Your credit scoring is high-risk AI.
Do you have the documentation?
The AI Act classifies credit scoring, fraud detection and AML screening as high-risk AI systems (Annex III). DORA requires ICT resilience since January 2025. We help you build governance, documentation and training — in 2-3 weeks, at a fraction of the cost of a Big 4 firm.
In finance, regulations stack up.
AI adds another layer.
You already deal with DORA, NIS2, PSD2, AML and GDPR. Now the AI Act classifies your credit scoring and fraud detection as high-risk. Where do you even start?
Credit scoring is high-risk AI
The AI Act requires DPIA, bias testing, explainability and human oversight. GDPR Art. 22 adds the right to explanation. Fines up to EUR 15M or 3% of global turnover.
ICT resilience is no longer optional
DORA has been in force since January 2025. It requires an ICT risk framework, incident reporting within 4 hours, TLPT testing and a registry of all ICT providers. Only 50% of institutions expect full compliance.
AML screening without governance
AI for AML/KYC is classified as high-risk. Without documented models, audit trails and a human appeal process, you risk penalties from both your national authority and the AI Act.
Algorithmic decisions under scrutiny
Transaction risk scoring, SCA exemptions, algorithmic trading — wherever AI decides about money, you need explainability and an audit trail.
Complete governance for the financial sector
AI Act + DORA + NIS2 + GDPR + PSD2 — interconnected, not in separate silos. A single gap analysis covers everything.
AI policy, employee guidelines, data classification, incident response, model cards — audit-ready for your national regulator.
Large consulting firms take 6-12 months. We deliver in weeks because this is what we do every day.
Deliverables for the financial sector
AI Policy
Governance framework for your entire organization — who decides, how AI is approved, what is prohibited.
High-Risk DPIA
Data Protection Impact Assessment for credit scoring, fraud detection and AML screening.
Model Cards
AI model documentation — training data, features, fairness metrics, decision audit trail.
ICT Provider Registry
DORA-compliant registry of all ICT providers including exit strategies and concentration risk analysis.
Incident Response Plan
DORA requires reporting within 4 hours. You will have a process, not panic.
AI Literacy Training
E-learning, knowledge test and certificates — specifically tailored for the financial sector and its regulations.
Three steps. In 2-3 weeks, your AI will be under control.
We assess where you stand today. We prepare documentation, policies and training tailored to your financial institution. You invest 2-3 hours of your time, we handle the rest.
Gap Analysis
We map your AI systems (credit scoring, fraud, AML, chatbots), identify high-risk classifications and assess your DORA compliance status.
Week 1Documentation & Governance
We prepare your AI policy, model cards, DPIA, ICT registry and incident response plan — tailored to your institution and its regulatory environment.
Week 1-2Training & Handover
We train your compliance team and key employees. We deliver certificates, audit evidence and 30-day post-deployment support.
Week 2-3Working in compliance or technology? We have a page for you.
Don't start with a tool.
Start with a conversation.
In 15 minutes, we will assess where you stand with AI governance in the financial sector, what to prioritize first and what it will cost. No obligations, no sales pressure.
Book a discovery call →From CZK 19,900 · Delivered in 2-3 weeks · 30-day guarantee