New open-source capability helps AI agents recognise compliance risks, apply guardrails, and escalate to humans in European business environments
The Hague, April 16, 2026 — Eye Security today announced complisec, an open-source AI compliance layer designed to help AI agents and agentic workflows operate more safely in European environments.
In many organisations, AI agents are already writing code, processing data, and making decisions without a clear understanding of what they are allowed to do. Many still lack awareness of the how European organisations operate. This creates a growing risk between what AI systems can do and what they should do.
complisec is designed to close that gap. It can be easily activated as a layer on top of existing AI tools and platforms, like Copilot and ChatGPT, without requiring changes to the underlying systems. It enables AI to recognise risks, apply guardrails, and escalate decisions when human oversight is required.
For example, an AI agent handling customer data may not recognise when that data should not be stored or moved outside the EU, or when a decision should be escalated instead of handled automatically. Complisec provides that awareness at the moment decisions are made.
Based on its current scope, complisec is being designed to support areas such as:
- Organisation-specific compliance enforcement
- NIS2 gap analysis tools
- GDPR data protection & secrets blocking
- Audit logging & central compliance records
- Incident management within NIS2 deadlines
- Supplier & vendor risk assessment
- Change management for critical assets
Most frontier AI models from Anthropic, OpenAI and Google, are designed to be broadly useful across markets, but are not built with specific regulatory environments like GDPR or NIS2 in mind. Complisec is designed to add that missing layer of European context on top. The goal is not to replace human oversight, but to enable decision-makers to make faster and better decisions with the help of AI.
“AI agents are becoming more capable every month, but capability without context is risky,” said Piet Kerkhofs, CTO of Eye Security. “European companies need AI agents that do not just move fast, but understand the operational and compliance environment they are working in. Complisec is an early step toward that future.”
Eye Security is making complisec available as an open-source contribution to the wider cyber and builder community. The solution is designed for straightforward onboarding by both human users and AI agents across major platforms. By doing so, the company aims to accelerate the development of safer, more accountable AI systems across Europe.
“We see a clear shift from experimentation to real operational use of AI,” added Kerkhofs. “In incident response, the same questions always come up: what happened, what data was involved, and who made the decision. AI agents need to operate with that level of accountability. That’s the gap we’re addressing with complisec.”
Eye Security believes Europe has a unique opportunity to lead in building trustworthy, compliance-aware AI systems that reflect its regulatory and operational standards.
As AI moves from experimentation into daily operations, the next phase of adoption will be defined not just by capability, but by responsibility. Complisec reflects that shift, embedding compliance, accountability, and escalation into AI-driven work.
Not a replacement for a CISO, but a practical compliance layer for AI-driven work.
About Eye Security
Eye Security helps small and medium-sized businesses identify cyber risks proactively and strengthen operational resilience. As one of Europe’s leading MDR providers, the company blends advanced AI technology, expert guidance, and integrated cyber insurance into one cohesive solution. More than 850 organisations across Europe rely on this unified approach to safeguard their digital operations. www.eye.security
