AI governance and security aren’t a bolt-on — they’re how AI should be delivered from the start. dgm provides AI security and governance consultancy for UK businesses on osFoundry. (dgm is an independent integration partner; osFoundry is a separate company’s product. This is general information, not legal advice.)
What we do
We help you govern and secure AI — proportionate to your size:
- establish where AI is used (a register) and who’s accountable;
- an AI use policy;
- data control and human oversight;
- audit; and
- compliance with UK GDPR, sector rules and EU AI Act exposure.
Governance is designed in, not bolted on. (See AI governance for UK SMEs and AI compliance checklist.)
Proportionate governance
For an SME, governance is proportionate — a one-page policy, named accountability, human review of significant outputs, and DPIAs where needed — not heavy bureaucracy. For an enterprise, it’s more formal. We scale to you.
Security built in
We secure AI through:
- data control — self-hosting or an EU region (osFoundry publishes US/EU/JP regions, not a UK one);
- access controls and SSO;
- guarding against data leakage and prompt injection;
- human oversight of significant actions; and
- audit logging.
(See AI security best practices.)
UK and EU compliance
We design around UK GDPR, your sector regulator’s expectations, and EU AI Act exposure where you touch the EU market. The UK has no single AI Act, so obligations come from existing law. (See EU AI Act for UK businesses.)
Engagement and pricing
A fixed-fee assessment, then a monthly engagement that builds governance into delivery, with no per-seat fees. Scope depends on your size and regulatory context — contact us for a quote.
dgm is an independent integration partner with zero integrations so far — and not a law firm; take qualified legal advice for compliance decisions. To scope AI governance, book a consultation with dgm. General information; scope and pricing per project.