Four regulations. One person.
You know the feeling.
AI Act, NIS2, GDPR, Data Act — each with different timelines, different scope, different enforcement. And you are compliance, DPO, IT security, and legal all in one. We help you map 32 areas, identify gaps, and build a governance foundation — in 4-8 weeks, from 29,900 CZK.
You are compliance, DPO, IT security, and legal all in one.
And AI governance just landed on your desk.
In a company with 50-249 people, there is no compliance team. There is one person handling everything. And now on top of GDPR, NIS2, and Data Act comes the AI Act — with its own deadlines, definitions, and enforcement.
4 regulations, one person, zero consultant budget
AI Act, NIS2, GDPR, Data Act — each with different scope, terminology, and enforcement. Big 4 wants half a million. Internal capacity does not exist. And the CEO asks "what does that cost?"
Management says "this does not apply to us" — but it does
The CEO sees the AI Act as a "big company problem." But Art. 4 (AI literacy) and Art. 5 (prohibited practices) apply to everyone since February 2025. NIS2 scope determination by 1/2026. Size is not an exemption.
The audit comes, documentation is missing
Supervisory authority, key customer, insurer, parent company — any of them can ask about your AI governance status. You have GDPR in place, but AI-specific areas — inventory, classification, Annex IV — that is where the gaps are.
You carry personal liability — without support
Fines for AI Act violations: up to EUR 35M or 7% of turnover (Art. 99). For NIS2: up to EUR 10M. Even a fraction of that is existential for a 150-person company. And the liability sits with the compliance officer — that is you.
9 documents. A ready-made foundation you adapt to your company.
You do not have to build governance from scratch. You get structured, auditable deliverables traceable to specific articles of AI Act, NIS2, GDPR, and Data Act. One-time delivery, not a subscription.
We map your regulatory exposure — AI Act Art. 6, Annex III, NIS2 Art. 21, GDPR, Data Act. You will know exactly where you stand and where to start.
Inventory of AI tools in your company and risk classification. Do you know how many AI systems your people use? Shadow AI is a security risk — and the first step to governance.
Acceptable Use Policy, AI Governance Framework, GPAI Assessment and Annex IV documentation — all part of the delivery. Functional documents your people will actually use.
We train your people to the level the AI Act requires. Certificates for each participant. Executive summary for the CEO — not 50 pages, but a concise overview.
Three steps. Your 2-3 hours become a governance foundation.
Discovery and gap analysis
We map your regulatory exposure — AI Act, NIS2, GDPR, Data Act. We identify AI tools in your company, classify risks, and show where the gaps are. You invest 2-3 hours, we do the rest.
Documentation and policies
We prepare a governance foundation tailored to your company — AUP, AI Governance Framework, risk classification, GPAI Assessment, incident response protocol. Everything auditable, versioned, ready to show customers and regulators.
Training and handover
We train your people (AI literacy per Art. 4 AI Act), deliver certificates and an executive summary for the CEO. You take ownership of the governance. One-time delivery — no vendor lock-in.
Regulated sectors have specific requirements.
We understand them.
Finance, healthcare, public sector — each industry has different regulatory overlaps and different priorities. See how we address the specific needs of your sector.
Finance and Insurance
AI Act + DORA + NIS2 — triple regulatory overlap. Specific to banking and insurance sectors.
Healthcare
High-risk AI systems per Annex III + GDPR special category data. Specific to healthcare providers.
Public Sector
AI Act Art. 6(2) — public authorities as high-risk deployers. Specific requirements for transparency and human oversight.
"A good course raises more questions than answers. The Skills framework was my biggest discovery — the hands-on approach suits me."
Diana Barnová
Product Manager, Oracle NetSuite
5 minutes. 32 areas.
You will know where to start.
The readiness check shows you in 5 minutes which areas you have covered and where the gaps are. No commitment, no sales pressure. You get a clear overview — we provide recommendations for next steps. Complete governance from 29,900 CZK.
Start readiness check (5 min) →