AI_PLUMBER
SYSTEM_INDEX
UPLINK STATUS: OPTIMIZED
ACCESS_LEVEL: ADMIN_ROOT
SESSION_ID: 0x99_PIPE_FLOW
LAST_SYNC: 22.03.2026_04:00_GMT
GITHUB MEDIUM SUBSTACK
©2026 AI_PLUMBER_CORP
architecture AI PLUMBER
Home / Case Studies / De Lijn
Public Transport · Belgium

De Lijn: EU AI Act Aligned Transport AI

EU AI Act| C-Suite Governance| Board Approved
129%Projected ROI
5,000+FTE Impact
3-YearRoadmap
BoardApproved

Context

De Lijn, Belgium’s largest public transport operator, needed an AI strategy that could survive regulatory scrutiny under the incoming EU AI Act. With over 5,000 employees and operations spanning the entire Flemish region, any AI deployment would touch high-risk classification areas: public safety, accessibility, and critical infrastructure. The board required a roadmap that was not just technically sound, but governance-first — provably compliant before a single model went into production.

Regulatory Constraint

  • EU AI Act — high-risk classification for transport and public safety AI systems
  • GDPR — passenger data protection across all touchpoints
  • Flemish government oversight — public sector accountability and procurement rules
  • Board-level governance — C-suite sign-off required for every AI initiative

Architecture Decision

Governance-first roadmap with phased deployment across three horizons. Each AI initiative was classified by EU AI Act risk tier before any technical work began. The roadmap mapped every use case to its regulatory obligation, not just its business value.

Governance Controls

01EU AI Act risk-tier classification for every proposed AI use case before development
02Conformity assessment documentation template for high-risk systems
03Human oversight requirements defined per risk tier — no autonomous decisions in high-risk
04Data governance framework with GDPR-aligned retention and processing boundaries
05Quarterly board reporting with kill/continue gates on each AI initiative

Three-Horizon Roadmap

H1Operational Intelligence

Internal-facing AI: route optimization, maintenance prediction, fleet management. Low-risk under EU AI Act. Quick wins that build organizational confidence and data infrastructure.

H2Passenger-Facing AI

Real-time information, accessibility features, demand-responsive services. Medium-to-high risk. Requires conformity assessments and human oversight protocols.

H3Autonomous Operations

Autonomous vehicle integration, dynamic network management. Highest risk tier. Full conformity assessment, continuous monitoring, and mandatory human-in-the-loop.

Lesson

The EU AI Act is not an obstacle — it is an architecture constraint. By classifying every AI initiative by risk tier before development, De Lijn avoided the trap of building first and retrofitting compliance later. The governance framework became the roadmap itself. The board approved a 3-year strategy with 129% projected ROI precisely because it was provably compliant from day one.

→ Najm Insurance — SAMA-Compliant AI Claims Processing → US Restaurant Intelligence — 200 to 3 Agents → The AI Plumber Framework

Need EU AI Act-aligned architecture?

Book Architecture Review →