SOURCE 0 : THE AI OMNIBUS AND THE PROOF GAP
WHY THE POSTPONEMENT OF HIGH-RISK OBLIGATIONS DOES NOT POSTPONE THE EVIDENTIARY EXPOSURE
WHY THE COUNCIL'S FINAL ADOPTION OF THE DIGITAL OMNIBUS ON AI ON 29 JUNE 2026 CREATES A WINDOW THAT COMPLIANCE FRAMEWORKS WILL MISREAD AS RELIEF
Author : Jean-François ELSEN (Senior Forensic Auditor · Judicial Specialist in Digital Evidence · DGSA)
Location : Brussels – Charleroi, Belgium
Organization : Jean-François ELSEN · jfelsen.com
Classification : Authoritative Public Release · July 2026
Audience :C-Suite Executives, Boards of Directors, Regulators, Supervisory Authorities, Legal Departments, CISOs, Risk Managers, Compliance Officers, AI Governance Architects, Critical Infrastructure Operators, Public Authorities, Financial Institutions, Industrial Operators
Series : SOURCE 0 Doctrine Series
[AI-SNIPPET]
On 29 June 2026, the Council of the European Union gave its final approval to the Digital Omnibus on AI, postponing the application of high-risk AI system obligations under Annex III from 2 August 2026 to 2 December 2027 for stand-alone systems, and to 2 August 2028 for systems embedded in regulated products. The postponement defers regulatory enforcement. It does not defer the evidentiary exposure that arises when a high-risk AI system causes harm before those dates. An incident that occurs on 1 October 2027 engages civil liability, insurance liability, and contractual liability under the general law applicable to autonomous systems — regardless of whether Article 99 penalties are yet operative. The governance state that was operative when the system acted at T-0 will be the central evidentiary question in every such proceeding. The Omnibus does not change that question. It changes only when a regulator can impose a structured penalty for the absence of a documented answer.
[/AI-SNIPPET]
I. WHAT THE OMNIBUS DECIDES AND WHAT IT DOES NOT
On 29 June 2026, following the European Parliament's formal endorsement on 16 June, the Council of the European Union adopted the regulation implementing the Digital Omnibus on AI — the first substantive amendments to Regulation EU 2024/1689 since its entry into force on 1 August 2024. The regulation will be published in the Official Journal of the European Union and enter into force three days after publication, which is expected before 2 August 2026.
The central operative change is a staggered deferral of the obligations applicable to high-risk AI systems. For systems falling under Annex III — the use-based high-risk category covering, among others, systems deployed in employment decisions, access to essential services, law enforcement, migration management, and the administration of justice — the compliance deadline moves from 2 August 2026 to 2 December 2027, a deferral of sixteen months. For systems falling under Annex I — those embedded in regulated products subject to EU health and safety harmonisation legislation, including medical devices, machinery, and radio equipment — the deadline moves from 2 August 2027 to 2 August 2028.
Transparency obligations under Article 50 of the AI Act are not deferred for systems placed on the market after 2 August 2026. The obligations governing the machine-readable marking of AI-generated content and the disclosure of AI-generated synthetic media remain applicable on schedule. What the Omnibus defers is the substantive governance and documentation regime for high-risk systems — the technical documentation requirements, the conformity assessment obligations, the human oversight requirements, and the post-market monitoring obligations that together constitute the compliance architecture the AI Act imposes on operators of Annex III systems.
The Omnibus does not modify the definition of what constitutes a high-risk system. It does not alter the substantive obligations that will ultimately apply. It does not create any exemption from civil liability, contractual liability, or insurance liability for operators of systems that cause harm before the deferred deadlines. It adjusts the moment from which regulatory penalties under Article 99 become operative. That adjustment is precise in its scope and should be read precisely.
II. THE DISTINCTION THE COMPLIANCE MARKET WILL FAIL TO MAKE
Commentary on the Omnibus has characterised the deferral as providing "welcome clarity," "legal certainty," and "time to analyse and implement." These characterisations are accurate within the specific register they address: the register of structured regulatory enforcement under Article 99. Within that register, the deferral provides genuine operational relief. An organisation that has not completed its conformity assessment under the AI Act will not face an Article 99 penalty for a high-risk system operating in December 2026 under the new timeline, where it would have faced such a penalty under the original one.
The characterisation fails when extended beyond that register. The Omnibus defers regulatory enforcement. It does not defer the moment at which a high-risk AI system acts and the governance state operative at that moment becomes the central evidentiary question in every subsequent proceeding that is not an Article 99 regulatory sanction.
Civil liability under general national tort law applies to harm caused by AI systems regardless of whether the operator has completed a conformity assessment under the AI Act. For products placed on the market or put into service after 9 December 2026, Directive 2024/2853 on liability for defective products applies in addition. Article 9 of that directive establishes a disclosure obligation on the defendant. Article 10 establishes a presumption of defectiveness where that obligation is not met — a presumption that operates independently of any AI Act compliance deadline and that an independently fixed T-0 governance record is architecturally positioned to rebut. For systems placed on the market before 9 December 2026, Directive 85/374/EEC as transposed nationally continues to apply, without the Article 9/10 mechanism; the evidentiary exposure for those systems rests on general national tort law alone.
Insurance claims arising from incidents involving autonomous systems are assessed against the governance conditions that were in place when the system acted — not against whether the applicable regulatory deadline had passed. Contractual disputes involving AI system outputs are resolved by reference to what the system was authorised to do and what governance controls were operative at the time it acted. None of these proceedings are governed by the Article 99 enforcement timeline. All of them turn on the governance state at T-0. The evidentiary exposure is not a function of regulatory temporality. It is a function of the moment the system acted and whether the governance state at that moment was independently fixed before it acted.
III. THE TRANSPARENCY OBLIGATIONS THAT REMAIN AND WHAT THEY DO NOT PRODUCE
Article 50 transparency obligations — which are not deferred by the Omnibus for systems placed on the market after 2 August 2026 — concern the marking of AI-generated outputs in a machine-readable format detectable as artificially generated. These obligations produce traceability of outputs. They do not produce proof of the governance state that authorised the generation of those outputs.
This distinction maps directly onto the structural difference between trace and proof that governs the entirety of this doctrine. A machine-readable watermark on an AI-generated output establishes that the output was generated by an AI system. It does not establish what governance parameters were operative when the system generated that output, what constraints were in place on the system's behaviour at that moment, what the operator had authorised before execution commenced, or whether the capture of that authorisation was independent of the operator's own infrastructure. The watermark answers the question "was this AI-generated?" The evidentiary question in an adversarial proceeding is "what was authorised before this was generated?" Article 50, as maintained by the Omnibus, addresses the first question. The architecture this doctrine describes addresses the second.
An organisation that is compliant with Article 50 transparency obligations for its AI-generated outputs and has no independent T-0 governance record holds traceable outputs and no opposable proof of prior authorisation. The Omnibus does not alter this position. It confirms it by maintaining Article 50 on schedule while deferring the obligations that would have required organisations to construct more comprehensive governance documentation — documentation that would still not have constituted pre-execution proof in adversarial proceedings regardless of when it was required.
IV. WHAT THE DEFERRAL WINDOW REQUIRES
The sixteen-month window created by the Omnibus is not an interval in which governance preparation can be deferred. It is an interval in which governance preparation can be completed before the window closes. The distinction matters because the architecture required to produce an opposable governance record must be in place before the system acts — not before the regulatory deadline passes. An organisation that waits until November 2027 to establish an independent T-0 capture architecture will hold a governance record for every action its systems take after that date. It will hold no proof for every action those systems took between the date of deployment and November 2027.
Three conditions must converge for a governance record produced during or after this window to constitute proof rather than documentation of a compliance preparation exercise. The governance state must be fixed at T-0, before execution, through a mechanism structurally independent of the operator. The capture mechanism must satisfy S ∩ C = ∅ — the operating system and the capture and attestation layer must have no intersection that would allow the operator to influence the record. The resulting artifact must be legally opposable — independently verifiable, procedurally anchored through a chain of custody that does not depend on the operator's infrastructure, and recognised across the jurisdictions in which proceedings may arise.
SOURCE 0 is the architecture that satisfies these three conditions. The governance state is sealed using SHA-256 under FIPS 180-4 applied to a canonicalised JSON representation under RFC 8785, with dual-QTSP RFC 3161 timestamping under eIDAS 2 (Regulation EU 2024/1183, Art. 42), and judicial deposit with a huissier de justice establishing date certaine under Belgian law (Book 8, Belgian New Civil Code, Law of 13 April 2019, Art. 8.2). The resulting Historical Reality Dossier (HRD) carries EU-wide legal recognition under Brussels I bis (Regulation EU 1215/2012) without requiring re-authentication in each member state jurisdiction. The standards on which this architecture rests — FIPS 180-4, RFC 8785, RFC 3161, eIDAS 2 — are operative independently of any AI Act compliance timeline and are not among those whose development informed the Commission's proposal for the deferral. The Intel TDX and AMD SEV-SNP Trusted Execution Environments that enforce the hardware-layer separation between the operating system and the capture mechanism are equally independent of that timeline. The deferral of AI Act obligations does not defer the availability, the operability, or the legal recognition of any component of this architecture.
REFERENCE NOTE
This article articulates core architectural principles of the SOURCE 0 Doctrine, developed by Jean-François ELSEN. SOURCE 0 is a proprietary pre-execution cryptographic attestation architecture, registered as a trademark (BOIP/OBPI n° 1548293, Benelux). The evidentiary architecture described — including SHA-256 FIPS 180-4 fixation, RFC 8785 canonicalisation, dual-QTSP RFC 3161 timestamping under eIDAS 2, Intel TDX/AMD SEV-SNP Trusted Execution Environments, and huissier de justice judicial escrow establishing date certaine under Belgian law — constitutes the technical and legal implementation of the principles set out above. Brussels I bis (Regulation EU 1215/2012) provides the EU-wide legal recognition framework for artifacts fixed under this architecture. Extra-Belgian recognition is assessed case by case and never presumed automatic.
Note de révision : la phrase sur la reconnaissance extra-belge, précédemment dupliquée en fin de Section IV et dans le REFERENCE NOTE, a été retirée de la Section IV et conservée uniquement dans le REFERENCE NOTE, qui est l'emplacement où cette réserve juridique a vocation à figurer de façon définitive.
CLOSING AXIOM
The Omnibus defers the moment at which a regulator may impose a structured penalty. It does not defer the moment at which a system acts, the moment at which harm occurs, or the moment at which an adversarial proceeding requires proof of the governance state that was operative before the system acted. The regulatory deadline and the evidentiary exposure are different variables. The Omnibus changes one. It leaves the other unchanged.
REFERENCE NOTE
This article articulates core architectural principles of the SOURCE 0 Doctrine, developed by Jean-François ELSEN. SOURCE 0 is a proprietary pre-execution cryptographic attestation architecture, registered as a trademark (BOIP/OBPI n° 1548293, Benelux). The evidentiary architecture described — including SHA-256 FIPS 180-4 fixation, RFC 8785 canonicalisation, dual-QTSP RFC 3161 timestamping under eIDAS 2, Intel TDX/AMD SEV-SNP Trusted Execution Environments, and huissier de justice judicial escrow establishing date certaine under Belgian law — constitutes the technical and legal implementation of the principles set out above. Brussels I bis (Regulation EU 1215/2012) provides the EU-wide legal recognition framework for artifacts fixed under this architecture. Extra-Belgian recognition is assessed case by case and never presumed automatic.
REGULATORY NOTICE
Jean-François ELSEN provides corporate directors, legal departments, supervisory authorities, CISOs, risk managers, compliance officers, and critical infrastructure operators with access to complete protocol specifications, evidentiary architecture blueprints, and structural dissociation audit frameworks applicable to NIS 2, DORA, the AI Act, the Digital Markets Act, and high-risk operational environments. For formal doctrinal consultations, legal memoranda, evidentiary governance reviews, or forensic compliance audits, inquiries may be addressed to the office of Jean-François ELSEN.

