Our Work
Navigating the Future of AI Regulation: A Legal Overview of Compliance and Emerging Trends
Navigating the Future of AI Regulation: A Legal Overview of Compliance and Emerging Trends
The rapid development of artificial intelligence (AI) technologies has prompted significant regulatory responses worldwide, with the European Union (EU) taking a pioneering role through the adoption of the Artificial Intelligence Act (EU AI Act), formally known as Regulation (EU) No. 2024/1689, published on 12 July 2024 in the EU Official Journal, making it the first comprehensive horizontal legal framework for the regulation of AI systems across the EU. This regulation marks the first comprehensive legal framework designed to govern AI across EU member states, addressing the ethical, legal, and societal challenges posed by AI while aiming to balance innovation with fundamental rights protection.
Key Provisions of the AI Act
The EU AI Act introduces a set of legally binding obligations and restrictions applicable to all entities involved in the development, deployment, and use of AI systems within the EU, as well as those outside the EU that affect individuals or businesses within the region. Key provisions include:
-
Scope and Definitions: The EU AI Act applies to AI systems developed, deployed, or used within the EU. It also covers AI systems provided by non-EU entities that affect EU citizens or businesses. The regulation defines essential legal terms, including "AI system," "high-risk AI system," and "provider," providing a legal basis for enforcement.
-
Risk Assessment and Categorization (Article X): AI systems are classified based on their potential risk to fundamental rights, health, safety, and the environment. High-risk AI systems are subject to stringent legal requirements, including mandatory risk assessments, data governance, and transparency obligations. These systems must undergo conformity assessments to ensure compliance before being placed on the market.
-
Prohibited Practices (Article Y): The regulation explicitly prohibits AI practices that pose unacceptable risks, such as those that manipulate human behaviour, exploit vulnerabilities, or engage in social scoring for governmental purposes. These prohibitions are legally enforceable, and violations may result in significant penalties.
-
Transparency and Accountability (Articles Z and A1): Legal obligations for transparency and accountability are imposed on AI providers and users. This includes clear documentation of AI processes, mandatory disclosures about the capabilities and limitations of AI systems, and the implementation of mechanisms for human oversight, particularly for high-risk AI systems.
-
Data Governance and Privacy (Article A2): The AI Act requires strict compliance with the General Data Protection Regulation (GDPR) and other relevant EU data protection laws. AI systems must incorporate robust data governance frameworks to ensure the privacy and security of personal data, aligning with existing legal obligations under GDPR.
-
Enforcement and Penalties (Article A3): The regulation grants national competent authorities the power to enforce compliance and impose penalties for violations. Penalties for non-compliance can reach up to 6% of a company’s annual global turnover or €30 million, whichever is higher. These penalties are intended to provide a strong deterrent against non-compliance.
Compliance: A Legal Framework
Compliance with the AI Act is not optional; it is a legal obligation for all entities within its scope. Organisations must take the following steps to ensure adherence to the regulation:
-
Determine Applicability: Assess whether your AI systems fall within the scope of the AI Act based on their deployment within the EU or impact on EU individuals or businesses.
-
Risk Categorization and Compliance: Conduct a thorough risk assessment to categorise your AI systems under the legal framework provided by the AI Act. High-risk AI systems must comply with specific legal requirements, including undergoing conformity assessments.
-
Data Governance and GDPR Compliance: Ensure that AI systems comply with GDPR and other EU data protection laws. This includes conducting Data Protection Impact Assessments (DPIAs) and implementing legal safeguards for data security and privacy.
-
Transparency and Documentation: Maintain legally required documentation, provide mandatory disclosures, and implement human oversight mechanisms as stipulated by the AI Act.
-
Avoidance of Prohibited Practices: Review AI systems to ensure they do not engage in any practices prohibited under Article Y of the AI Act.
-
Prepare for Audits and Legal Enforcement: Regularly audit your AI systems for compliance with the AI Act and maintain detailed records to facilitate potential inspections by national authorities.
-
Legal Monitoring and Education: Stay informed about updates to the AI Act and related EU regulations. Provide ongoing legal training to ensure compliance across your organisation.
Future Directions: Emerging Legal Trends in AI Regulation
The adoption of the AI Act is a significant milestone, but it represents only the beginning of a broader global trend in AI regulation. Legal professionals and organisations should be aware of the following emerging trends:
-
Global Harmonization of AI Laws: As the EU sets a precedent with the AI Act, other regions are likely to develop similar legal frameworks. This could lead to efforts to harmonise AI regulations globally, potentially through international legal standards and cross-border agreements.
-
Expanding Regulatory Scope: While the AI Act focuses on high-risk systems, future legal developments may extend regulatory oversight to include lower-risk AI applications, emphasising consumer protection and environmental impact.
-
Intersection with Emerging Technologies: As AI integrates with technologies like blockchain, quantum computing, and the Internet of Things (IoT), new legal frameworks will be necessary to address the challenges and opportunities at these intersections.
-
Ethical and Human Rights Considerations: Future regulations will likely focus more on mitigating bias, discrimination, and the impact of AI on human rights, reflecting broader ethical concerns within legal frameworks.
-
Liability and Accountability: As AI systems become more autonomous, legal liability frameworks will evolve, potentially introducing strict liability for developers and mandatory insurance requirements for high-risk AI systems.
-
Public Sector AI Regulation: Increased regulation of AI in government, particularly in law enforcement and surveillance, will aim to ensure transparency and accountability, with potential new legal requirements for government AI use.
-
Labour and Employment Law: The impact of AI on employment will drive new labour laws aimed at protecting worker rights and ensuring fairness in AI-driven employment decisions.
-
Adaptive Legislation: AI technology evolves rapidly, and legal frameworks must be flexible. Future AI laws may include adaptive legal models that allow regulations to evolve alongside technological advancements.
Conclusion
The EU’s AI Act (Regulation (EU) No. No. 2024/1689) represents a crucial legal development in the regulation of artificial intelligence, setting a global benchmark. Compliance with this regulation is a legal necessity, requiring organisations to implement comprehensive risk management, data governance, and transparency measures. As AI technology continues to advance, legal professionals and organisations must remain vigilant, anticipating and adapting to emerging legal trends and ensuring ongoing compliance with evolving regulations. The future of AI law will be shaped by the need to balance innovation with the protection of fundamental rights, ethical considerations, and global legal harmonisation.

Understanding the 6th Anti-Money Laundering (AML) EU Directive: Implications for Obligated Entities
The European Union has taken a significant step in its fight against money laundering and terrorist financing with the implementation of the 6th Anti-Money Laundering Directive (6AMLD). This directive introduces critical changes aimed at addressing current deficiencies, closing existing loopholes, and enhancing the overall effectiveness of AML regulations. As an advisory firm committed to guiding our clients through complex regulatory landscapes, M&G Consult provides a detailed overview of 6AMLD, highlighting the new rules and their implications for obligated entities.
Key Changes Introduced by the 6AMLD
Expansion of Predicate Offenses:
Definition and Inclusion: The 6AMLD significantly broadens the list of predicate offenses for money laundering, bringing the EU in line with international standards. Previously, the directive encompassed crimes such as drug trafficking, human trafficking, and corruption. The 6AMLD expands this list to explicitly include cybercrime, environmental crime, and tax crimes. By recognizing these modern forms of criminal activity, the directive addresses emerging threats and ensures a more comprehensive approach to combating money laundering.
Increased Liability for Legal Entities:
Corporate Responsibility: One of the most groundbreaking changes is the extension of criminal liability to legal entities. Under 6AMLD, companies can be held criminally responsible for money laundering activities carried out by individuals acting on their behalf. This change emphasizes the necessity for businesses to implement robust internal controls, comprehensive compliance programs, and diligent oversight mechanisms to prevent and detect illicit activities within their operations.
Harsher Penalties and Sanctions:
Deterrence Through Severity: The 6AMLD introduces harsher penalties for money laundering offenses. The directive mandates a minimum prison sentence of four years for serious cases, reflecting the EU's commitment to deterrence. Additionally, the directive emphasizes the need for confiscation measures, allowing authorities to seize assets linked to money laundering more effectively. These stringent measures aim to dissuade individuals and entities from engaging in money laundering activities.
Increased Focus on Beneficial Ownership Transparency:
Transparency Measures: To prevent the misuse of corporate structures for money laundering, the 6AMLD places a strong emphasis on the identification and verification of beneficial owners. Obligated entities are required to implement stringent measures to ensure they have accurate and up-to-date information on the beneficial ownership of their clients. This increased focus on transparency helps to uncover hidden connections and prevent the concealment of illicit funds behind complex corporate structures.
Cooperation and Information Sharing:
Collaborative Approach: The directive underscores the importance of cooperation and information sharing among member states and between public and private sectors. This collaborative approach aims to create a more unified and effective framework for combating money laundering and terrorist financing across the EU. Enhanced communication and coordination can lead to more efficient investigations, better resource allocation, and a stronger overall defense against financial crime.
Implications for Obligated Entities
The implementation of 6AMLD has far-reaching implications for obligated entities, including financial institutions, legal professionals, and other businesses subject to AML regulations. The following are key impacts:
Enhanced Compliance Requirements:
Policy Updates: Obligated entities must update their AML policies and procedures to align with the new directive. This includes expanding their risk assessments to cover the newly included predicate offenses and ensuring they have robust systems in place for identifying and reporting suspicious activities. Compliance teams will need to stay informed about evolving threats and regulatory changes to maintain effective AML programs.
Strengthened Internal Controls:
Control Mechanisms: With the increased liability for legal entities, companies must prioritize the establishment of strong internal controls. This involves implementing effective monitoring and reporting mechanisms, conducting regular audits, and providing comprehensive training to employees on AML compliance. Strong internal controls help to detect and prevent illicit activities, reducing the risk of legal and reputational damage.
Greater Accountability for Senior Management:
Executive Responsibility: The 6AMLD places a higher level of accountability on senior management. Executives and board members must ensure that their organizations are fully compliant with AML regulations and that any breaches are promptly addressed. Failure to do so could result in significant legal and financial repercussions. This heightened accountability would encourage senior management to actively engage in the oversight and management of AML compliance programs.
Investment in Technology and Expertise:
Advanced Solutions: To meet the enhanced compliance requirements, obligated entities may need to invest in advanced technology solutions for transaction monitoring, data analysis, and identity verification. These technologies can enhance the efficiency and effectiveness of AML programs by automating processes, improving accuracy, and enabling real-time detection of suspicious activities. Additionally, entities may need to seek expertise from external consultants or hire specialized staff to strengthen their AML frameworks.
Increased Due Diligence and Reporting Obligations:
Rigorous Processes: The directive necessitates more rigorous due diligence processes, particularly concerning the identification of beneficial owners. Obligated entities must ensure they have accurate and complete information, and they must be prepared to report any discrepancies or suspicious activities to the relevant authorities. Enhanced due diligence helps to uncover hidden risks and ensures compliance with regulatory requirements.
Conclusion
The 6th Anti-Money Laundering Directive represents a significant advancement in the EU's efforts to combat financial crime. For obligated entities, it necessitates a proactive approach to compliance, with a focus on enhancing internal controls, increasing transparency, and fostering cooperation. M&G Consult is committed to supporting our clients through this transition, offering expert guidance and tailored solutions to ensure they meet the new regulatory requirements and safeguard their operations against the risks of money laundering and terrorist financing. Our team of specialists is equipped to help you navigate the complexities of 6AMLD, ensuring your business remains compliant and resilient in the face of evolving threats.
10 August 2024

Incorporation of a Company in Bulgaria
Incorporating a company in Bulgaria offers numerous advantages due to the country's strategic location, favorable tax regime, and relatively straightforward legal procedures. This detailed guide provides an in-depth overview of the process, including legal requirements, types of business entities, step-by-step incorporation procedures, and post-incorporation considerations. Additionally, professional assistance from our team at M&G Consult EOOD can facilitate a smooth incorporation process.
Why Incorporate in Bulgaria?
Bulgaria presents several compelling benefits for businesses, such as:
-
Low Corporate Tax Rate: A flat corporate tax rate of 10%, one of the lowest in the European Union (EU), making it an attractive destination for businesses seeking tax efficiency.
-
Strategic Location: Positioned at the crossroads of Europe and Asia, Bulgaria serves as a gateway to both markets, enhancing trade opportunities.
-
EU Membership: As an EU member since 2007, Bulgaria offers businesses access to the European single market, providing a vast potential customer base.
-
Skilled Workforce: The country has a well-educated and skilled workforce, especially in fields like IT and engineering, ensuring access to talented professionals.
-
Competitive Costs: Bulgaria boasts relatively low labor and operational costs compared to other EU countries, making it an economically viable option for businesses.
Types of Business Entities in Bulgaria
Entrepreneurs can choose from several types of business entities when incorporating in Bulgaria, each with specific characteristics and requirements:
-
Sole Trader (ET): Suitable for individual entrepreneurs, this entity has minimal setup requirements but does not provide limited liability protection.
-
Limited Liability Company (LLC/OOD): The most common business entity, offering limited liability to its owners. It can be established by a single person (Single Member LLC/EOOD) or multiple shareholders (OOD).
-
Joint-Stock Company (JSC/AD): Ideal for larger businesses, this entity requires a minimum capital and allows for the issuance of shares to raise capital.
-
Branch Office: Allows a foreign company to operate in Bulgaria without establishing a separate legal entity. The branch is not a separate legal entity but an extension of the parent company.
-
Representative Office: A non-commercial entity that conducts market research and promotional activities on behalf of the parent company without engaging in commercial transactions.
Pre-Incorporation Steps
Before incorporating a company in Bulgaria, several preparatory steps need to be taken:
-
Business Plan: Develop a detailed business plan outlining the company's objectives, market analysis, financial projections, and operational strategies.
-
Company Name: Choose a unique name for the company. Ensure the name complies with Bulgarian naming regulations and is not already registered by another entity.
-
Registered Address: Secure a physical address in Bulgaria to serve as the company’s registered office. This address will be used for official correspondence.
-
Bank Account: Open a bank account in Bulgaria to deposit the initial capital required for the company’s incorporation.
Incorporation Process
The incorporation process involves several key steps:
-
Drafting the Articles of Association: This document outlines the company's structure, management, and operating procedures. It must include details such as the company's name, registered address, business activities, capital, and the rights and obligations of shareholders. The Articles of Association must be signed by all founders.
-
Notarization of Documents: Certain documents, including the Articles of Association and the founders' signatures, must be notarized by a Bulgarian notary public.
-
Capital Contribution: Deposit the initial capital into the company's bank account. For a Limited Liability Company (LLC), the minimum capital requirement is BGN 2 (approximately EUR 1).
-
Submission to the Commercial Register: Submit all necessary documents to the Bulgarian Commercial Register, including:
-
Articles of Association
-
Founders' details (identification documents)
-
Proof of capital contribution (bank certificate)
-
Company name approval certificate
-
Completed application form
-
-
Registration Fee: Pay the required registration fee to the Commercial Register. The fee amount varies depending on the type of business entity.
-
VAT Registration: If the company's annual turnover exceeds BGN 50,000 (approximately EUR 25,600), it must register for VAT. Voluntary VAT registration is also possible and can be beneficial for businesses engaged in international trade.
-
Social Security Registration: Register the company with the National Social Security Institute (NSSI) to ensure compliance with social security obligations for employees. This registration is necessary for hiring employees and ensuring their social security contributions.
Professional Assistance
Navigating the incorporation process can be complex, especially for those unfamiliar with Bulgarian laws and regulations. M&G Consult EOOD, a firm with extensive experience in company incorporation, can assist in drafting all necessary documents, ensuring compliance with legal requirements, and providing expert guidance throughout the process. Their services include:
-
Drafting Articles of Association: M&G Consult EOOD can help tailor the Articles of Association to meet specific business needs and ensure compliance with Bulgarian laws.
-
Notarization Assistance: We can facilitate the notarization of required documents, streamlining this critical step.
-
Capital Contribution Guidance: M&G Consult EOOD provides assistance in opening a bank account and ensuring the proper deposit of initial capital.
-
Document Submission: The firm can handle the submission of all required documents to the Commercial Register, ensuring accuracy and completeness.
-
VAT and Social Security Registration: M&G Consult EOOD offers support in registering for VAT and with the NSSI, ensuring compliance with all regulatory requirements.
Incorporating a company in Bulgaria presents numerous opportunities for entrepreneurs and investors, thanks to its favorable business environment and strategic location. By understanding the legal requirements, choosing the appropriate business entity, and following the incorporation procedures, businesses can successfully establish their presence in Bulgaria. Post-incorporation, it is essential to maintain compliance with local regulations to ensure the smooth operation and growth of the business.
For those unfamiliar with the local language and legal intricacies, seeking professional assistance from M&G Consult EOOD can provide valuable support and expertise. M&G Consult EOOD’s extensive experience in company incorporation can help navigate the process efficiently and effectively, ensuring all legal requirements are met and facilitating a successful business launch in Bulgaria.
8 August 2024

