Products & Services
AI Governance Platform AI ROI Platform Flow Health Platform Case Studies Consulting About
Book a Call

AI Governance Platform

⚠  APRA-regulated boards are now expected to prove AI governance, not promise it.

AI governance you can defend, backed by direct APRA-regulated experience.

Most mid-market financial services firms are using AI without the governance infrastructure their regulators now require. This platform closes that gap: vendor register, control evidence, board reporting, and regulatory intelligence in one place.

No credit card required. Full platform access for 14 days.

The compliance gap

What boards are exposed to right now

APRA's April 2026 enforcement letter made the expectation explicit: regulated entities must demonstrate structured governance over AI vendors and AI-related operational risk. 93% of Australian organisations are now using AI in some form. 21% report clear measurable value. The gap between adoption and accountability is where boards carry the risk.

Without a vendor register, evidence locker, and structured incident register, your firm cannot demonstrate compliance and cannot defend a board-level decision if an AI system causes harm or loss.

No vendor register
You cannot meet CPS 230 without documenting every AI vendor and their contractual obligations. APRA has asked for this specifically.
No control evidence
Board reports citing AI governance without attached evidence are assertions, not compliance. Regulators want artefacts, not narratives.
No incident register
CPS 230 requires operational incident tracking. AI-related incidents with no audit trail create personal liability for accountable individuals.
No regulatory monitoring
The regulatory landscape for AI in financial services is moving fast. Firms without real-time alerts are always behind and find out about changes from their lawyers.

Platform modules

Six modules. One evidence trail.

Module 01
AI Vendor Register
Document every AI vendor, their data access, contractual terms, and compliance status against CPS 230 and CPS 234. Searchable, auditable, board-ready. The single source of truth your regulators expect.
Module 02
Control Evidence Locker
Attach evidence, including policies, test results, sign-offs, and assessments, directly to controls. Timestamped, access-logged, and exportable for audits. Evidence that sits in SharePoint folders is not governance.
Module 03
Board Pack Generator
Generate a board-ready AI governance report in PDF format from live platform data. Same format every quarter. No manual assembly. Puppeteer-rendered, professionally formatted, immediately presentable.
Module 04
AI Incident Register
Log, track, and close AI-related incidents with full audit trail. Captures severity, impact, remediation actions, and sign-off. CPS 230 requires this. Most firms do not have it.
Module 05
Regulatory Intelligence
Source monitoring across APRA, ASIC, AUSTRAC, Privacy Act, and ISO 42001. Alerts delivered when relevant changes are published. 34-clause library pre-loaded and mapped to platform controls.
Module 06
Regulatory Reference Management
A living clause library covering CPS 230, CPS 234, FAR, Privacy Act ADM, ASIC REP 798, and AUSTRAC AML/CTF, pre-mapped to platform controls and updated as regulations change.

Regulatory alignment

Every module maps to a framework

The platform was built against the regulatory requirements your board faces, not a generic governance template.

CPS 230
Operational risk management. Vendor register, incident log, and control evidence directly address CPS 230 requirements. The April 2026 enforcement letter named these specifically.
CPS 234
Information security capability. Control evidence locker and vendor register cover third-party information security obligations under CPS 234.
ISO 42001
AI management system standard. Platform structure aligns with ISO 42001 clause architecture, supporting certification pathways.
Privacy Act ADM
Automated Decision-Making obligations effective December 2026. Vendor register and control evidence support ADM disclosure requirements.
ASIC REP 798
ASIC guidance on AI in financial services. Non-binding but material to ASIC supervision. Regulatory intelligence module monitors for updates.
AUSTRAC AML/CTF
Anti-money laundering obligations. Relevant where AI vendors touch customer screening or transaction monitoring in regulated entities.

Pricing

Two tiers. No hidden fees.

Starter
$1,200
per month AUD  ·  up to 3 users
  • AI Vendor Register
  • Control Evidence Locker
  • AI Incident Register
  • Regulatory Reference Library
  • Board Pack Generator
  • Email support
Start free trial
Growth
$2,800
per month AUD  ·  unlimited users
  • All Starter modules
  • Regulatory Intelligence (live alerts)
  • API access
  • Org Notes and collaboration
  • Priority support
  • Onboarding session included
Start free trial

Getting started

From trial to evidence trail in three steps

1
Start your 14-day trial
Full platform access, no credit card. Set up your organisation, invite your compliance and risk team, and see the full module set from day one.
2
Configure your baseline
Load your AI vendors, map your controls to the pre-loaded regulatory clause library, and log any known incidents. Most firms complete their baseline in a single working day.
3
Generate your evidence trail
Run the Board Pack Generator. Your first board-ready AI governance report is ready. Every quarter, generate the same report from live data. No manual work.

Sample board pack

See what your board will receive

Before you start a trial, review a real anonymised AI Governance board pack. It uses the same format, depth, and regulatory mapping your firm will produce each quarter. Enter your details and we will send it directly.