Syntra Assurance

    AI Governance & Assurance

    Governance frameworks. Regulatory compliance. Continuous assurance. For organisations where AI risk isn't optional.

    The EU AI Act compliance deadline is August 2, 2026. Fines reach €35 million or 7% of global turnover. We help you build readiness — and stay ready.

    Time Remaining

    73

    Days Until EU AI Act Enforcement

    August 2, 2026

    For high-risk AI systems under Annex III. Some categories have later application dates. We help you determine which deadlines apply to your systems.

    How We Work

    Start with an audit. Build from there.

    One pathway. Three stages. Every audit fee is credited 100% against any engagement that follows.

    Step 01 · Start here

    AI Risk Audit

    One-off · Point-in-time

    From £499

    A focused assessment of your current AI risk posture — inventory, classification, shadow AI, supplier review, executive summary with prioritised gaps.

    Typical duration: 5-7 business days

    Request Your Free Audit

    Step 02 · Build

    Choose your build

    Governance Framework or EU AI Act Compliance — one-off

    MOST POPULAR

    AI Governance Framework

    From £3,500

    A complete governance framework built for your organisation.

    • AI usage policy (approved tools, prohibited uses, data handling)
    • Risk management framework with accountability structure
    • Documentation templates (DPIAs, risk assessments, system cards)
    • Incident response procedure for AI systems
    • Board reporting template with risk dashboard
    • Staff training and supplier compliance templates

    Typical duration: 3-4 weeks

    Build Your Framework
    DEADLINE: AUGUST 2, 2026

    EU AI Act Compliance

    From £2,500

    Supports your compliance readiness before August 2, 2026.

    • Full compliance assessment against EU AI Act requirements
    • System-by-system classification (Annex III high-risk)
    • Gap analysis with remediation roadmap
    • Technical documentation for high-risk systems
    • Human oversight mechanism design
    • Conformity assessment & regulatory filing support

    Typical duration: 4-6 weeks

    Start Compliance

    Step 03 · Stay assured

    Ongoing Assurance

    Monthly retainer · Three levels

    Quarterly Review

    £1,500/mo

    Quarterly reviews, policy updates, and regulatory tracking.

    • Quarterly governance review call
    • Policy and document review
    • Regulatory change alerts (EU AI Act, UK principles, sector regs)
    • Email/Slack advisory access
    • Quarterly board summary
    Discuss this retainer

    Active Governance

    £3,500/mo

    Hands-on governance work, documentation, and supplier reviews.

    • Everything in Quarterly Review
    • Hands-on governance build work
    • Bi-weekly working sessions
    • Documentation and control authoring
    • Supplier and third-party reviews
    Discuss this retainer

    Fractional Head of AI

    £6,000/mo

    Fractional Head of AI Governance, board reporting, full programme ownership.

    • Everything in Active Governance
    • Weekly leadership presence
    • Board and exec reporting
    • Incident response on retainer
    • Full programme ownership
    Discuss this retainer

    Every audit fee is credited 100% against any engagement that follows.

    Who It's For

    Built for organisations under scrutiny.

    Regulated Industries

    Financial services (FCA), energy (Ofgem), healthcare, and any sector where regulators are actively monitoring AI adoption and expecting governance frameworks.

    EU-Facing Businesses

    UK businesses that serve EU customers, process EU citizen data, or deploy AI systems within the EU market — in scope for EU AI Act compliance by August 2026.

    Boards & Leadership

    Executive teams and boards who need to demonstrate AI governance to investors, auditors, regulators, or clients. Assurance provides the evidence.

    Why Assurance

    The case for governance, now.

    AI Risk Is Real

    Shadow AI, prompt injection, and data leakage are already inside most businesses. Most boards have no visibility.

    The Deadline Is Coming

    EU AI Act high-risk compliance takes effect August 2, 2026. Fines reach €35M or 7% of global turnover.

    Assurance Is The Answer

    A continuous framework of risk management, monitoring, and reporting — not a one-off audit.

    Our Methodology

    Structured. Repeatable. Aligned to international standards.

    Pillar 01

    Inventory & Classification

    Catalogue every AI system. Classify by risk tier.

    Pillar 02

    Policy & Accountability

    AI usage policy. Clear ownership. Approval workflows.

    Pillar 03

    Risk Management

    Assess data, bias, security, privacy, reliability, and supplier risk.

    Pillar 04

    Documentation & Transparency

    Technical documentation. DPIAs. Audit trails. EU AI Act compliance evidence.

    Pillar 05

    Monitoring & Assurance

    Continuous monitoring. Board reporting. Incident response. Annual review.

    Aligned to ISO/IEC 42001, the UK government's AI assurance framework, and EU AI Act requirements (Regulation (EU) 2024/1689).

    The Framework

    Measure. Evaluate. Communicate.

    Aligned to the UK government's AI assurance framework and ISO/IEC 42001.

    Step 01

    Measure

    Gather qualitative and quantitative data on your AI systems — performance, risk, usage, compliance status, and supplier dependencies.

    Step 02

    Evaluate

    Assess risks against established frameworks — EU AI Act, UK AI principles, ISO 42001, sector-specific regulation (FCA, ICO, CMA, Ofcom).

    Step 03

    Communicate

    Report findings to leadership through board-ready dashboards, risk registers, and quarterly assurance reports.

    Regulatory Landscape

    The regulations you need to know

    EU AI Act

    Any business placing AI on the EU market

    August 2, 2026 (high-risk)

    UK AI Principles

    All UK businesses using AI

    Ongoing (sector regulators applying now)

    UK GDPR

    AI processing personal data

    Active enforcement

    ISO/IEC 42001

    AI management system standard

    Voluntary but increasingly expected

    Sector regulation

    FCA, ICO, CMA, Ofcom applying AI-specific rules

    2026 onwards

    Fines under the EU AI Act reach €35 million or 7% of global annual turnover — whichever is higher.

    Free Whitepaper

    AI Governance for UK Businesses: A Practical Framework for 2026

    18 pages covering the full regulatory landscape, a five-pillar governance framework, a 90-day implementation roadmap, and template outlines. Written by a former defence intelligence analyst.

    Covers

    • EU AI Act compliance
    • UK regulatory expectations
    • ISO 42001 alignment
    • Shadow AI
    • Risk management
    • Board reporting

    Get the PDF

    By downloading you'll also receive our weekly AI brief. Unsubscribe anytime.

    Credentials

    Governance Delivery Track Record

    Sam Hawkins

    Sam Hawkins

    Founder, Syntra Automate · Head of AI, MV Global

    LinkedIn

    The rare combination of someone who's built production AI systems AND delivered governance in classified environments.

    15 years across intelligence, defence, and energy. Eight years as a British Army Intelligence and Defence Specialist, followed by senior consulting roles delivering cyber transformation, security accreditation, and complex technical programmes across critical national infrastructure and central government.

    Now leading AI strategy at MV Global while building Syntra Automate into a specialist governance practice.

    The same rigour that governed classified defence programmes now underpins every Syntra engagement.

    Certifications

    PRINCE2 Practitioner
    Prosci Certified Change Practitioner
    Anthropic
    7 Certifications
    AWS
    2 Certifications
    Google Cloud
    1 Certification
    IBM
    2 Certifications
    AI Security & Governance
    ISC2 CC
    (in progress)
    ISO/IEC 42001 Lead Implementer
    (in progress)

    See it for yourself

    What our audit report actually looks like.

    A real anonymised report showing our full methodology, scoring, and prioritised action recommendations. No fluff — exactly what you'd receive after your free audit.

    • Executive summary scored against the EU AI Act
    • AI inventory & shadow-AI exposure findings
    • Prioritised 90-day remediation roadmap
    View Sample Report

    FAQ

    Frequently Asked Questions

    The deadline is August 2, 2026. Start now.

    Book a discovery call — 30 minutes, free, no obligation. We'll assess where you stand and what you need.

    Book a Discovery Call