This article summarises publicly available guidance from regulators and official sources. It is general educational information only and does not constitute legal or professional advice. Requirements vary by jurisdiction. Consult your regional authority or a qualified professional for advice specific to your situation.
The EU AI Act doesn't only impose obligations on businesses, it also includes a specific set of measures designed to support smaller ones through compliance. Article 62 covers reduced fees, priority access to testing environments, and dedicated advice channels, real, usable support that gets far less coverage than the Act's penalty structure.
In short: Article 62 requires the EU and member states to give SMEs, including start-ups, priority and free access to AI regulatory sandboxes, conformity assessment fees scaled proportionately to company size, and dedicated communication channels for AI Act questions. Every member state is required to have a sandbox operating by August 2026, and several are already running.
What a regulatory sandbox actually is
A regulatory sandbox is a controlled framework that lets a business lawfully develop, train, validate, and test a novel AI system under close, structured supervision from the relevant authority, following a plan agreed between the provider and the supervising body. It exists specifically to let genuinely new AI approaches be tested and refined with regulatory guidance built in from the start, rather than a business building in isolation and only finding out about compliance problems once a product is already finished.
The founder of a 6-person EU AI startup building a niche scheduling tool had assumed the Act only ever imposed costs on a company her size, budgeting for full-price conformity assessment fees and no sandbox access at all. Under Article 62, SMEs get priority access to these sandboxes, free of charge, with procedures required to be simple and clear rather than modelled on a large-enterprise compliance process.
Where sandboxes are already running
Every EU member state is required to have at least one operational AI regulatory sandbox by August 2026, and several are already live. Spain's AESIA sandbox has been operational since late 2024, focused on financial services, healthcare, and employment use cases. France runs a joint CNIL and ARCEP sandbox for generative AI. The Netherlands' RDI sandbox includes a dedicated SME fast-track. Germany's BNetzA sandbox and Finland's Traficom programme, paired with a national AI competence centre, were both expected to be operating by mid-2026. A business should check its own home member state's specific sandbox programme directly, since the exact application process and sector focus vary by country.
Reduced conformity assessment fees
For SME providers whose AI systems require formal conformity assessment, Article 62 requires the specific interests and needs of SMEs to be taken into account when fees are set, with costs reduced proportionately to the company's size, market size, and other relevant factors. This is a direct, structural difference from a flat per-assessment fee that would fall much harder, relative to revenue, on a small provider than a large one.
Dedicated advice channels
Beyond sandboxes and fees, Article 62 also commits the AI Office to maintaining standardised templates, a single information platform, and dedicated communication channels specifically for SMEs and start-ups to get advice and have questions about implementing the Act answered directly, rather than having to work through the same general guidance channels as a large enterprise with its own legal team. Awareness campaigns and promotion of AI-friendly public procurement practices for SMEs are also part of the same support package.
Whether it's worth the effort to access
For a small business genuinely developing a novel AI system, particularly one that might touch a high-risk category, engaging with a sandbox early is likely worth the effort: it turns compliance from a guessing exercise into a structured conversation with the authority that will eventually assess the finished product. For a business simply using off-the-shelf AI tools without building anything novel itself, these specific measures are less directly relevant, since sandboxes and conformity assessment apply to AI providers, not deployers of existing tools.
How to actually access these measures
The practical starting point is identifying which authority runs the AI regulatory sandbox in your own home member state, since each country administers its own programme rather than there being a single EU-wide application process. Most national sandbox programmes publish eligibility criteria and an application process on the relevant authority's website, and several explicitly flag an SME or start-up fast-track, worth searching for by name if your country's general sandbox information doesn't mention it directly. For the reduced conformity assessment fees, this typically isn't something to apply for separately, it's built into how the notified body calculates the fee once your business's size and market position are established as part of the standard assessment process.
It's worth budgeting realistic time for sandbox participation even though it's free of charge. A sandbox engagement is a genuine, structured process with the supervising authority, not a quick self-certification, and treating it as a compressed, last-minute step before a product launch defeats much of its purpose, which is to surface and resolve compliance questions early, while there's still time to act on the feedback.
Methodology (Real-World, Verified)
We test AI tools against real SMB workflows: the tasks a 20-person business actually uses AI for, not enterprise demos. Pricing is verified at the vendor's published rates, with local-currency conversions noted where relevant. Compliance notes reference the legislation and regulatory guidance relevant to each article's region. Every tool is judged on one question: could a business with no dedicated IT department actually pick this up and use it on Monday morning.
Related reading: our AI governance by region.
Do I have to pay to use an EU AI regulatory sandbox as an SME?
No. Article 62 gives SMEs, including start-ups, priority access to regulatory sandboxes free of charge, with simplified procedures compared to a general application process.
Are all EU member states required to have a sandbox?
Yes. Every member state is required to have at least one operational AI regulatory sandbox running by August 2026. Several, including Spain, France, and the Netherlands, already had one operating well before that deadline.
Do conformity assessment fees really cost less for a small business?
Article 62 requires fees to be reduced proportionately based on company size, market size, and other relevant indicators when SME providers undergo conformity assessment, rather than a flat fee applying regardless of company size.
Does this support apply if I only use AI tools rather than build them?
The sandbox and conformity assessment measures are aimed at AI providers developing or testing novel systems, not businesses using existing third-party AI tools as a deployer. A business in that position benefits less directly from these specific Article 62 measures.
The information in this article is general in nature. It reflects a summary of publicly available guidance and does not constitute legal, privacy, or professional advice. Your obligations will depend on your specific situation, jurisdiction, and business circumstances. Do not rely on this article as a substitute for qualified legal or professional advice.
Building a genuinely novel AI system for the EU market? Check whether it counts as high-risk before applying to a sandbox.
Check the Risk Tiers