle Artikel mit Bezug zu Datenschutzbehörden",{"id":167,"name":168,"description":169,"url":170,"color":86,"parentId":25,"count":12,"imageUrl":12,"parent":171,"order":176,"translations":177},221,"AI Governance","Best practices, regulatory frameworks and real-world insights to manage AI responsibly and in compliance with the AI Act.","ai-governance",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":172},[173,174,175],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},3,[178,181],{"lang":32,"name":179,"description":180},"Gouvernance de l'IA","Bonnes pratiques, cadres réglementaires et retours d'expérience pour piloter l'IA de façon responsable et conforme à l'AI Act.",{"lang":38,"name":182,"description":183},"KI-Governance","Best Practices, regulatorische Rahmenbedingungen und Praxiserfahrungen für einen verantwortungsvollen KI-Einsatz im Einklang mit dem AI Act.",{"id":185,"name":186,"description":187,"url":188,"color":86,"parentId":25,"count":12,"imageUrl":12,"parent":189,"order":25,"translations":194},220,"Compliance","Regulatory news, practical guides and analysis to keep your organization compliant with the GDPR and beyond.","compliance",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":190},[191,192,193],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},[195,198],{"lang":32,"name":196,"description":197},"Conformité","Actualités réglementaires, guides pratiques et analyses pour maintenir votre organisation en conformité RGPD et au-delà.",{"lang":38,"name":186,"description":199},"Regulatorische Neuigkeiten, Praxisleitfäden und Analysen, um Ihre Organisation DSGVO-konform und darüber hinaus aufzustellen.",{"id":201,"name":202,"description":203,"url":204,"color":86,"parentId":25,"count":12,"imageUrl":12,"parent":205,"order":210,"translations":211},219,"Privacy","Principles, techniques and trends in personal data protection — from privacy by design to data subject rights.","privacy",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":206},[207,208,209],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},1,[212,214],{"lang":32,"name":202,"description":213},"Principes, techniques et tendances autour de la protection des données personnelles — de la privacy by design aux droits des personnes.",{"lang":38,"name":215,"description":216},"Datenschutz","Grundsätze, Methoden und Trends zum Schutz personenbezogener Daten — von Privacy by Design bis zu Betroffenenrechten.",{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":218},[219,220,221],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},{"items":223,"total":260,"size":210,"page":210},[224],{"title":225,"nbDownloads":58,"excerpt":12,"lang":13,"url":226,"intro":227,"featured":4,"state":15,"author":228,"authorId":17,"datePublication":229,"dateCreation":230,"dateUpdate":231,"mainCategory":232,"categories":238,"metaDatas":246,"imageUrl":250,"imageThumbUrls":251,"id":259},"Your Checklist to Multi-State Privacy Impact Assessments ","your-checklist-to-multi-state-privacy-impact-assessment-compliance","Master multi-state Privacy Impact Assessments by downloading this checklist.",{"id":17,"displayName":18,"avatarUrl":19,"bio":12,"blogUrl":12,"color":12,"userId":17,"creationDate":20},"2026-02-23T10:07:00","2026-02-23T10:07:01.6114712","2026-02-24T15:38:38.0037058",{"id":233,"name":234,"description":12,"url":235,"color":236,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":176,"translations":237},70,"Livre blanc","white-papers","#1795d3",[],[239,244],{"id":25,"name":26,"description":27,"url":28,"color":29,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":11,"translations":240},[241,242,243],{"lang":32,"name":26,"description":33},{"lang":35,"name":26,"description":36},{"lang":38,"name":26,"description":39},{"id":233,"name":234,"description":12,"url":235,"color":236,"parentId":12,"count":12,"imageUrl":12,"parent":12,"order":176,"translations":245},[],[247],{"typeMetaDataId":10,"value":248,"id":249},"https://static.dastra.eu/backofficefilescontainer/6c9c6770-09f5-44d2-ac35-466a87c40426/US PIA Cross State Checklist Best Practices.pdf",117305,"https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-original.jpg",[252,253,254,255,256,257,258],"https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-1000.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-1500.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-800.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-600.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-300.webp","https://static.dastra.eu/content/a321130b-375a-4a3f-b9d5-e9d9afea648e/visuel-article-18-100.webp",59886,12]