Insights on AI security & governance
Practical thinking on shadow AI, data governance, enterprise security, and building AI systems you can actually trust.
Governance articles
8 posts
ISO 42001 explained for UK SMEs (without the jargon)
What ISO 42001 actually is, why buyers ask about it, and how a small UK firm can be ready in weeks rather than months.
EU AI Act, August 2026 — a 90-day playbook for UK firms
GPAI duties bite in August 2026, and they catch UK firms that sell into the EU. Here is the four-document, 90-day plan to be ready.
UK AI Regulation in 2026: What Your Practice Needs to Know
A plain-English 2026 overview — the Data (Use and Access) Act 2025, the UK Ai Bill, ICO guidance, sector regulators, and EU Ai Act cross-border effects.
Schools Need an AI Policy by 2026. Most Do Not Have One.
76% of teachers are not confident advising pupils on AI. The Education Select Committee is asking questions.
The Data (Use and Access) Act 2025: What It Actually Changes for AI
The most important UK AI legislation that actually passed. In force since February 2026.
UK AI Governance in 2026: What Every Business Needs to Know
From the AI Opportunities Action Plan to GDPR enforcement — a plain-English overview of UK AI regulation.
AI in Financial Services: Meeting FCA Expectations
How UK financial firms can adopt AI without falling foul of FCA and PRA requirements.
What Is Pre-Retrieval Security and Why Does It Matter?
Why filtering data after retrieval is the wrong approach — and how pre-retrieval enforcement changes the security model.