We use cookies to improve your experience and analyse site traffic.
We use cookies to improve your experience and analyse site traffic.
AI governance documentation is not a formality — it is the mechanism by which organisations demonstrate that their AI systems are safe, transparent, and operating within the boundaries the regulation sets.
The EU AI Act does not exist to generate paperwork. It exists to ensure that AI systems affecting people's lives are documented, understood, and accountable. We take that seriously — and we built a platform that reflects it.
What We Believe
Every security feature — SSO, MFA, comprehensive audit logging, tenant isolation, encryption at rest and in transit — is available to every customer on every plan. We will not use your compliance obligations as leverage to upsell you security.
The EU AI Act is 144 pages. Cross-referencing Articles, Annexes, and recitals is the platform's job, not yours. Every questionnaire section, every output, and every gap flag traces back to a specific regulatory obligation.
The AI Regulatory Navigator is advisory. It says so — clearly and persistently. Every citation is validated against the EU AI Act corpus before it reaches you. The formal risk classification is a separate, user-driven step.
All infrastructure runs in EU regions. All LLM inference uses the Anthropic EU endpoint. A GDPR Article 28 Data Processing Agreement is in place. EU data residency is the default and the only option.
Secure by Design
Built in accordance with NCSC Secure by Design principles. We take ownership of your security outcomes.
MFA enforced by default. Phishing-resistant MFA (passkeys, FIDO2) supported. SSO available at all tiers. No insecure configurations enabled by default.
Public vulnerability disclosure policy. Tenant-accessible audit logging with 10-year retention. No security theatre.
The burden of securing the platform sits with us. We report on our security posture publicly and respond to vulnerability reports within defined SLAs.
Infrastructure
Every infrastructure decision made with EU data residency, security, and long-term maintainability in mind.
| Technology | Role |
|---|---|
| Next.js | App Router · Server Components |
| TypeScript | Strict mode · End to end |
| PostgreSQL | Relational data · Neon EU |
| Drizzle ORM | Type-safe queries |
| Anthropic Claude | LLM inference · EU endpoint |
| Vercel | EU region hosting |
| Zitadel Cloud | OIDC authentication |
| Stripe | Subscription billing |
| Sentry | Error tracking · EU region |
| Pino | Structured JSON logging |
| shadcn/ui | Component library · Radix |
| Tailwind CSS | Utility-first styling |
No team members to display.
Intellectual Property
Standard Intelligence holds a perpetual, royalty-free licence to patent GB2604505.4, co-invented by the founding team. The patent covers novel approaches to AI governance automation and compliance verification.
GB2604505.4
Roadmap
The release schedule is governed by the EU AI Act enforcement calendar. Every milestone is tied to a regulatory date.
Until enforcement
56
Days
06
Hours
09
Minutes
02
Seconds
Certification Module with Declaration of Conformity output, Provider–Deployer Handover pack, and custom branding.
Full AISDP workflow available to early-access tenants. Begin documentation before the 2 August enforcement deadline.
Public API, EU database integration, task export to Jira/Trello/Asana, Regulatory Corpus Editor.
In discussions with design partners onboarding ahead of the August 2026 deadline. The assessment is free and yours to keep.