AI governance for UK regulated financial services

Your board is
being asked about AI.
Can you answer them?

EAIC identifies hidden AI exposure, quantifies material risk and opportunity, and leaves clients with live governance in place — not a slide deck and a follow-up proposal. Fixed fee. No open-ended scope.

Book a call Download the advisory paper →
37×
Average Year 1 ROI — anonymised engagements
34
AI systems found on average — including shadow AI
£1.8M
Avg regulatory exposure quantified per engagement
From £3,500
Sentinel Diagnostic — credited in full on upgrade

Who this is for

Best suited to regulated or governance-sensitive organisations that:

  • Already suspect AI is being used informally across the organisation
  • Need board-level visibility before controls can be credible
  • Want a practical path to live governance without a long advisory programme
  • Primarily financial services, legal, or healthcare — or any regulated environment with material AI exposure

Not designed for

This engagement is not the right fit if:

  • ×You are a very early-stage startup with no live AI in production
  • ×You are looking for model development, ML engineering, or AI product build
  • ×You are seeking a generic AI strategy or transformation programme
  • ×Your primary concern is AI adoption speed rather than governance and control

The problem

Most regulated organisations know they have AI risk. Almost none know what it's costing them.

A Big 4 engagement costs £250k and takes six months. A SaaS governance tool assumes you already know what AI you're running. Mid-market financial services organisations — with real regulatory exposure and no internal governance team — fall between both options.

EAIC was built for exactly that gap.

See why EAIC is different

How it works

Three stages. Fixed timescale.

1

Discover

AutoDiscover scans your entire estate — cloud infrastructure, SSO directory, SaaS footprint — before a single interview takes place. Shadow AI surfaces automatically. You get a complete preliminary inventory before Day 1.

2

Quantify

Every AI system is scored for regulatory exposure under EU AI Act, NIST AI RMF, and sector frameworks. Each risk is translated into monetary terms. Automation opportunities are modelled: NPV, IRR, and risk-adjusted return.

3

Govern live

Citadel goes live at close — pre-populated with your complete inventory and risk scores. Monthly board scorecards. Real-time compliance tracking. No one has to prepare them.

Our products

Two things that work together.

Sentinel leaves you live in Citadel — with ownership, evidence, workflows, and scorecards already running. Citadel keeps it live from that point forward.

Engagement

Sentinel

Fixed fee. Fixed scope. Closed when Citadel is live

Find your entire AI estate. Quantify every risk in monetary terms. Deliver a board-ready governance programme with a capital allocation recommendation your CFO can take to an investment committee. Fixed fee, fixed timescale, complete output at engagement close.

From £3,500 Diagnostic  ·  £18k–£28k Full engagement
Learn about Sentinel
Platform

Citadel

The ongoing governance platform

Your AI estate, scored and reported — automatically. ROGS score updated in real time. Monthly board scorecard generated and delivered without anyone preparing it. Compliance tracked. ROI monitored. The governance programme that runs itself.

From £1,000/month after Sentinel  ·  billed annually
See the platform

Sentinel delivers a structured, fixed-fee governance engagement. Citadel keeps it live from Citadel go-live onwards.

What Citadel looks like

A live platform, not a dashboard that needs feeding.

When Sentinel closes, you log in to a system already populated with your AI estate, risk scores, and compliance position. Here's what it looks like.

Citadel Command Centre — ROGS score, open findings, portfolio ROI and governance alerts

Command Centre

ROGS score, open findings, portfolio ROI, and active governance alerts — the complete picture across your AI estate. The view your CEO opens on Monday morning.

Citadel AI Portfolio P&L — projected benefit, actual spend and portfolio ROI

AI Portfolio P&L

Total projected benefit, actual spend, and realised ROI across every AI programme. The CFO's question, answered on one screen.

Citadel AI Systems Registry — risk tiers, EU AI Act classification, shadow AI flags

AI System Registry

Every system in your estate — including those surfaced by AutoDiscover. Risk tier, EU AI Act classification, and last assessed date.

Citadel Use Case Registry — EU AI Act classification by business function

Use Case Registry

AI use cases by business function, regulatory classification, and governance status. EU AI Act high-risk classification tracked in real time.

See the full platform

Results from the field

What clients find when they look.

See all case studies →

Financial Services

UK Building Society

  • 23 AI systems found — 14 unknown to the governance team
  • 3 systems in scope for EU AI Act high-risk classification
  • £1.8M regulatory exposure quantified — illustrative anonymised example
  • £680k annual automation opportunity identified

Anonymised engagement. Methodology available on request.

Full Sentinel engagement and Citadel go-live. ISO 42001 readiness achieved within five months of Citadel go-live.

44.6×
Risk-adjusted return

Healthcare

NHS Trust

  • 31 AI systems found, including 12 shadow AI tools in clinical departments
  • 8 systems requiring formal AI Act risk assessment
  • £529k annual savings modelled from workflow automation
  • Clinical governance framework built to CQC standards

Sentinel engagement with Healthcare Vertical Pack. Governance framework accepted by CQC inspectors at next scheduled review.

£529k
Annual savings identified

Professional Services

UK Law Firm (Top 100)

  • 31 AI tools in use — only 4 were known to IT
  • 2 tools used for client drafting presented material privilege risk
  • SRA compliance exposure quantified at £340k
  • AI governance policy gap register: 18 priority actions

Sentinel Diagnostic then full engagement with Legal Vertical Pack. Firm-wide AI policy and Citadel live within six weeks of engagement close.

31
Undisclosed AI tools found
"EAIC gave our board the confidence that our AI deployments were properly governed. The Sentinel dashboard is the first thing the CRO opens on Monday morning."

Chief Risk Officer FTSE 250 Financial Services Group

8 minutes

Not sure where you stand?

Our 12-question AI Governance Scorecard gives you a preliminary view of your maturity and where the gaps are — before you speak to anyone.

Take the self-assessment

Ready to find out what AI is
actually running in your organisation?

Three ways to start — all low-commitment, all founder-led.

Talk to us

Book a call

30 minutes with Declan or Austin. No sales deck. No obligation.

Book a call →

Self-assess

Take the scorecard

12 questions. 8 minutes. Instant ROGS score — no registration required.

Take the scorecard →

Read first

Advisory paper

From Hidden Use to Defensible Control. Free PDF, no registration.

Download free →

Fixed fee · Founder-led · No day-rate surprises · No commitment beyond the Diagnostic