Trust layer

Evidence.Data.Human review.

The Protocol does not sell compliance theatre. It creates an operating layer a buyer can inspect.

EU / Spain-aware by design

The sensitive parts are visible before systems are touched.

The first scope can start with redacted screenshots, notes, examples and a workflow walkthrough. No admin access is needed to start.

01

Practical competence

60-90 minute session: how to use AI in the chosen workflow, what not to delegate, what to review and which evidence to keep.

02

Operating governance

AI tool inventory, simple use policy, starter decision log, human-in-the-loop zones and risk tags.

03

Data under control

NDA and DPA available when the scope requires it. Keys stay with the client. Deletion on request.

04

Honest limits

Not legal advice, certification or compliance promise. It is initial operating evidence for better decisions.

Sensitive questions

No fake proof.

Do you publish client data?

No client names, screenshots or data are published without permission. Private demos are redacted and never presented as client work unless they are.

Does this cover AI Act readiness?

It covers the initial operating evidence layer: where AI is used, what data it touches, who reviews, what the user sees and which evidence is retained.

Do you need tool access?

Not to start. One workflow, redacted screenshots, examples and notes are usually enough for the first pass.