UK DUAA right to complain enforces in -- days · 19 June 2026 EU AI Act high-risk enforces in -- days · 2 August 2026
OBEXGATE
Free AI Risk Assessment Does OBEXGATE apply to you?

Governance Foundation Report · $199

Get a weighted AI governance score and a full baseline report before regulators, auditors, customers, investors, or procurement teams ask harder questions.

The Governance Foundation Report gives your organisation a weighted score based on your answers, a full governance baseline report, likely regulatory issues, and suggested basic remediation pathways. It is built for small businesses, scale-ups, agencies, founder-led companies, and teams that need more than a lightweight exposure scan but are not ready for the full audit-grade EVF.

OBEXGATE does not retain your assessment intake answers. Each report is generated fresh from the information you submit. We do not have access to previously entered assessment information after report generation. Payment processing, email delivery, and legally required transaction records may be handled separately by the relevant service providers.

What this report covers

The Governance Foundation Report provides a weighted score and full baseline report based on your submitted answers. It identifies likely regulatory issues, documentation gaps, structural governance weaknesses, AI-use exposure, data handling concerns, and basic remediation pathways.

The report provides scored direction across five frameworks: Governance, Technical, Operational, Legal, and Financial. It is intended to help leadership understand where risk may exist and what should be addressed first.

What this report does not cover

This report is not a formal audit and does not guarantee that your organisation is free from fines, enforcement risk, contractual exposure, or regulatory findings.

It does not include FRIA, audit-grade EVF evaluation, specific remediation planning, WCAG assessment, SOC 2 readiness, NIST alignment, legal advice, or disclosure of OBEXGATE's proprietary scoring methodology.

It also does not provide a full methodology-based compliance assessment under the EU AI Act, GDPR, UK GDPR, or other regulatory requirements. Those are reserved for the Full EVF because they require deeper evidence review, expert analysis, and organisation-specific implementation work.

The report provides a weighted score based on your submitted answers. The scoring methodology is proprietary and is not described publicly. EVF scoring reflects high-level governance expertise and is conducted by industry experts with direct knowledge of regulatory requirements, enforcement expectations, and operational governance failure modes.

Organisation and exposure

Q1

Where does your organisation operate or serve users?

Select all that apply.

Select at least one region to continue.

Q2

Approximate annual revenue?

Choose one.
Need audit-grade evaluation, FRIA, shadow AI discovery, specific remediation planning, or a report prepared for General Counsel, regulators, auditors, or enterprise procurement? The Full EVF is the appropriate tier. Discuss Full EVF →

Choose a revenue band to continue.

Q3

Which best describes your organisation?

Choose one.

Choose one option to continue.

Q4

Do you sell to, serve, or process data from users outside your home country?

Choose one.

Choose one option to continue.

Q5

Do you sell to enterprise customers, government agencies, regulated industries, or platforms with vendor review requirements?

Choose one.

Choose one option to continue.

AI system use

Q6

How does your organisation currently use AI?

Select all that apply.

Select at least one option to continue.

Q7

Are any AI systems live with customers, users, employees, or operational teams?

Choose one.

Choose one option to continue.

Q8

Could any AI output influence a decision about a person?

Choose one.

Choose one option to continue.

Q9

Could an AI system take action without direct human approval?

Choose one.

Choose one option to continue.

Q10

Was any AI-enabled app, workflow, chatbot, agent, or website built using AI coding tools, contractors, templates, or low-code/no-code platforms?

Choose one.

Choose one option to continue.

Data and rights exposure

Q11

What kind of data may be in scope?

Select all that apply.

Select at least one option to continue.

Q12

Could sensitive or high-impact data be processed?

Select all that apply.

Select at least one option to continue.

Q13

Do you collect or store user prompts, uploaded files, chat transcripts, form submissions, generated outputs, or support conversations?

Choose one.

Choose one option to continue.

Q14

Do you have defined retention rules for AI inputs, outputs, logs, and user-submitted data?

Choose one.

Choose one option to continue.

Q15

Can users request deletion, correction, export, complaint review, or human review of data or AI-related decisions?

Choose one.

Choose one option to continue.

Governance ownership

Q16

Who owns AI governance decisions at the point of execution?

Choose one.

Choose one option to continue.

Q17

Do you have a written AI use policy or governance policy?

Choose one.

Choose one option to continue.

Q18

Do you maintain an inventory of AI tools, models, vendors, workflows, or agents in use?

Choose one.

Choose one option to continue.

Q19

Do you review vendors or third-party AI tools before use?

Choose one.

Choose one option to continue.

Q20

Do contracts, vendor agreements, privacy terms, or internal policies define who is responsible if AI output causes harm, error, breach, discrimination, or regulatory exposure?

Choose one.

Choose one option to continue.

Evidence, controls, and operating resilience

Q21

If asked today, what evidence could you provide?

Select all that apply.

Select at least one option to continue.

Q22

Are human review, override, escalation, or stop processes documented?

Choose one.

Choose one option to continue.

Q23

Are AI outputs monitored after deployment for errors, drift, complaints, bias, misuse, or unexpected behaviour?

Choose one.

Choose one option to continue.

Q24

Can governance gates be bypassed under deadline, sales, executive, customer, or operational pressure?

Choose one.

Choose one option to continue.

Q25

Have you had any AI-related incidents, customer complaints, hallucination issues, privacy concerns, accessibility complaints, security concerns, or internal escalations?

Choose one.

Choose one option to continue.

Governance Foundation Report

Your Governance Foundation Report includes:

Generated after payment and delivered by email. Includes a 30-minute expert call within five business days.

$199 one-time · Generated after payment and delivered by email.

What you receive

  • Weighted AI governance score based on your submitted answers
  • Full report delivered as a PDF
  • Likely regulatory issues based on jurisdiction, AI use, data handling, documentation, and operational exposure
  • Scored direction across Governance, Technical, Operational, Legal, and Financial frameworks
  • Basic remediation pathways for the most material gaps identified
  • Documentation gaps that may matter to auditors, regulators, customers, investors, or procurement teams
  • 30-minute expert call within five business days

Enter your name to continue.

Enter a valid email address.

Enter your organisation name to continue.

OBEXGATE does not retain your assessment intake answers. Each report is generated fresh from the information you submit. We do not have access to previously entered assessment information after report generation. Payment processing, email delivery, and legally required transaction records may be handled separately by the relevant service providers.

Processed securely by Stripe.

Need the Full EVF?

Need audit-grade evaluation, FRIA, shadow AI discovery, specific remediation planning, or a report prepared for General Counsel, regulators, auditors, or enterprise procurement? The Full EVF is the appropriate tier.

Discuss Full EVF →

Report on its way

Check your inbox.

Your weighted Governance Foundation Report is being generated from the answers you submitted and will be delivered to your inbox as a report and PDF. Your purchase includes a 30-minute expert call to walk through the findings, likely regulatory issues, and suggested basic remediation pathways.

Book your 30-minute expert call.

Your purchase includes a 30-minute call with a governance expert to walk through your findings and answer questions. Book a time that suits you.

Book your expert call →

Need audit-grade evaluation, FRIA, shadow AI discovery, specific remediation planning, or a report prepared for General Counsel, regulators, auditors, or enterprise procurement? The Full EVF is the appropriate tier. Discuss Full EVF →

Payment cancelled

No charge was made.

Your assessment inputs are still saved in this browser. You can complete your report whenever you are ready.