Modulos Named in the Inaugural Gartner® Magic Quadrant™ for AI Governance PlatformsRead the

Press Release

AI Governance Platform

Modulos is the AI governance platform built for teams that need to operationalize EU AI Act compliance, manage AI risk, and prove conformity across regulatory frameworks. Four AI agents do the heavy lifting: quantifying risk in money, assessing controls, and mapping evidence. Your team reviews and decides.

The Governance Graph

See how frameworks, requirements, controls, and evidence connect. Implement a control once and it counts toward every framework that requires it.

Reuse, not duplication

A control you write once counts everywhere it applies

Each framework owns its own requirements. Controls cross-cut: one well-designed control can satisfy requirements in multiple frameworks. That is where Modulos eliminates duplicate work.

Frameworks
Requirements
Controls
Evidence
Risk Assessment Process satisfies 3 requirements across 3 frameworks · supported by 1 evidence types.
3
Frameworks shown
47+
Requirements
156+
Reusable controls
1
Source of truth
10× efficiency in GRC work

AI Agents That Do the Work

Human-in-the-loop AI agents automate the heavy lifting while you stay in control.

SCOUTAI assistant

Scout Assistant

Ask compliance questions in plain English. Scout knows your organization, projects, and where your evidence gaps are.

  • Understands your controls, risks, and compliance status
  • Searches your GitHub, Confluence, Google Drive for evidence
  • Watch reasoning unfold in real-time with source citations
Scout Assistant chat interface showing compliance questions and contextual answers
CTL-AGTControl assessment agent

Control Assessment Agent

Automatically evaluates control implementation and generates structured assessments with a readiness score.

Before
2–4 hours
per control
After
5 min
AI + review
  • Readiness scoring with gap identification
  • Prioritized recommendations with citations
Control Assessment Agent showing automated evaluations and gap identification
EVD-AGT

Evidence Agent

Upload documents and the agent generates metadata, summaries, and control mapping suggestions. You review before accepting.

15–30 min2 minper document
RSK-AGT

Risk Agent

Automates risk quantification using Fermi estimation. Investigates context, calculates risk values, and audits its own reasoning before delivering results.

Fermi estimationMulti-agent pipeline
Human-in-the-Loop: every AI recommendation requires human approval.

Easy Integration with your AI Stack

Connect Scout to your docs and repos. Feed operational metrics into runtime testing.

GitHub

GitHub

Code repositories

Bitbucket

Bitbucket

Code repositories

Azure

Azure

Cloud platform

AWS

AWS

Cloud platform

Google Drive

Google Drive

Document storage

Confluence

Confluence

Wiki & documentation

Jira

Jira

Project management

Prometheus

Prometheus

Infrastructure monitoring

Datadog

Datadog

Observability platform

Langfuse

Langfuse

LLM observability

MLflow

MLflow

ML experiment tracking

Jupyter

Jupyter

Notebook analysis

Vijil

Vijil

AI security testing

REST API
Python SDK

Push operational metrics from CI/CD pipelines with the Python SDK. Metrics feed runtime tests that link directly to controls.

pip install modulos-client
from modulos_client.testing import log_metric

# Push a fairness metric from your CI pipeline
log_metric(
    metric_id="demographic_parity",
    value=0.92,
    project_id="loan-approval-model"
)

Runtime Inspection

Verify that controls hold in production. Every test result links to the control it validates and becomes audit-ready evidence.

Metric-Based Tests

Set pass/fail conditions on operational metrics from Prometheus, Datadog, AWS CloudWatch, and other sources. Tests run on a daily, weekly, or monthly schedule, and failures notify control owners automatically.

Threshold checksScheduled runsAuto-notification

Agentic Runtime Inspection™

Define compliance checks in natural language, as a test objective with pass criteria, and an AI agent executes them across connected systems. Multi-step, cross-system inspections that go beyond simple thresholds, producing structured verdicts with evidence and reasoning.

Natural language testsCross-system inspectionChange-aware reports

Enterprise-Ready Security

Built for organizations with serious compliance requirements.

SOC 2 Type II

Independently audited security controls

Data Encryption

AES-256 at rest, TLS 1.3 in transit

Data Residency

EU, US, UAE, Singapore & more regions

SSO & RBAC

8 distinct roles across organization and project scope, with separation of duties enforced by default

Flexible Deployment Solutions

Choose the deployment model that fits your organization's security, compliance, and operational needs.

SaaS

Best for: SMEs and enterprises with standard cloud requirements.

Quick to deploy and easy to scale. Ideal for teams that want to move fast without managing infrastructure. Available through cloud marketplaces.

Private Cloud / VPC

Best for: Enterprises with stricter data protection needs or complex infrastructure setups.

Run Modulos in your own dedicated cloud environment for enhanced security, data control, and compliance.

Trusted by 200+ organizations

Modulos customers include aDigital, SCSK, ETH, PwC, Berner Fachhochschule, Mobile Health, Serai, CertX, JobCloud, Xayn, Beyond Gravity, Armasuisse.

aDigital
SCSK
ETH
PwC
Berner Fachhochschule
Mobile Health
Serai
CertX

FAQ

Find answers to common questions about Modulos AI Governance Platform.

Because someone will ask for the record: a regulator, an auditor, a customer running due diligence, or your own board. Modulos is that system of record. Every AI system is registered with an owner and a lifecycle stage, every control is mapped to the frameworks that require it, every piece of evidence stays attached to the claim it supports, and every risk carries a monetary value. When the question comes, you export the answer instead of assembling it.

No, we are an AI governance platform. Data governance manages data quality, privacy, and lifecycle. AI governance addresses what makes AI systems different: model risk, algorithmic fairness, transparency, human oversight, and AI-specific regulation like the EU AI Act and ISO/IEC 42001. The two meet where your AI processes personal data, and Modulos maps those overlaps rather than replacing your data governance stack.

No. The platform connects to your existing tools and repositories to gather evidence and metrics, and your models and training data stay where they are. For organizations with strict requirements, Modulos runs as SaaS, private cloud, or VPC deployment.

The EU AI Act has been in force since August 2024 and applies in stages: prohibitions since February 2025, general application and GPAI obligations from August 2026, and high-risk system obligations from December 2027 following the 2026 Omnibus. Modulos ships requirement templates built on the published text, at organization level and per AI application, and framework mappings are updated as CEN/CENELEC harmonized standards and Commission guidance land.

AI-specific frameworks include the EU AI Act, ISO/IEC 42001, NIST AI RMF, OWASP Top 10 for LLM and for Agentic Applications, UAE AI Ethics, MAS FEAT, and Singapore’s Model AI Governance Framework for Agentic AI. Alongside them sit GDPR, NIS2, DORA, ISO/IEC 27001, and ISO/IEC 27701. The governance graph maps controls across all of them, so one control implemented once counts everywhere it applies.

See the Platform on Your Own Terms

Walk through the governance graph in a demo: how one control counts across the EU AI Act, ISO/IEC 42001, and NIST AI RMF, and where the agents hand your team hours back. Comparing vendors first? Start with the buyer's guide.