DPO Radio
Forseti AI | Auditable AI for Compliance, Legal, Risk, Audit
FORSETI AI
Auditable AI for Compliance, Legal, Risk, and Audit
Grounded in your installed regulatory packs and your own records. Human-gated by design. Fully traceable through audit lineage.
Inline citations.
Human-gated writes.
Immutable audit lineage.
MCP-ready
Why Forseti AI Matters
Most "AI for compliance" products lead with capability. The harder question, the one that decides whether the technology survives a regulatory inspection, is what the AI is structurally prevented from doing. Forseti is built around that question.
Forseti grounds every answer in two sources of truth: the customer's own data (DPIAs, vendor records, contracts, rights-request cases, breach notifications, governance documents, controls, audit findings) and the regulatory frameworks installed in their organisation. No legal conclusion leaves without an inline citation that names the framework and the specific requirement. When grounding is unavailable Forseti says so explicitly.
Forseti drafts; humans accept. Record edits, task creation, evidence attachments, and dossier filing all wait on operator confirmation. External proposals through MCP land in the same approval queue. There is no "trusted key" bypass.
Every chat, tool call, workflow run, draft, and approved change flows through the same immutable audit trail as the rest of the platform. When a regulatory inspector asks "what did the AI say about this?", the customer can point to the lineage.
What Forseti AI Includes
Personas
Six specialist voices for compliance, legal, privacy, risk, and audit work
A Generalist plus five specialists – Compliance Specialist, Legal Counsel, DPO Advisor, Risk Analyst, and Auditor's Eye – switchable mid-conversation. Each persona includes its own system prompt, tool affinity, citation-discipline block, off-topic refusal, and Glitnir-court geometric avatar.
Chat & Projects
Conversational AI grounded in your records and your installed regulatory packs
Open a Forseti chat from any record-bearing surface in the platform. The conversation is pre-loaded with a summary of the record, the relevant regulatory packs, and the right specialist persona. Group long-running work into AI Projects with their own document membership, folder tree, and member access control.
Cross-Module Workflows
Twenty built-in structured drafts across privacy, risk, vendor, audit, and legal work
Twenty one-click workflows prefetch context, generate grounded drafts, and let operators approve or reject each field. Covers DPIAs, DSRs, RoPA, transfers, consent, breaches, authority responses, vendor evidence, contracts, risk reviews, policy gaps, remediation plans, control mapping, and audit walkthroughs.
Tabular Reviews
N × M extraction grids with citations per cell
Compare N documents across M attributes, governing law, dispute resolution, liability cap, indemnity, termination notice, IP assignment, in one grid. Each cell carries an inline citation back to the source clause. Excel and CSV export through the platform's unified export pipeline. Cell-level discussion threads let teams annotate decisions inline.
Document Review
AI-suggested redlines with version history and per-edit accept or reject
Upload a draft contract, DPA, or policy memo. Forseti proposes redlines as suggested edits. The reviewer accepts or rejects each, building a new version of the document. Versions are immutable; rejections are recorded.
Audit Lineage & Draft Evidence
Chain-of-custody trace from regulatory citation to source record
Cross-module trace from a regulatory citation back to the source record, including chats, tool calls, generated tasks, evidence drafts, and document versions. AI-generated evidence is draft-only; the approval transition is a human action captured in the audit trail.
Cross-Framework Conflicts
Curated catalog of conflicts between installed regulatory packs
A curated catalog of regulatory conflicts across installed frameworks, including GDPR minimisation vs log retention, PDPL transfer limits vs DORA reporting, and SOC 2 retention vs erasure rights. Filter by framework, topic, severity, or status, then review side-by-side positions with acknowledge, assign, and resolve workflows.
Usage & Cost Governance
Per-tier monthly token allowance with full consumption transparency
Forseti is included in every ComplianceOne tier. The differentiator is the monthly token bucket. Usage breaks down by user, persona, feature, workflow, and integration key, with reconciliation tools to match platform draw against upstream invoices. Bucket exhaustion appears in-product, not as a silent failure.
MCP Connector
Bring Forseti to your existing AI workflow through the Model Context Protocol
External Claude clients – Anthropic Console, Claude Code, custom Slack bots, vendor-onboarding automations – call Forseti's tool surface over MCP using bcrypt-hashed per-organisation API keys. Per-key tool whitelist scoping. Every external write proposal lands in an in-product approval queue with a 24-hour expiry that a human reviews before anything runs.
WHAT FORSETI WILL NOT DO
The constraints are the product.
The features ride on top.
Built for Trust.
Every guardrail is intentional.
Nothing is left to chance.
Designed for Audit.
Every decision is traceable.
Every action leaves a trail.
Off-Topic Refusal
Each persona includes an off-topic handling block. It politely refuses outside the compliance, legal, privacy, risk, or audit scope.
Citation Grounding
No legal conclusion without an inline citation naming the regulatory framework and the specific requirement. It says so explicitly.
Human-gated Writes
Forseti drafts; humans accept. Record edits, tasks, evidence attachments, and dossier filings wait on operator approval.
No Deletion
No autonomous filing, no AI-side evidence approval. The tool surface offers none of these by construction.
No Fabrication
Installed-pack-only sources close the fabrication loop. Forseti won’t synthesise answers when grounding is unavailable.
Memory Privacy
Every memory read is scoped to the customer organisation. Cross-organisation leakage is impossible by construction.
How Forseti AI Is Priced
Monthly Tokens
There is no separate AI add-on SKU. The differentiator is the monthly token bucket, which scales by tier.
Usage Dashboard
The Usage Dashboard breaks consumption down by user, persona, feature, workflow, and (for organisations running the MCP Connector) external integration key.
Reconciliation View
The Reconciliation view lets the country manager match the platform's bucket draw against the upstream provider's invoice.
Forseti is included in every ComplianceOne tier
Light
100,000
monthly tokens
Standard
500,000
monthly tokens
Enterprise
5,000,000
monthly tokens
Buy extra token bundles via the Usage Dashboard when your monthly allowance is exhausted.
Bucket exhaustion appears as an in-product affordance, not a silent failure.
High Usage
Who Forseti AI Is For
Forseti is built for the roles that own regulated compliance work day to day.
Data Protection Officers
Use it to draft DPIAs, transfer impact assessments, and rights-request responses with citation grounding.
Compliance Managers
Use it for cross-framework conflict triage and control coverage walkthroughs.
Legal Counsel
Use it for contract redline review, clause-library lookups, and N × M comparison across vendor agreements.
CISOs & Security Leads
Use it for incident timelines, anomaly explanation, and policy gap detection.
Internal Audit Leads
Use it for walkthrough scripts, privilege-creep scans, and evidence-sufficiency reviews.
Country Managers
Use the Cross-Framework Conflicts surface and the Usage Dashboard to manage AI spend across the team.
Vendor Risk Leads
Use the vendor evidence collector and the sub-processor change impact workflow.
Contract Counsel
Use the redline assistant and the obligation extraction workflow.
See Forseti AI in Action
Ready to see how Forseti grounds AI answers in your installed regulatory packs and your own records? Request a personalized demo with your compliance scenarios.
Tu Pham - Country Manager, AesirX
Head of Risk with 15+ years in fintech and banking across ERM, compliance, fraud, audit, and regulatory frameworks.
Next Steps
Start a Compliance Pilot
Deploy Forseti against your installed regulatory frameworks and your own DPIA, RoPA, vendor, contract, and incident records. See structured drafts with citation grounding within 30 days.
Discuss Your Compliance Needs
Talk to our team about how Forseti fits your compliance, legal, privacy, risk, and audit operations, and which feature categories matter most for your environment.
Frequently Asked Questions About Forseti AI
Forseti is the AI legal and compliance advisor inside AesirX ComplianceOne. It helps compliance, legal, privacy, risk, and audit teams by answering grounded questions, drafting structured outputs, supporting cross-module workflows, and maintaining audit lineage across its activity. It is designed as an auditable advisor, not an autonomous decision-maker.
Forseti is grounded in the organisation's installed regulatory packs and its own compliance records, not just in general model training. It also operates with explicit guardrails: no autonomous filing, no delete tools, no self-approval of evidence, no legal conclusion without grounding, and no bypass of human approval for writes. That makes it suitable for regulated compliance work rather than generic chat assistance.
Forseti can automate the deterministic and grounded slice of work across privacy, legal, risk, audit, and operational workflows, including tasks such as DPIA drafting support, transfer assessment drafting, vendor onboarding evidence collection, contract obligation extraction, consent gap analysis, breach timeline drafting, remediation planning, and audit walkthrough generation. In each case it produces structured drafts for human review rather than acting autonomously.
Yes. Forseti uses an organisation-scoped memory model to retain prior framework interpretations, process preferences, risk-appetite positions, and known unresolved gaps. Future answers and workflow drafts reflect how the organisation has previously decided similar issues, without retraining the model and without allowing cross-organisation leakage.
Forseti stays auditable through citation grounding, tool-level policy controls, human-gated write actions, immutable audit lineage, and strict limits on what it is allowed to do. Every meaningful interaction can be traced through chats, tool calls, workflow runs, pending-write approvals, and resulting record changes. The goal is not autonomous AI, but AI that can survive regulatory scrutiny.
The evolution of Aesir is Aesir + 
(the Norse symbol for Necessity)"Needed in order to achieve a particular result"
♥Join the AesirX Privacy Newsletter. Stay Informed. Stay Compliant.
