A standard by True North Agentics

The Controlled-AI Framework: four controls that keep client data yours.

Most AI advice skips the only question that matters when you hold other people's data: who can see it, and what is the AI allowed to do on its own? The Controlled-AI Framework answers that in four controls — the standard we build every workflow against, and the checklist you can hold any AI tool or partner to.

The four controls

Controlled AI, not autonomous AI.

Any one of these on its own isn't enough. Controlled AI is the combination — data, access, action, and proof, all accounted for.

1. Data boundary

Your data is never used to train any model. For sensitive work, it can run on infrastructure you control, so the data stays inside your environment and your jurisdiction — not in someone else's product.

2. Human approval

The AI drafts, checks, and proposes — but nothing files, sends, posts, pays, or deletes on its own. A person signs off on every step that touches a client, a filing, or money.

3. Least access

Roles and permissions keep each client's data separated and reachable only by the right people. The AI connects to exactly what a task needs and nothing more — least access by default.

4. Audit trail

Every action — what the AI read, what it drafted, who approved it — is recorded, so you always have a clear, reviewable history that stands up to a client question, an auditor, or a regulator.

Use it as a checklist

Take these four controls into any AI conversation — vendor, consultant, or in-house. If a tool can't answer all four plainly and in writing, it isn't ready for your clients' data.

Where it applies

Built for regulated, trust-heavy work — accounting and bookkeeping firms, finance and insurance teams — where a data leak or an unapproved action isn't an inconvenience, it's the whole reputation.

The reason to name this a framework instead of a feature is simple: firms get burned when they check one box and assume the rest. A tool that "doesn't train on your data" can still take an action no one approved. A system with human approval can still over-share access across clients. Real control means all four at once — where the data lives, who can reach it, what's allowed to happen, and whether you can prove it after the fact.

True North Agentics builds every workflow against these four controls, and we'd rather you ask hard questions than take our word for it. Bring the framework to any vendor or consultant you're considering — including us.

Curious whether a specific workflow in your firm can be automated inside these four controls? A free workflow audit gives you a straight answer — including an honest "not worth it" if that's the case.

Book a free workflow audit

Controlled AI

AI that keeps your clients' data yours.

Book a free workflow audit