Skip to content
Enterprise
🇩🇪 Deutsch 🇬🇧 English 🇫🇷 Français
Start your 90-day trial
Datargo OneEnterprise Single-pane-of-glass cockpit for enterprises. All modules from one source. Learn more
Flagships
Datargo Monitor Availability and security posture. Datargo CRM Support hub for every brand.
Operations & commerce
Datargo ID SSO and MFA for the whole suite. Datargo ERP GoBD-compliant commercial core.
Trust & crypto
NextPKINew Certificate lifecycle, 47-day ready.
Bundle of the month
Reliability Bundle

Datargo Monitor + NextPKI as a single billed package. NIS2 evidence and certificate lifecycle from one cockpit.

Learn more
By outcome
Reliability & security NIS2 evidence from monitoring + incident. Customer service hub Live chat, tickets, multi-brand. Identity & SSO One identity for all modules.
By compliance
NIS2-Evidence Evidence at the press of a button. DORA resilience Financial sector, register of information. ISO 27001 & GoBD Annex A controls and e-invoicing.
By size
Solo & indie team Productive in 5 minutes. Mid-market SSO, audit trail, multi-brand. Enterprise & public sector Hundreds of seats, region pinning.
Sovereignty Kit
NIS2 evidence package

Ready-made Datargo Monitor and Datargo CRM controls, mapped against NIS2 obligations. Start straight into the pilot.

Read the NIS2 whitepaper
Learn
Documentation Module guides, API reference, quick start. Best-practice guides NIS2 setup, multi-brand Datargo CRM, SSO rollout. Blog Release notes, compliance news, roadmap.
Trust
Trust Center Hosting, certificates, sub-processors. Status-Page Live availability of all Datargo modules. Legal & privacy DPA, sub-processor list.
Customers
Customer stories Case studies from finance, public, tech. Partner program System integrators, implementers, MSPs. Events & webinars it-sa, EIC, NIS2 roadshows.
From the cockpit
47-day TLS from 2029

NextPKI is already prepared for the new CA/B Forum reality. Whitepaper and migration guide available now.

Read the whitepaper
Platform Datargo Monitor Datargo CRM Datargo ID Datargo ERP NextPKI
Datargo One Pricing Compliance
Language
🇩🇪 Deutsch 🇬🇧 English 🇫🇷 Français
Start your 90-day trial Book a call
Skip to content
Regulation & AI

The EU AI Act: GPAI Enforcement from 2 August 2026 and What the Digital Omnibus Postponed

26.05.2026 · 3 min read

Active enforcement of the GPAI obligations begins in August. A sober overview of what applies now, what the May 2026 Digital Omnibus postponed, and which deadlines remain.

The EU AI Act has been in force since August 2024, but many of its obligations take effect in stages. One date stands out: on 2 August 2026 active enforcement against providers of general-purpose AI models (GPAI) begins through the EU AI Office, and national sanction regimes take effect in parallel. In Germany the accompanying AI Measures and Innovation Act (KI-MIG) applies. Anyone who uses or provides AI should know the deadline, but also the most recent postponements.

What begins on 2 August 2026

The obligations for GPAI models have applied since August 2025. What is added in August 2026 is enforcement: one year after applicability, the AI Office gains the powers to actually act on them. These include information requests, access to models and, as a last resort, the recall of a model. An obligation on paper thereby becomes an enforceable one.

For most companies the relevant role is not that of the GPAI provider, but that of a deployer or provider of downstream systems. They too should know which transparency and documentation obligations take effect when.

What the May 2026 Digital Omnibus postponed

On 7 May 2026 the EU, through the so-called Digital Omnibus, stretched the timeline for individual sub-obligations. This does not change the August deadline for GPAI enforcement, but it shifts other building blocks:

  • High-risk systems under Annex III: postponed to 2 December 2027.
  • High-risk systems under Annex I: postponed to 2 August 2028.
  • Transparency obligations under Article 50 (such as labelling AI-generated content): postponed to 2 December 2026.
  • AI regulatory sandboxes: postponed to 2 August 2027.

This stretching is not a free pass. It buys time for the more demanding high-risk requirements, but leaves GPAI enforcement and the national sanctions in August untouched.

What this means in practice

Three tasks are worthwhile regardless of the exact date. First, an inventory: which AI systems does the company use or provide, and into which risk class do they fall? Without this clarity, no deadline can be planned meaningfully. Second, transparency: from December 2026, Article 50 requires that certain AI interactions and AI-generated content be made recognisable. Third, documentation, because enforcement from August rests on obligations not only being met but also being evidenced.

This last point connects the AI Act with the other compliance regimes. Whether NIS2, DORA or the AI Act, the recurring requirement is a traceable, auditable record of what a system does and who is accountable for it. A platform that produces this record as a by-product of operation anyway makes preparation easier, for any regime. The task itself, however, stays the same: first know what you operate, then evidence that it complies.

The 2nd of August 2026 is not an abstract date. It is the point at which the GPAI obligations grow teeth. What the Digital Omnibus postponed concerns the high-risk track, not this core.

Back to the blog

Datargo Datargo

The European Business Operations Platform. Monitoring, customer service, identity, accounting, and certificates in one sovereign suite. Auditable by design. Made in Germany.

EU hosting, Frankfurt GDPR-native Made in Germany
Platform
  • Datargo One
  • Datargo Monitor
  • Datargo CRM
  • Datargo ID
  • Datargo ERP
  • NextPKI
Solutions
  • Reliability & Posture
  • Customer service hub
  • Identity & SSO
  • Commerce & GoBD
  • Scaling
Compliance
  • NIS2 evidence
  • DORA resilience
  • ISO 27001 mapping
  • GoBD & e-invoicing
  • Sovereignty
Industries
  • Financial services
  • Public sector
  • Health & pharma
  • Industry & TISAX
  • SaaS & tech
Resources
  • Trust Center
  • Documentation
  • Status page
  • Customer stories
  • Partner program
  • Blog
Company
  • Datargo One for enterprises
  • Start your 90-day trial
  • Book a call
  • Contact
  • Careers
© 2026 Datargo GmbH. All rights reserved.
Imprint Privacy Terms DPA SLA Sub-processorsDORA / NIS2
Germany · English

Datargo® and Databurg® are registered trademarks of Datargo GmbH. All other product names, logos, and trademarks mentioned are the property of their respective owners.

Cookies & optional features. Datargo uses technically necessary cookies. Optionally we enable comfort features such as our live-chat support, an in-house Datargo service that processes personal data in the process. You can accept everything or keep only the necessary cookies.

More in the privacy policy