How can we help?

GovSecure is an AI governance platform built for small and mid-sized businesses (SMBs). We help you assess AI risks, generate governance artefacts (policies, DPIAs, threat models, playbooks), and stay compliant with frameworks like NIST AI RMF, ISO/IEC 42001, the EU AI Act, and GDPR — without needing a dedicated compliance team.

We're built for SMBs and scale-ups that are deploying AI (chatbots, ML models, GenAI tools) and need practical, lightweight governance. If you're asking 'how do we use AI responsibly without hiring a compliance officer?', GovSecure is for you.

No. Our AI Advisor (Govi) translates complex regulatory language into plain, actionable guidance. That said, the output is preliminary — for binding decisions, always consult qualified governance counsel.

We map every assessment against NIST AI Risk Management Framework (AI RMF), ISO/IEC 42001 AI Management Systems, the EU AI Act, GDPR, and sector-specific guidance (HIPAA for healthcare, SOC 2, PCI-DSS, and more).

Under two minutes. Sign up with email or Google/GitHub, ask Govi a question about your AI use case, and you'll get a risk assessment and recommended policies immediately.

Govi is our AI Governance Advisor — a specialised assistant trained on AI RMF, ISO 42001, the EU AI Act, and GDPR. Describe your AI use case, and Govi returns a risk profile, recommended policies, applicable regulations, and follow-up questions to refine the assessment.

If your initial query is specific (e.g. 'Assess a customer service chatbot using GPT-4 for insurance claims'), Govi goes straight to a full assessment. If it's vague (e.g. 'I need an AI risk assessment'), Govi asks 3–5 targeted questions about your use case, industry, data, users, and deployment context — so the output is actually tailored to you, not a generic template.

Yes. Once Govi has enough context, it can generate full artefacts: AI Intake Risk Assessments, DPIAs, threat models, bias audits, vendor assessments, incident response playbooks, and governance roadmaps. Artefacts are saved to your account and can be exported as Markdown.

Every follow-up message carries the full thread history — prior exchanges, established facts (your industry, model, data types), and the original request. Govi will not re-ask questions you've already answered in the same conversation.

Yes. Conversations are tied to your account, stored encrypted, and never used to train external models. We do not share data with third parties beyond the LLM provider needed to generate responses, and we never log your queries in plain text outside your own dashboard.

Govi is a decision-support tool, not a replacement for expert judgement. Every response ends with a disclaimer: this is a preliminary assessment — consult governance counsel for binding advice. If you spot a mistake, use the Contact page to let us know.

Yes. The Free plan gives you access to all learning content and the Govi AI Advisor indefinitely — no credit card required. Paid plans (Pro, Team, Enterprise) unlock unlimited queries, the full analysis output, document generation, and regulatory mapping.

Yes. Upgrades take effect immediately. Downgrades apply at the end of your current billing cycle. You can manage everything from the billing portal.

All major credit and debit cards via Stripe, which is PCI-DSS Level 1 certified. We never store your card details directly.

You pay for 12 months upfront and save 20% compared to the monthly rate. You won't be charged again until the year is up.

Open the billing portal from your account or the pricing page. You can cancel at any time — you'll retain paid access until the end of your current billing period.

If you cancel within 14 days of your first paid charge, we'll issue a full refund — no questions asked. After that, access continues until the end of your billing period.

Contact our team via the Contact page. We'll reply within one business day with a tailored quote based on seat count, usage, and support needs.

Data is stored in encrypted PostgreSQL databases hosted in EU and US regions, depending on your account. All data at rest is encrypted with AES-256, and data in transit uses TLS 1.3.

Yes. We act as a data processor under GDPR, offer a Data Processing Addendum (DPA) on request, and honour data subject rights including access, deletion, and portability.

No. Your conversations, artefacts, and uploaded documents are never used to train LLMs or shared with third parties for training purposes.

Only you and users you explicitly invite to your workspace. GovSecure staff can access support tickets only with your permission.

Your artefacts remain available for 30 days after cancellation so you can export them. After 30 days, data is permanently deleted from our live systems; backups are purged within 90 days.

We're working towards SOC 2 Type II certification. Our security posture includes regular penetration testing, dependency scanning, and an active vulnerability disclosure programme.

Go to the sign-in page and click 'Forgot password'. We'll email you a reset link valid for 30 minutes.

Yes. Both OAuth providers are supported on the sign-in and signup pages.

Team and Enterprise plans support seat-based access. Invite teammates from the account settings page using their email address — they'll receive an invitation link.

Email support via the Contact page. Free users get responses within two business days; Pro and above get priority response within one business day. Enterprise customers have dedicated Slack channels.

Yes. Every generated artefact includes a Markdown export, and you can download your full conversation history from account settings.