Skip to content
TECHNOMATON | Docs SAI Certified Trainers

Training Process

Why training is mandatory

AI Act Art. 4 explicitly states:

Providers and deployers of AI systems shall take measures to ensure, to their best extent, a sufficient level of AI literacy of their staff and other persons dealing with the operation and use of AI systems.

This provision has been in effect since 2 February 2025 for all organizations in the EU, regardless of size or sector. Training is not optional — it is a legal requirement.

GDPR Art. 39 further states that the DPO (Data Protection Officer) is tasked with “awareness-raising and training of staff involved in processing operations”.

What the training includes

Presentation (T1)

  • 24 slides covering complete AI literacy
  • What is AI, types of AI systems, practical examples
  • Regulatory framework — AI Act and GDPR made accessible
  • Prohibited practices (Art. 5) — what you must not do
  • Risk classification — how to identify a high-risk system
  • Company rules — what applies in your organization
  • DOs and DON’Ts — practical cheat sheet

Knowledge Quiz (T2)

  • 18 questions with multiple choice
  • Pass threshold: 80% (15/18 correct)
  • Each question includes an explanation of the correct answer
  • Questions cover all topics from the presentation

Two training modes

Facilitated mode

Trainer -> Presentation (T1) -> Discussion -> Quiz (T2) -> Evaluation
  • A trainer (internal or consultant) delivers the presentation
  • Space for questions and discussion
  • The quiz is completed on-site
  • Suitable for: smaller teams, key roles, first-time training

Distributed mode

Employee -> Quiz link -> Self-study (T1) -> Quiz (T2) -> Result
  • The employee receives a link to the quiz (unique URL with configuration)
  • Studies the materials independently
  • Completes the quiz online
  • Results are automatically recorded
  • Suitable for: larger organizations, remote teams, recurring training

Evidence trail

Per-employee record

For each employee, the following is recorded:

  • Name and role
  • Date and time of quiz completion
  • Score (number correct / total)
  • Result (pass / fail)
  • Unique result code

Result code with HMAC

Each result generates a unique code in the format:

L1Q-{company}-{score}/{total}-{timestamp}-{hmac}
  • HMAC (Hash-based Message Authentication Code) ensures integrity
  • The code cannot be forged — any modification changes the HMAC
  • Serves as tamper-proof evidence of training completion
  • Can be verified retrospectively without access to the system

Export

Results are exported as part of the complete L1 package (ZIP):

  • Per-employee records (individual results)
  • Summary table of all training
  • Metadata (date, quiz version, pass threshold)

Frequently asked questions about training

Must all employees undergo training? AI Act Art. 4 refers to “staff and other persons dealing with the operation and use of AI systems”. In practice, this means everyone who uses AI tools at work.

What if an employee fails the quiz? They can retake it. There is no limit on retakes. What matters is that they ultimately demonstrate understanding.

How often should training be repeated? The law does not specify a frequency. Best practice: at least once a year and when significant changes occur (new AI tool, policy change, legislative update).

Is the quiz alone sufficient without the presentation? Technically yes — the law requires “AI literacy”, not a specific format. But the combination of presentation + quiz = the strongest audit evidence.