Advisory
AI Compliance & Governance
nDSG, EU AI Act, and internal policies for responsible AI use — pragmatic and audit-ready.
Included
- Privacy impact assessment
- AI Act classification
- Internal policies
- Audit preparation
How we work
- Inventory of all AI applications in the company (often more than expected)
- AI Act classification: which risk class each application belongs to
- Privacy impact assessment for high-risk applications under Swiss nDSG
- Internal policies: what is allowed, what is not, who decides edge cases
- Audit preparation: documentation, logging concepts, provability
Examples from our practice
- Swiss fiduciary: complete AI application inventory in 6 weeks; three high-risk applications identified and brought into compliance
- Industrial company: internal AI policy anchored as part of compliance directive; audit two months later without findings
What you concretely get
- Complete overview of the AI landscape in the company
- Compliance status per Swiss nDSG and EU AI Act
- Audit-ready documentation
- Internal policies employees actually use
Engagement model
6-12 weeks for initial assessment, then annual updates. 8-15 advisory days in the initial phase.
Book a session
Schedule a 30-minute discovery call to clarify your situation and the right level of accompaniment.