EU AI Act Article 27 Fundamental Rights Impact Assessment generator. EDPB DPIA crosswalk, EU Charter mapping, HMAC-signed compliance attestations. By MEOK AI Labs.
Project description
meok-fria-generator-mcp
EU AI Act Article 27 Fundamental Rights Impact Assessment (FRIA) generator. EDPB DPIA crosswalk, EU Charter of Fundamental Rights mapping, HMAC-signed compliance attestations.
By MEOK AI Labs · MIT licensed · runs as an MCP server inside Claude Code, Cursor, Cline, Windsurf, etc.
Why this exists
EU AI Act Reg (EU) 2024/1689 Article 27 mandates that public-law bodies and private operators providing public services complete a Fundamental Rights Impact Assessment before deploying a high-risk AI system.
The official EU AI Office FRIA template is not yet published (April 2026). Existing free tools (ALIGNER, AIActStack, kla.digital) are template generators — none are MCP-callable, none ship signed attestations.
This MCP gives compliance teams a structured, callable, signed-FRIA workflow today, mapped against the EDPB harmonised DPIA template (14 April 2026) so the same evidence pack satisfies both AI Act and GDPR auditors.
Tools
| Tool | Use |
|---|---|
is_fria_required |
Decide if FRIA is mandatory under Article 27(1) for a given deployment |
generate_fria_template |
Produce a structured FRIA template with all 7 mandatory Article 27 fields |
map_to_edpb_dpia |
Crosswalk FRIA fields ↔ EDPB DPIA sections to share evidence |
signed_fria_attestation |
HMAC-sign your completed FRIA via meok-attestation-api |
list_charter_articles |
EU Charter of Fundamental Rights articles relevant to AI deployer FRIA |
list_mandatory_triggers |
Conditions that trigger Article 27(1) FRIA obligation |
pricing |
Pricing tiers (free / £79 Pro / £1,499 Enterprise / from £5K bespoke) |
Install
pip install meok-fria-generator-mcp
Then in your Claude Code / Cursor MCP config:
{
"mcpServers": {
"meok-fria-generator": {
"command": "python",
"args": ["-m", "meok_fria_generator"]
}
}
}
Example use
"Is a FRIA mandatory if we're a UK public-sector recruitment provider deploying a CV-screening AI in EU markets? Annex III categories: employment-and-workforce."
Claude calls is_fria_required(...) and returns a structured decision: YES, mandatory because (a) provides-public-service AND (b) Annex III high-risk category. Returns the rationale, the regulatory basis, and the deadline (before first deployment).
"Generate a FRIA template for Acme Public Services Ltd's CV-screening AI. Expected 50,000 candidates/year, deployed in DE, FR, IE."
Claude returns a structured template with all 7 Article 27 fields, EU Charter article references, EDPB DPIA crosswalk, and review-trigger schedule.
Article 27 mandatory triggers
FRIA is mandatory when:
- The deployer is a body governed by public law (Member State or EU institution)
- The deployer is a private operator providing public services (recruitment for public sector, education, healthcare, etc.)
- The deployment is a high-risk Annex III system
- Always-mandatory categories (regardless of organisation type):
- Credit scoring (Annex III §5(b))
- Life/health insurance pricing (Annex III §5(c))
Compliance posture
- EU AI Act Reg (EU) 2024/1689 Article 27 (FRIA — mandatory for public-sector + Annex III deployers)
- EU Charter of Fundamental Rights (cross-referenced for risk identification)
- EDPB Harmonised DPIA Template (14 April 2026 — for GDPR Article 35 overlap)
- Article 14 (human oversight requirements feeding into FRIA section (e))
Pricing
- Free — full toolset, public attestation API
- £79/mo Pro — your own HMAC signing key + custom verify domain + FRIA versioning
- £1,499/mo Enterprise — multi-deployment FRIA management + SLA + reseller white-label
- from £5,000 bespoke — self-hosted attestation + GRC integrations + on-site workshop
Buy: https://meok.ai/pricing · Contact: nicholas@csoai.org
License
MIT. © 2026 Nicholas Templeman / CSOAI LTD (UK Companies House 16939677).
See also
- meok-eu-ai-act-compliance-mcp — broader EU AI Act compliance toolkit
- meok-dpia-edpb-template-mcp — EDPB harmonised DPIA template
- meok-attestation-api — public verifiable attestation infrastructure
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file meok_fria_generator_mcp-1.0.0.tar.gz.
File metadata
- Download URL: meok_fria_generator_mcp-1.0.0.tar.gz
- Upload date:
- Size: 9.8 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
08c7950c069121dff7173f13a0fb65f755501f376d08740fde7e48c0ce53bc1f
|
|
| MD5 |
87c5157afc0c9dbcff02a1e6f7885503
|
|
| BLAKE2b-256 |
e0ca729a8931a10dfce856c2cba4a37ed48fca7b3b913b97c522f4dc9413016f
|
File details
Details for the file meok_fria_generator_mcp-1.0.0-py3-none-any.whl.
File metadata
- Download URL: meok_fria_generator_mcp-1.0.0-py3-none-any.whl
- Upload date:
- Size: 10.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
ad5b1a019f4d980e7451ccae8dd00140aa2795e2114a86453506424fa9498d2a
|
|
| MD5 |
0e918f415996a94843e66a80538949c9
|
|
| BLAKE2b-256 |
f732661fbcd34d78c89199e6ab34943ca85b869ec7581a805142ed005824c9ba
|
