INSPECTION-READY
AI GOVERNANCE
Govern every AI system. Prove compliance. Be ready when regulators, auditors, or customers ask.
Covers internal builds, vendor AI, copilots, APIs, shadow AI, and everything in between.
First enforcement dates hit August 2026. Most organisations aren't yet audit-ready.
AI adoption isn't slowing. Regulation isn't waiting. Teams are already discovering that policies, PDFs, and spreadsheets fall apart the moment AI becomes operational. Forrester notes that most organisations still rely on governance-by-spreadsheet and committee, an approach that doesn't scale once audits and reporting become mandatory.
Compliance has shifted from documentation to evidence
Regulators expect:
- Article-level traceability
- Obligation-specific evidence
- Reconstructable state history
- Zero inference or reuse across frameworks
- Proof of correctness, not mapped equivalence
Most governance platforms were not built for this.
Centralised.AI was built for inspection
Instead of mapping frameworks together and reusing evidence, Centralised.AI preserves legal meaning. Every control, every field, every answer is tied to the obligation it fulfils – with the legal text, guidance, audit history and context preserved.
"Most organisations still rely on governance-by-spreadsheet and committee - an approach that fails once AI becomes operational."
- Forrester, AI Governance Wave 2025
HOW IT WORKS
Built for organisations that need complete visibility and an audit trail they can trust. Whether you're documenting your first AI system or managing dozens across regulated functions, the workflow is identical.
See your entire AI landscape at a glance
A single portfolio view of every AI system your organisation relies on - internal builds, vendor tools, LLM apps, cloud APIs, shadow AI, everything. Each system is automatically mapped to the right frameworks and risk class, tasks are assigned to the right owners, and the platform tracks progress - so you see immediately where you are compliant, where you are exposed, and where work is needed.
- Clear scores. Real-time progress. No spreadsheets.
- Automatic framework scoping and risk classification
- Filter by lifecycle stage, risk level, or compliance gaps
Attention Required
Compliance Achievement
This Quarter Progress
Next Steps
6 remaining
Vendor Compliance Certificate
Improve score by 12%
Vendor Due Diligence
Transparency Notice
Improve score by 15%
Article 52 Transparency
Risk Assessment Doc
Improve score by 18%
Deployer FRIA
Vendor Compliance Certificate
Vendor Due Diligence
Click to upload or drag and drop
PDF, DOC, DOCX up to 10MB
SHOW GUIDANCE
Upload the vendor's EU Declaration of Conformity or CE Certificate.
Uploading a marketing whitepaper. You need the formal legal declaration.
Upload the 'EU_Declaration_of_Conformity_VendorX.pdf'.
VIEW LEGAL TEXT
Establishes vendor compliance obligations and due diligence requirements across the supply chain
Providers and deployers shall ensure compliance with their respective obligations under this Regulation. Deployers shall use high-risk AI systems in accordance with the instructions for use and shall ensure that the input data is relevant and sufficiently representative. Deployers shall monitor the operation of the high-risk AI system and inform providers of serious incidents. Importers and distributors shall ensure that high-risk AI systems they make available on the market comply with this Regulation. They shall verify that the required conformity assessment has been carried out by the provider, that the provider has drawn up the technical documentation, that the system bears the CE marking and is accompanied by the required documentation, and that the provider has complied with the obligations set out in Article 16.
Everything about one system in one place
Open any system and its full compliance record is there. The regulation is translated into a structured set of tasks with legal text, summaries and practical guidance placed directly beside each control. Every control stores evidence and context with full change history. Review and approval routing will be layered onto the existing model.
- Impact-weighted workflow shows what moves your score
- Legal text and guidance for every control
- Automatic snapshots create permanent history
An audit trail you can trust
Other tools claim to track changes. Centralised.AI records everything automatically - who made the change, what changed, and what the system looked like before and after. Snapshots happen on every update, not just on a schedule.
- Complete state capture at every change
- Reconstruct your portfolio at any point in time
- Export a regulator-ready audit packet for any system in one click
Compliance: 87%
Compliance: 92%
Compliance: 78%
Compliance: 95%
Compliance: 88%
Compliance: 94%
Answer critical questions instantly
Ready-made views for the questions teams always need to answer. Already answered.
- High-risk systems without conformity assessment (EU AI Act Article 43)
- Systems processing personal data without DPIA
- External systems with unknown vendor compliance status
EVERYTHING YOU NEED BUILT IN
Evidence Management
Capture evidence for every control with attachments, notes and decisions. Updates are snapshot-tracked automatically.
Full Permissions Audit
Activity log and permissions audit show who could do what, when. Clear roles and access control across the organisation.
Framework Version Locking
Framework versions are pinned to each system. When regulations update, you choose when to adopt new versions and see exactly what changed.
Enterprise Security
Designed for regulated environments. SSO, SCIM, encryption at rest and in transit, audit export, and data residency options.
Integrations & API
Integration-ready. API and webhooks available for enterprise customers.
Scale Without Complexity
Whether you're managing 3 systems or 300, the workflow stays the same. No maturity gap, no enterprise tier unlock.
All available immediately. No configuration, no consultants, no long onboarding.
SEE IT IN ACTION
Short walkthroughs showing the core workflows teams rely on day to day
WHY CENTRALISED.AI
More automation. Better audit trail. Stronger support for real EU AI Act and ISO 42001 compliance work.
| Capability | Centralised.AI | Credo AI | OneTrust | Saidot | HolisticAI |
|---|---|---|---|---|---|
| Framework integrity | ✓ | ✗ | ✗ | ✗ | ✗ |
| Evidence tied to a specific legal requirement | ✓ | ✗ | ✗ | ✗ | ✗ |
| Plain-language field guidance | ✓ | ✗ | ✗ | ✗ | ✗ |
| Inline legal text per control | ✓ | ✗ | ✗ | ✗ | ✗ |
| Full reconstructable audit snapshots | ✓ | ✗ | ✗ | ✗ | ✗ |
| Article-specific regulatory queries | ✓ | ✗ | ✗ | ✗ | ✗ |
| Versioned modular frameworks | ✓ | ✓ | ✗ | ✗ | ✗ |
| Edit and attach evidence in-place inside the framework | ✓ | ✗ | ✗ | ✗ | ✗ |
| Impact-prioritised workflow | ✓ | ✗ | ✗ | ✗ | ✗ |
FREQUENTLY ASKED QUESTIONS
The questions teams actually ask when evaluating AI governance platforms
How does Centralised.AI handle evidence?
Every control has its own evidence field with attachments, notes and decisions. Updates are snapshot-tracked automatically.
How do snapshots work?
The system captures a JSON snapshot on every change. You can view, compare and export previous states at any time.
Can we assess vendor AI systems as well as internal ones?
Yes. External systems follow the same workflow, with dedicated vendor-specific controls where required.
How are framework updates managed?
Framework versions are pinned to each system. When a regulation updates, you choose when to adopt the new version, and the system highlights what has changed.
What does 'inspection-ready' actually mean?
All evidence, decisions, history and legal references are organised, timestamped and exportable. You don't prepare for an audit; you already are.
How do I get started?
Book a 30-minute demo call. We'll show you the platform and discuss your specific requirements.
GET YOUR AI SYSTEMS
AUDIT-READY
No consultants. No multi-month rollout. Most teams onboard in under a week.
Speak to our team