Specialty: European Union Law

Legal AI for European Union Law

AI Act, DORA, NIS2, CSDDD, GDPR and DSA/DMA. EU regulations with verified CJEU case law, updated for 2026.

AI Act in force: August 2026. High-risk AI systems operating in Spain must now comply with Arts. 9-15 of Regulation (EU) 2024/1689. Lexiel identifies your system's risk level and generates the compliance analysis.

What Lexiel does in European Law

EU AI Act

In force from August 2026. Classifies AI systems by risk level (unacceptable, high, limited, minimal), identifies technical and documentary obligations, and generates compliance reports for your organisation.

DORA: Digital operational resilience

Regulation (EU) 2022/2554 for banks, insurers, asset managers and ICT providers. Analysis of ICT risk management, TLPT testing, incident notification obligations and third-party contracts.

NIS2: Cybersecurity

Directive (EU) 2022/2555, transposed in Spain. Obligations for essential and important entities: risk management, 24h/72h notification, supply chain, sanctions (up to 10M euros or 2% turnover).

CSDDD: Corporate sustainability due diligence

Directive (EU) 2024/1760. Human rights and environmental due diligence for companies with more than 1,000 employees. Value chain, climate transition plans and direct civil liability.

GDPR and international transfers

Full corpus of Regulation (EU) 2016/679, AEPD decisions and CJEU rulings (Schrems II, Meta, IAB Europe). Analysis of SCCs, BCRs and lawful bases for processing.

DSA/DMA: Digital markets and services

Regulations (EU) 2022/2065 and 2022/1925. Obligations for medium and large platforms, gatekeepers, interoperability, data access and audit tools.

Verified sources

Reglamento (UE) 2024/1689: AI Act (texto consolidado)

Reglamento (UE) 2022/2554: DORA

Directiva (UE) 2022/2555: NIS2

Directiva (UE) 2024/1760: CSDDD

Reglamento (UE) 2016/679: RGPD

Reglamento (UE) 2022/2065: DSA

Reglamento (UE) 2022/1925: DMA

Jurisprudencia TJUE (EUR-Lex · 22 reglamentos indexados)

Example queries

“Classify this credit scoring AI system under the AI Act and indicate if it qualifies as "high risk" under Annex III and what obligations apply”

“The company provides financial services to EU clients. What ICT risk management does Art. 6 DORA require and within what timeframe must major incidents be notified?”

“Draft a sustainability due diligence clause in line with Arts. 10 and 11 CSDDD to include in contracts with strategic suppliers”

“Analyse whether this cookie policy complies with Art. 5.1.a GDPR and the latest EDPB guidelines on consent”

“What obligations does Art. 16 DSA impose on a platform with 15 million monthly active users in Spain?”

“What are the NIS2 penalties for a bank that notifies a major incident outside the 24-hour timeframe in Art. 23?”

Start using Lexiel

ComplianceGDPR for law firms: records of processing, DPA and compliance 2025Law firms handle especially sensitive data. We analyse specific GDPR and LOPDGDD obligations: records of processing, legal bases, DPIA, professional privilege and using AI tools with client data.TrendsHow Legal AI is Transforming Law Firms in SpainDiscover how artificial intelligence is revolutionizing legal practice in Spain, from document analysis to case law research.TrendsLegal AI in Mexico: Case Management Under the CFPC and Federal LegislationMexico’s procedural system has its own particularities. Learn how legal AI helps lawyers in Mexico manage case files under the CFPC, CNPP, and state legislation.TrendsLegal AI in Argentina: Case File Management Under the CCCN and CPCCNThe 2015 National Civil and Commercial Code renewed Argentine private law. Learn how legal AI helps Argentine lawyers manage case files under the CCCN, CPCCN, and the electronic notification system.

View all articles