Fail-closed defaults. If your compliance check fails or times out, the agent shouldn't silently continue. That's the gap most teams miss.
Machine-readable marking that's actually machine-readable. Not a disclaimer in the chat window — structured metadata a regulator's tooling can parse programmatically.
Tamper-evident audit trails. Append-only, hash-chained, so you can prove nothing was deleted or reordered after the fact. This is the difference between "we logged it" and "we can prove we logged it."
Cross-regulation awareness. If you're in fintech, DORA and AI Act overlap. If you handle personal data, GDPR and AI Act overlap. The compliance surface is the union, not the intersection.
The teams I've seen doing this well treat it as an engineering problem from day one — SDK presets, CI/CD integration, automated conformity checks — not a quarterly legal review.