Our approach
Ing. Mag. Patrick Eiler brings 20 years of experience in Austrian banks and insurers, combined with deep understanding of regulatory reporting, data science and modern data technologies. AI compliance is not an isolated compliance project, but a cross-functional task for the board, IT, compliance, HR and business units.
We support you with clearly structured service modules, from the initial inventory to FMA readiness. No standard packages, but solutions for your institution, your system landscape and your governance structures.
Service modules
| Service module | Content |
|---|---|
| AI inventory & registration | Identification of all AI systems and vendor AI components with involvement of IT, procurement, compliance and business units. |
| EU AI Act gap analysis | Comparison of the current state with EU AI Act requirements, prioritised action plan and role allocation. |
| AI risk classification | Classification of each system by risk level, Annex III relevance and actual use. |
| FRIA support | Support for Fundamental Rights Impact Assessments for relevant high-risk systems, especially credit and life/health insurance. |
| CSRD / ESRS bias alignment | Assessment of whether AI systems with discrimination, human-rights or governance risks also become relevant for CSRD / ESRS disclosures. Connection of AI inventory, bias risks, controls and auditable evidence. |
| ISO/IEC 42001 preparation | Gap analysis against ISO/IEC 42001:2023, development of the AI management system and preparation for external certification. |
| Governance structures | AI Risk Committee, AI Compliance Officer function, escalation processes, AI policy and internal usage rules. |
| Workshops & board briefings | Compact briefings on liability, deadlines, options for action and training concepts under Art. 4 EU AI Act. |
AI Governance Maturity Assessment
Where does your institution stand today? A structured answer in one to two working days.
The AI Governance Maturity Assessment is a compact maturity check that provides an auditable gap analysis of your AI governance. It combines inventory, risk classification, role allocation, FRIA review, privacy, DORA/NISG interfaces and Austrian ArbVG requirements.
| Phase | Content |
|---|---|
| Day 1 | AI inventory, vendor AI, GPAI tools, shadow AI, risk classification, role allocation and ArbVG review for employee data or control functions. |
| Day 2 | Gap analysis against Art. 16 or Art. 26 EU AI Act, FRIA review, ISO/IEC 42001 alignment, third-country transfers, TIA duties and prioritised action plan. |
| Result | Structured result document with maturity level, gaps, deadlines, responsibilities and usable basis for board, compliance, IT and authority requests. |
The assessment is suitable for Austrian regional banks, cooperative banks, insurers, reinsurers, leasing companies, payment institutions and institutions using vendor AI in core processes.
Why Mag. Eiler & Partner OG
- 20 years of experience in Austrian banks and insurers
- Deep knowledge of Austrian regulatory reporting, ABACUS/GMP, OeNB reporting, FINREP and AnaCredit
- Data science and AI practice with Python, Databricks and Microsoft Fabric
- Regulatory expertise on EU AI Act, DORA, NIS2 and GDPR
- Personal support by the owner instead of an anonymous advisory team
A first conversation is used to understand your situation and develop an initial assessment together. You then decide whether and in what form further cooperation makes sense.