Our Frameworks 

Black Box Audit Protocol

Your vendors claim proprietary technology. Your regulators expect you to demonstrate oversight regardless.

This protocol provides a structured audit methodology for non-technical compliance teams. It tests observable AI behaviour, documents findings and produces the audit trail that satisfies EU AI Act transparency obligations for Irish firms and SM&CR reasonable steps requirements for UK firms.

The Data Provenance & Integrity Register

You cannot govern data you have not mapped.

This register documents the complete data lifecycle of every AI system you operate. Source, transformation, legal basis and protection controls. Aligned to EU GDPR and the Irish Data Protection Act 2018 for firms regulated by the Central Bank of Ireland. Aligned to UK GDPR, the Data Protection Act 2018 and the Data Use and Access Act 2025 for FCA regulated firms.

The AI Governance Operating Manual

Governance requires named people, defined processes and documented evidence.

This manual links every AI system to a named accountable individual, defines oversight by risk tier and sets out vendor management and incident response obligations. For Irish firms, it maps accountability to Persons in Charge under the IAF and SEAR. For UK firms, it satisfies SM&CR accountability mapping under SYSC 4.7 and Consumer Duty evidencing under PRIN 2A.