A Governed Position on Quantum: What Regulated Businesses Should Decide Now
The board of a regulated business will soon be asked its position on quantum, and a defensible answer rests on three decisions that can be taken now.
AI applications in finance, legal, healthcare, and other regulated sectors.
The board of a regulated business will soon be asked its position on quantum, and a defensible answer rests on three decisions that can be taken now.
A .npmignore mistake shipped Claude Code's source to npm. The leaked codebase reveals practices that should inform AI toolchain due diligence.
Generic AI leadership optimises for the wrong thing in regulated industries. Three scenarios show why defensibility, not accuracy, is the goal.
GRC platform Delve generated 494 near-identical SOC 2 reports with pre-written auditor conclusions. The EU AI Act was designed to prevent this.
The barrier to building bespoke legal AI has collapsed. The EU AI Act's obligations have not. Every vibe-coded tool is potentially high-risk.
The EU AI Act determines scope by market reach, not incorporation.
Article 10 requires bias testing across protected characteristics. GDPR Article 9 restricts the data you need. The tension has no clean fix.
The EU AI Act is an operational maturity test. For high-risk systems, most obligations are engineering obligations. Compliance is architecture.
Post-Brexit, the EU AI Act still applies to UK businesses deploying AI in the EU. The extraterritorial reach, and what you need to prepare.