Don't book this if
- 01 You're still at "is AI right for us?": start with a Discovery Sprint.
- 02 You need a technical deployment review: use Rapid Secure AI POC.
- 03 You want a certification or stamp: this is alignment work, not a certificate.
ServiceGovern
A structured review against the five governance frames that matter.
A short-form review of your AI plans (or existing AI footprint) against GDPR, ethics, data quality, security, and data sovereignty, with a hand-to-compliance report at the end.
Terms Fixed fee at kickoff. Scope covers one AI footprint (one product line, one department, or one adoption plan).
01 · Fit
Who it's for. Who it isn't.
Book this when
- 01 You have AI in production or about to be, and you haven't formally reviewed governance.
- 02 A procurement, board, or audit event has triggered "can we defend this?"
- 03 You operate in a regulated sector and need the evidence on file.
02 · Deliverable
What lands on your desk.
-
01
Assessment report. Findings per framework (GDPR, AI ethics, data quality, security, sovereignty) with evidence and gaps.
-
02
Gap register with severity ratings, so the compliance team knows what to fix first.
-
03
Remediation priority list. Ordered by effort and impact. Handed to the people who will action it.
-
04
Readout session with the owners of each framework inside your organisation.
03 · Phases
How it runs.
Phase 01
Intake + documentation review
What AI is already in play, what policies exist, what audit triggers are in flight.
Phase 02
Stakeholder interviews
DPO, security lead, AI owner, procurement. Short, structured, on-record.
Phase 03
Framework-by-framework assessment
GDPR, ethics, data quality, security, sovereignty. Evidence, gaps, severity.
Phase 04
Written report + readout
Joint session with compliance and operations. Report handed over for the file.
04 · Sample
What the output looks like.
Anonymised preview of an AI Governance Assessment report — five frames, traffic-light status, prioritised remediation list. Full example report at /example-report/.
ALT HORIZON · AI GOVERNANCE ASSESSMENT
Five-frame review · executive summary
-
Action now
01 · GDPR & data protection
Personal data inferred from chat logs not in original ROPA. Lawful basis unclear for one workflow.
-
Next quarter
02 · Ethics & bias
No documented bias review on the triage classifier. Eval set may under-represent two demographic groups.
-
Holding
03 · Data quality
Training data lineage documented. Refresh cadence agreed with data owners. Audit trail captured.
-
Next quarter
04 · Security
Prompt-injection controls present but not red-teamed. Secrets in env vars, no rotation policy yet.
-
Holding
05 · Sovereignty
All inference on UK-resident hardware. No frontier-API egress. Data residency aligned with sector guidance.
Summary
"You can usually get the compliance team to approve something. The question is whether you can defend it later, when something goes wrong, when an auditor asks, when the regulator changes position."
05 · Alternatives
Not the right fit? Try one of these.
06 · Next step
Bring a workload. Get the numbers back.
A real workload, two sentences. We price it across cloud, self-hosted, and hybrid, then tell you what we'd run — or tell you to wait.
No deckNo sales pressureWe'll tell you to wait if you should
Or email a workload to hello@althorizon.co.uk — one-page model back in 48h.
