Not sure which tier is right?
Book a free 20-minute discovery call. We'll confirm what's in scope and which tier fits your situation — at no cost and with no obligation.
Services
Our Services
Two service tiers. Fixed scope. Fixed price. No surprises.
AI Readiness Assessment
A complete audit of your AI systems, EU AI Act obligations, data governance risks, and vendor exposure — delivered in five business days.
€2,500 fixed price, no additional fees
- AI System Inventory — complete register with EU AI Act risk classification
- EU AI Act Gap Analysis — obligations mapped, gaps identified, applicable articles cited
- Data Governance Review — how personal data is handled by AI systems against GDPR
- Vendor Risk Assessment — contracts and data processing agreements reviewed
- Internal Policy Review — whether an AI use policy exists and whether it is adequate
- Prioritised Action Plan — immediate, 30-day, and 90-day actions ranked by risk
- Executive Briefing Call — 30-minute walkthrough with key stakeholders
Most comprehensive
AI Readiness Assessment + Security Deep-Dive
Everything in the standard assessment, plus a technical security review covering vulnerabilities, attack surfaces, and AI-specific threats.
€3,200 fixed price, no additional fees
- AI System Inventory — complete register with EU AI Act risk classification
- EU AI Act Gap Analysis — obligations mapped, gaps identified, applicable articles cited
- Data Governance Review — how personal data is handled by AI systems against GDPR
- Vendor Risk Assessment — contracts and data processing agreements reviewed
- Internal Policy Review — whether an AI use policy exists and whether it is adequate
- Prioritised Action Plan — immediate, 30-day, and 90-day actions ranked by risk
- Executive Briefing Call — 30-minute walkthrough with key stakeholders
- Prompt Injection Testing — whether AI systems are vulnerable to prompt injection attacks
- API & Access Control Review — how AI APIs are configured and who has access
- Data Leakage Risk Assessment — whether sensitive data submitted to AI tools could be exposed
- AI Incident Response Gap — whether the organisation can detect and respond to AI security incidents
What's included in each tier
| What's included | Standard €1,200 | Deep-Dive €1,800 |
|---|---|---|
| AI System Inventory | ✓ | ✓ |
| EU AI Act Gap Analysis | ✓ | ✓ |
| Data Governance Review | ✓ | ✓ |
| Vendor Risk Assessment | ✓ | ✓ |
| Internal Policy Review | ✓ | ✓ |
| Prioritised Action Plan | ✓ | ✓ |
| Executive Briefing Call | ✓ | ✓ |
| Prompt Injection Testing | — | ✓ |
| API & Access Control Review | — | ✓ |
| Data Leakage Risk Assessment | — | ✓ |
| AI Incident Response Review | — | ✓ |
Optional follow-up services
After an initial assessment, clients may need further support. These are available separately — not bundled into the primary offer.
-
AI Use Policy Drafting
We write your internal AI governance policy based on assessment findings. Priced on request.
-
Quarterly Governance Review
A lighter-touch quarterly check-in to track progress and flag regulatory changes. Retainer-based. Priced on request.
-
Vendor Due Diligence
A one-off review of a specific AI product your organisation is considering purchasing. Priced on request.
-
EU AI Act Technical Documentation
Preparation of required technical documentation for high-risk AI systems. Scoped individually. Priced on request.
This is right for your organisation if…
- You are using AI tools but have no formal policy governing their use.
- You are unsure whether your AI systems trigger obligations under the EU AI Act.
- You process customer, employee, or financial data through AI platforms.
- Legal, compliance, or leadership is asking about AI risk and you need a clear answer.
- You have a customer-facing AI product and want compliance confidence before you scale.
- You want to get ahead of regulatory scrutiny rather than react to it.