Responsible AI governance for HR and recruitment, mapped to the EU AI Act, NYC Local Law 144 and UK employment law

HR & RECRUITMENT

Responsible AI Governance for Hiring

HR teams are deploying AI to screen, rank and assess candidates faster than they can govern it. We engineer the governance that keeps your hiring AI lawful and fair under the EU AI Act, NYC Local Law 144 and UK employment and data protection law, so the people committee can sign it off with confidence.

For CHROs, Heads of Talent Acquisition, HR Directors and their employment lawyers. AEO and employer-brand content handled downstream, engineered to the same compliance standard rather than gamed.

Request a Consultation

THE EXPOSURE

Why AI Hiring Is Now a Board-Level Risk

Hiring sits under regimes that all reach AI: the EU AI Act, GDPR, the Equality Act and a growing US state patchwork led by NYC. Deploy AI to screen people without governing it and the exposure is regulatory and personal, not just reputational.

EUR 35M / 7%

Maximum EU AI Act fine for prohibited AI practices

Article 99 sets fines up to EUR 35 million or 7 percent of total worldwide annual turnover, whichever is higher, for prohibited practices. High-risk breaches reach EUR 15 million or 3 percent. Recruitment AI sits in the high-risk tier, and the exposure sits at board level.

EU AI Act, Article 99 (artificialintelligenceact.eu)

Annex III.4

Recruitment AI is high-risk under the EU AI Act

Annex III point 4(a) names AI used to place targeted job adverts, analyse and filter applications, and evaluate candidates. Point 4(b) covers AI that decides on promotion, termination, task allocation and performance monitoring. The full high-risk obligations apply.

EU AI Act, Annex III point 4 (artificialintelligenceact.eu)

10 days

NYC LL144 candidate notice before an AI hiring tool runs

An automated employment decision tool needs an independent bias audit, a published summary of the results, and notice to candidates at least 10 business days before use. In effect since 1 January 2023, enforced from 5 July 2023.

NYC Local Law 144 (nyc.gov, DCWP rules)

Nov 2024

ICO published its AI-in-recruitment outcomes report

The ICO audited recruitment AI providers and issued close to 300 recommendations, with a DPIA expected before any screening tool goes live. Under UK GDPR Article 22, solely automated rejections need meaningful human review, and the Equality Act 2010 covers indirect discrimination.

ICO AI tools for recruitment outcomes report (ico.org.uk)

THE POSITION

Govern AI Hiring Well and It Becomes an Advantage

Regulation isn't the enemy of AI in hiring. Govern it properly and you screen at scale while rivals are still arguing about who owns the risk.

Governed hiring AI ships faster

Teams with a clear governance model approve new hiring tools in days, not quarters. The bottleneck is rarely the model. It is the absence of an agreed way to assess and sign off the risk.

Bias audits are a hiring asset, not a tax

A documented bias audit doesn't just satisfy NYC LL144. It tells candidates and regulators you tested the tool, which is exactly the trust signal a fair hiring process needs.

Fairness expertise is your trust asset

Your people team understands fairness and the Equality Act better than any vendor. Turned into governed AI and into clear, accurate published guidance, that expertise is what regulators and AI search engines both reward.

AEO without dark patterns protects the brand

The wider AEO industry is being penalised for manipulative tactics. Done to a Responsible AI standard, employer-brand visibility is engineered cleanly, so an accurate careers page is also the one AI engines cite.

OUR APPROACH

Systems. Strategy. Execution.

The same three-level framework, recast for the AI governance, fairness and compliance realities of modern hiring.

1

SYSTEMS

AI Hiring Governance Operating Model

We architect the governance your CHRO, Head of Talent Acquisition and employment counsel can stand behind. Every hiring tool that screens, ranks or assesses people mapped to its obligations under the EU AI Act, UK GDPR, the Equality Act and the US state patchwork, with clear ownership and escalation.

  • -Hiring-tool inventory and Annex III high-risk classification
  • -Governance operating model: roles, controls, escalation
  • -EU AI Act, UK GDPR, Equality Act and NYC LL144 obligation mapping
  • -Board and people-committee reporting on AI hiring risk
2

STRATEGY

AI Hiring Risk and Compliance Roadmap

We build a prioritised AI risk register and remediation roadmap for your hiring stack, sequenced to real deadlines. Where AI search and employer-brand content sit in scope, we set the guardrails before the work runs.

  • -AI risk register scored by likelihood and regulatory exposure
  • -Bias-audit readiness assessment for in-scope hiring tools
  • -Vendor and model assessment against the EU AI Act timeline
  • -AEO guardrails for accurate, fair employer-brand content
3

EXECUTION

Audits, Artefacts and Compliant AEO

When execution is needed, we engineer the evidence. Bias and fairness audits, DPIAs, vendor assessments, governance artefacts, and answer engine optimisation built to compliance standard so your employer brand holds up under scrutiny.

  • -Bias, fairness and adverse-impact audits for hiring tools
  • -DPIAs and Article 22 human-review process design
  • -Governance artefacts: technical documentation, logging, oversight
  • -AEO and content engineering without dark patterns

WHERE WE CREATE VALUE

Typical HR and Recruitment Engagements

Illustrative scenarios reflecting the types of team we work with. Specific scope depends on your hiring stack, regulatory footprint and risk appetite.

CANDIDATE SCREENING

Employer Filtering Applications with AI

AI ranks and filters job applications at volume. Annex III point 4(a) makes the tool high-risk, yet the bias testing, human oversight and technical documentation are not in place, and candidates are not told.

Systems-level engagement: classify the in-scope tools, build the risk management and logging required, and design the human-review and candidate-notice processes the EU AI Act and UK GDPR expect.

BIAS AUDIT

Talent Team Hiring in New York City

An automated employment decision tool screens candidates for NYC-based roles. NYC Local Law 144 needs an independent bias audit, a published summary and 10 business days of candidate notice, none of which is live.

Bias-audit readiness programme: scope which tools are in scope, stand up the independent audit, publish the summary, and put the candidate-notice process in place before the tool runs.

VENDOR ASSESSMENT

HR Buying an AI Assessment Platform

The team is procuring a video-interview or assessment tool from a vendor. Under the EU AI Act the deployer carries obligations too, and the Illinois AI Video Interview Act adds notice, consent and deletion rules in that state.

Vendor and model assessment: due diligence on the tool, deployer-obligation mapping, and a register that records bias testing, lawful basis and jurisdiction-specific notice rules.

EMPLOYER BRAND

Staffing Firm Engineering AI Visibility Safely

Marketing uses AI to generate employer-brand and careers content and wants visibility in AI search. Claims about how candidates are assessed must be accurate, and the wider AEO industry is being penalised for dark patterns.

Governance-led AEO: guardrails for AI-generated employer-brand content, claim substantiation, and answer engine optimisation engineered to compliance standard rather than gamed.

WHY US

We Understand Regulated Markets

Sotiris has 27 years across regulated markets where mistakes cost licences, not just rankings, and is the author of Ethical AI, AI Moats and TRANSFORM. VerityAI is a Responsible AI advisory, not a software platform. We govern your hiring AI and your employer-brand visibility from the same principle: build it so it holds up under scrutiny.

Governance the people committee can defend

We architect AI hiring governance mapped to the EU AI Act, UK GDPR, the Equality Act and NYC LL144, with ownership and evidence a regulator or tribunal can follow. Not a policy PDF. A working operating model.

Responsible AI applied to AI search

AI engines reward authoritative, well-structured, expert-attributed content. We engineer that employer-brand visibility without the dark patterns the AEO industry is being penalised for, so it stays accurate and fair.

Board language, not jargon

We speak to CHROs, HR directors and employment counsel. Reporting connects AI to regulatory exposure, discrimination risk and candidate outcomes, not vanity metrics.

ASSESS YOUR READINESS

Start with a Self-Assessment

Free resources built for HR and talent leaders. No signup required. Use them to scope your AI hiring risk before we talk.

AI Risk Register Template

A starting AI risk register for HR and talent teams. Map your hiring tools to EU AI Act, UK GDPR and NYC LL144 exposure. Built for CHROs, talent leads and employment counsel.

Open →

AI Search Readiness Grader

Score how well AI engines can find, understand and cite your firm, and whether your employer-brand content meets an accurate, fair bar.

Open →

AEO vs SEO Budget Allocator

Model the split between traditional organic and AI search investment for an employer brand, with compliance guardrails in view.

Open →

START HERE

Wherever You Are in the Decision

Three routes in, depending on where you've got to. Learn the rules, compare the approaches, or move to a decision.

LEARN THE RULES

Getting oriented

New to how AI regulation lands on hiring? Start with what the rules actually require, then with how bias creeps into a screening tool and how to detect it before it reaches a candidate.

COMPARE YOUR OPTIONS

Weighing approaches

Already scoping the problem? Look at how to build a compliant hiring system, and what changes when you hire into a regulated industry where the compliance picture is sharper.

READY TO ACT

Moving to a decision

Ready to govern it properly? Start with the NYC LL144 requirements and the risk register template, then book a conversation about your hiring stack and where governance reduces the most risk.

GO DEEPER

Responsible AI Knowledge Base

Briefings and guides on governing AI in hiring, from NYC Local Law 144 to bias detection, GDPR and personal liability.

AI and HiringAI GovernanceAI ComplianceNYC Local Law 144: Employment Law RequirementsAI Recruitment Bias Detection: Preventing DiscriminationGDPR and AI Recruitment: Data Protection in HiringHR Professional Liability: Personal Risk in AI RecruitmentWhen AI Recruitment Rejects Qualified CandidatesGoogle's $50M Bias Settlement: Lessons for CHROs

BY JURISDICTION

UK, US and EU: The Rules Are Not the Same

The same hiring tool sits under different rulebooks depending on where it operates. We advise UK-first, and serve US and EU clients in English.

UK

Lead market. We advise UK-first.

  • -Equality Act 2010: an AI screening tool that disadvantages a protected group can be indirect discrimination
  • -ICO guidance on AI in recruitment: a DPIA expected before a tool goes live, close to 300 recommendations issued
  • -UK GDPR Article 22: solely automated rejections need meaningful human review

US

Served in English.

  • -NYC Local Law 144: independent bias audit, published summary, 10-business-day candidate notice
  • -Illinois AI Video Interview Act: notice, consent and deletion rules for AI-analysed video interviews
  • -EEOC Title VII and ADA still apply to AI hiring; federal guidance was withdrawn in 2025, so state law is now the sharper edge
  • -Colorado: the original AI Act was repealed and replaced by SB 26-189, in effect from 1 January 2027

EU

Served in English.

  • -EU AI Act: recruitment and candidate selection are high-risk under Annex III point 4
  • -GDPR Article 22: restrictions on solely automated decisions with a significant effect
  • -Full high-risk obligations: risk management, bias-tested data, logging, human oversight

START HERE

Let's Discuss Responsible AI for Hiring

A conversation about your hiring stack, your regulatory footprint, and where governance will reduce the most risk. No pitch decks. No proposals on the first call.

Request a Consultation