Compliance and governance
Compliance isn’t a layer on top. It’s how the platform thinks.
Every interaction is classified, every response is logged, every recommendation is gated on suitability. Here is the architecture behind that guarantee.
Classification
Every question is classified before it is answered.
Tier 1
Factual answer
Market data, portfolio performance, general financial information. No suitability assessment required.
Tier 2
Contextual answer
Requires client context: risk profile, investment horizon, holdings. Disclosures applied automatically.
Tier 3
Suitability gate
Recommendation request. The copilot asks for the client’s goal, horizon, and risk before it answers, and will not recommend without them. Advice it should not give is declined, with the client pointed to their advisor.
Answer delivered with source attribution
Answer delivered with disclosure applied
Held until suitability is met, or routed to an advisor
Every interaction is logged regardless of tier: timestamp, classification, sources used, policy checks applied, and the response delivered.
Regulatory alignment
Built for the markets you operate in.
MAS Technology Risk Management Guidelines
Singapore
MAS Notice FAA-N16
Financial Advisers Act compliance
SFC Code of Conduct
Hong Kong
MiFID II
European Union
DORA
EU Digital Operational Resilience Act
Audit and governance
Every interaction is logged. Nothing is a black box.
Full interaction logging
Timestamp, question, classification, sources, policy checks, response, suitability check.
Exportable logs
Standard formats for regulatory review. Retention period configurable to local requirements.
Explainable AI
Every response includes a reasoning path for compliance review.
Data residency
Your data, your jurisdiction.
Deploy in your preferred region: Singapore, EU, US, or on-premise. Data never leaves your chosen jurisdiction without explicit configuration.
See it under your rules.
Walk through the classification model, the audit trail, and data residency with our team, against your regulators.