Compliance begins before the first line of code.
Most AI compliance failures are seeded before a single line of code is written. Teams pick solutions before validating problems, skip data governance audits, and start building before anyone has defined what regulatory obligations apply.
The Discover phase establishes the compliance baseline: AI readiness assessment, regulatory obligation mapping (EU AI Act risk classification, GDPR applicability, data sovereignty requirements), use case prioritisation, data governance audit, and ROI modelling — all before architecture decisions are made.
Governance tools for this phase
Structured artefacts designed to produce Gate 1-ready evidence.
AI Opportunity & Problem Qualification Assessment
Two-phase, 12-dimension structured assessment. Qualifies AI initiatives before architecture decisions are made. Gate threshold: Phase 1 score ≥ 45 to advance. View assessment →
Nothing progresses to Design without: a signed-off Problem Statement Canvas, a validated compliance readiness score, applicable regulatory frameworks identified, and a confirmed business case.