The EU has already built the legal scaffolding for AI oversight. The AI Act is in statute, the AI Office exists, and Brussels has started to define how frontier systems should be governed. But the most important operational question remains unresolved: how do regulators actually inspect models they cannot freely access?

That gap is now visible in real time. OpenAI has offered the European Commission access to GPT-5.5 Cyber, a move that EU Commission spokesperson Thomas Regnier described as a welcome sign of “transparency” and intent to share the model with the Commission. The offer matters less as a courtesy than as a stress test of the governance model itself. If regulators need direct exposure to a frontier system to understand its deployment and security posture, then oversight depends not just on law, but on a vendor deciding to open the door.

That is the uncomfortable reality Brussels is running into. The AI Act establishes obligations and enforcement structures, but hands-on access to frontier models is still scarce. In practice, that leaves the EU reliant on voluntary disclosure, negotiated access, and whatever technical interface a provider is willing to support. OpenAI’s offer makes that dependency explicit.

The door Brussels needs: frontier AI testing hinges on access

The immediate regulatory value of access is straightforward. Without direct interaction with a model, oversight tends to rely on documentation, claims about safety processes, and secondary evidence. With access, regulators can observe deployment behavior, probe security-sensitive paths, and assess whether a model’s real-world operation matches its stated controls.

That distinction matters most for frontier systems because the risks regulators care about are often not visible from policy papers alone. Security testing, abuse resistance, and deployment constraints are all easier to evaluate when a regulator can inspect the system directly rather than infer behavior from vendor summaries. In that sense, access is not a symbolic perk; it is the difference between paper compliance and technical scrutiny.

OpenAI’s offer to the European Commission is therefore significant even before any technical testing begins. It signals that Brussels has leverage only when providers choose to cooperate. According to the Commission, talks with OpenAI are already underway and will continue this week. The exact recipients have not yet been finalized, but Regnier identified ENISA, the AI Office, and DG Connect — including its cybersecurity directorate — as possible recipients.

That list is revealing. It suggests the Commission is treating access not as an abstract policy privilege but as a functional security workflow involving institutions that can evaluate cyber risk, model governance, and deployment controls. The regulatory question is no longer whether the EU has a legal mandate. It is whether it can assemble the technical access needed to exercise that mandate credibly.

What OpenAI’s offer actually changes

If the Commission receives access, the practical effect would be to move oversight closer to the model itself. Regulators would be able to monitor deployment conditions and address security concerns more directly, rather than relying entirely on provider reporting. That could matter for assessing prompt injection pathways, misuse resistance, model behavior under adversarial inputs, and the adequacy of guardrails around sensitive capabilities.

But the offer does not resolve the main governance issues. The scope of access is still unclear. The institutional recipients are still under discussion. And the procedures that would govern how regulators evaluate the model — what inputs they can use, what outputs they can retain, how findings are recorded, and who is accountable for the results — are not yet formalized in the available reporting.

That is the core problem for a regime built around technical oversight. Access without procedure can become noisy, inconsistent, or too vendor-specific to scale. If every frontier model requires a bespoke arrangement, then Brussels risks creating a system that depends on ad hoc cooperation rather than repeatable oversight.

OpenAI’s transparency push is useful precisely because it exposes that dependency. It shows what the EU can do when a provider agrees to open its model, but it also shows how little authority regulators have if the provider declines.

Anthropic and the cooperation bottleneck

OpenAI is not the only company in this picture, and that is what makes the bottleneck structural rather than isolated. The reporting indicates that cooperation from Anthropic is proving more difficult. That matters because frontier AI governance cannot be based on a one-off relationship with a single vendor.

If access is negotiated case by case, then regulatory power will vary across providers, model families, and timing. One company may grant the Commission visibility into a frontier model while another resists or slows access. The result is uneven oversight, with regulators able to inspect some systems more thoroughly than others.

That inconsistency is itself a governance risk. It creates the possibility that the most consequential models are not the ones most rigorously evaluated, but the ones whose vendors are most willing to cooperate. For Brussels, the challenge is not merely persuading OpenAI to share access. It is ensuring that frontier-model governance does not collapse into a voluntary-access regime.

Technical implications for regulators and vendors

From an engineering perspective, regulator access changes what compliance actually means.

First, it raises the bar for testing. Regulators would need structured ways to evaluate model behavior under controlled conditions, including security-focused probes and deployment-oriented checks. That requires standardized evaluation harnesses rather than improvised demos. Without a consistent harness, different regulators could reach different conclusions from the same system, and providers could optimize for the test rather than the underlying risk.

Second, it implies more formal data-sharing protocols. If ENISA, the AI Office, or DG Connect receive access, the process will need clear rules on what can be inspected, what can be copied, and how sensitive findings are handled. Those rules matter because frontier models can expose operational details that are themselves security-relevant.

Third, it clarifies accountability. When regulators and providers test the same system, the boundary between compliance support and supervision must be explicit. Otherwise, providers may treat access as a one-time transparency gesture, while regulators need it as part of an ongoing risk-management process.

The direct correlation here is simple: the more access regulators have, the more precisely they can test governance, cybersecurity controls, and deployment risk. The less access they have, the more they have to rely on indirect evidence and voluntary disclosures. That is not a minor operational distinction; it changes the quality of the risk picture.

Market, product, and policy implications

The business implications are already visible. Frontier-model developers should assume that EU-facing product strategy will increasingly be shaped by demands for disclosure, testing, and auditability. If access can be granted, the pressure will be to make it structured. If access is refused, the pressure may shift toward more intrusive reporting requirements or slower deployment into regulated markets.

That creates a strategic vulnerability for vendors. Dependence on voluntary access means a company can slow or withhold oversight at the exact moment regulators are trying to assess a new capability. Even if that is not the intent, the asymmetry is real: the provider controls the door, while the regulator is supposed to be the party doing the inspection.

For Brussels, the policy answer is not to abandon access-based oversight. It is to standardize it. The EU needs common evaluation harnesses, clear governance for who gets access, and procedural rules that make frontier-model testing repeatable across providers. ENISA and DG Connect are natural candidates for that role because the oversight problem is as much technical as legal.

The broader lesson is that the AI Act may be in force, but frontier governance is still being negotiated at the level of operational access. OpenAI’s offer to the Commission shows that technical regulation is possible when companies cooperate. Anthropic’s slower cooperation shows why that cannot be the foundation of the system. If Brussels wants meaningful oversight of frontier AI, it will need more than statutes. It will need standardized inspection pathways that vendors cannot turn on and off at will.