Your AI Is Deployed. Is It Governed?
Regulators are catching up. ISO 42001 is certifiable. The EU AI Act is enforceable. We help regulated organisations close the governance gap before it becomes a liability.
EU AI Act high-risk provisions fully enforceable
Deadline is closer than most organisations think.
of enterprises have no formal AI governance programme
Source: Gartner AI Governance Survey, 2024.
average time to ISO 42001 readiness with Golonex
From kick-off to audit-ready documentation package.
Three Standards. One Programme.
Most organisations need to satisfy multiple frameworks simultaneously. We map your AI estate against all three so you build controls once and satisfy them all.
The first international standard for AI management systems. Establishes requirements for responsible AI development, deployment, and continual improvement within an organisation.
- ✓Scope and context of AI use
- ✓Risk and impact assessment
- ✓AI policy and objectives
- ✓Operational controls and documentation
The world's first comprehensive AI regulation. Classifies AI systems by risk tier — unacceptable, high, limited, minimal — with mandatory conformity requirements for high-risk applications.
- ✓Risk tier classification of AI use cases
- ✓Conformity assessment for high-risk AI
- ✓Technical documentation requirements
- ✓Human oversight and transparency obligations
The National Institute of Standards and Technology AI Risk Management Framework. Provides a structured approach to govern, map, measure, and manage AI risks across the organisation.
- ✓GOVERN: Policies, roles, and accountability
- ✓MAP: AI risk identification and context
- ✓MEASURE: Quantitative risk analysis
- ✓MANAGE: Response, monitoring, and recovery
From Gap to Audit-Ready in 10 Weeks
A structured programme built specifically for regulated organisations that need to move fast without cutting corners.
AI Use Case Inventory
We catalogue every AI system in your organisation — deployed, in development, and planned. Each use case is documented with its purpose, data flows, and decision impact.
Risk Classification
We classify each use case against ISO 42001, EU AI Act risk tiers, and NIST AI RMF categories. High-risk systems are flagged for immediate attention.
Gap Analysis
We assess your current controls, documentation, and policies against the target framework requirements — producing a prioritised remediation roadmap.
Policy & Control Build
We draft the AI management policy, risk register, incident response procedures, and operational controls your auditors will expect to see.
Certification Readiness
We prepare your documentation package, conduct internal readiness reviews, and brief your team — so your certification audit is a formality, not a surprise.
Governance Is in Our DNA
Golonex AI is an initiative of Radha Technology Group — the team behind Aligntrust, a security and compliance firm that has delivered ISO 27001, SOC 2, and regulatory programmes for enterprise clients across financial services, healthcare, and professional services.
We are not generalist consultants learning AI governance on your time. We bring battle-tested compliance methodology and apply it to the AI-specific requirements of ISO 42001, the EU AI Act, and NIST AI RMF.
Learn more about our background →Don't Wait for a Regulator to Find the Gap.
Book a free 30-minute compliance assessment. We'll review your current AI stack and tell you exactly where you stand.