We classify your AI use cases against the EU AI Act, build your AI register, write your DPIA templates and stand up your governance committee — so your compliance team has receipts, not headaches.
We catalogue every AI use case in your company — ChatGPT, Copilot, Bedrock, custom models — and classify each one against the AI Act's risk tiers. You know exactly which systems need what.
A live AI register your team maintains, plus DPIA and AI Impact Assessment templates ready for your DPO. Built once, reusable for every new AI rollout.
We help you stand up an internal AI governance committee, draft its charter, define escalation paths and review cadence, and run the first two meetings with you.
Two-week sprint to discover every AI use case across your company and classify each against the AI Act.
We deliver your AI register, DPIA template, vendor risk assessment template, and an Acceptable Use Policy in DE+EN.
Charter, roles, cadence, escalation paths — and we run the kickoff meeting with your stakeholders.
Ongoing reviews of new AI use cases, regulatory monitoring, and a quarterly risk-tier re-assessment.
Since August 2024 the EU AI Act is reality. Bans on unacceptable risks have applied since February 2025, GPAI obligations since August 2025, high-risk requirements from August 2026. Penalties reach up to €35M or 7 % of global annual revenue — whichever is higher. Most mid-sized companies already use AI (ChatGPT, Copilot, custom bots) and don't know which risk tier they fall into. We bring clarity, documentation and a governance process you can actually live with.
Three typical starting points from the German Mittelstand.
Risk assessment with ChatGPT-based tooling — high-risk system under the AI Act. Regulator asks for documentation.
150+ employees use Copilot, ChatGPT and Gemini without clear rules. Works council demands a position on AI Act conformity.
AI-supported triage (high-risk application). Hospital owner requires GPAI and high-risk documentation before rollout.
Compliance isn't a document — it's a process. We build it so your team can run it without the consulting clock ticking forever.
Every AI use case in your business gets classified against the four AI Act risk tiers: minimal, limited, high, unacceptable. You know exactly which system triggers which obligations.
AI register, DPIA templates, technical documentation, vendor risk assessment. All in DE+EN, all reusable for every new AI rollout.
Quarterly re-classification of new systems, regulatory update tracking, audit prep. Compliance that grows with your business.
The AI Act requires you to train staff on AI risks. We supply the material, attendance tracking and proof — all audit-ready.
scoped to complexity
A governed AI environment on your own AWS account: Bedrock with access to Claude and OpenAI (ChatGPT) models, Guardrails, audit logs and cost controls — set up in 4 weeks.
A digital team member that knows all your company documents and gives your staff the right answers instantly — around the clock.
A management platform for AI agents: deploy new agents independently, assign tasks, monitor results — no external vendor required.
AI inside your own AWS environment — your keys, your data, no traffic to the public internet. For finance, healthcare and the public sector.
Stop paying for what you don't need. Audit your AI spend, implement caching, set budgets, and assign costs back to teams.
We test your AI systems the way an attacker would: prompt injection, data leakage, agent abuse and MCP server hardening — with a fix list you can act on.
30 minutes, no obligation, no cost. We'll honestly tell you if and how we can help.