00% SCROLL
FOR FINANCIAL SERVICES & INSURANCE

Regulated work,
at regulated speed.

DORA reports, risk memos and underwriting packs — grounded in your filings, cited, and processed inside your own perimeter.

How sovereignty works
ON-PREM OR SOVEREIGN EU CLOUDZERO DATA EGRESSNEVER TRAINED ON YOUR DATA
STAY ON TOP

The desk, summarised.

What moved, what’s at risk — plus agent throughput.

Risk Pulse for Jun 15 Listen1.0×
PROJECTS
DORA submission
On trackBy Diana · 2 hours ago
·ICT register evidenced end to end
·Incident log within the 24h window
Underwriting pack
At riskBy Data Analyst · 1 day ago
·Model reconciled
·Waiting on the counterparty SOC 2
Documents shipped by agent
181512963ResearcherLegal AnalystNo agent
MULTIPLAYER

Evidence, reviewed together.

@mention a Data Analyst on a report; it traces every figure back to source.

Evidence the DORA incident log28 / 187
Evidence the DORA incident log
Two major incidents need the 24-hour reporting trail.
Activity
K karri created the review · 5min ago
Kkarri 4 min ago
Can we trace each entry to the source system?
AAlex just now
@Data Analyst can you evidence the entries?
Alex connected Data Analyst · just now
Data Analyst · Working 00:20
Reading the incident log, INC-204
RISK-204
In Progress
Medium
AAlex
Data Analyst
LABELS
DORA
CYCLE
Review 144
PROJECT
Risk & Compliance
SOVEREIGN BY ARCHITECTURE

Your data never leaves the bank.

Diana runs on your infrastructure or a sovereign EU cloud. Client financials are processed where they live — no external call in normal use, no training, no egress.

ON-PREMSOVEREIGN CLOUDZERO DATA EGRESSEU ONLY
THE REGULATION YOU LIVE UNDER

Built for the rulebook.

DORA

ICT risk reports and registers, evidenced end to end.

MiFID II

Disclosures and records from your own data.

AI Act

A governable, documentable, EU-resident system.

EVIDENCE-GRADE

Every figure cited for the regulator.

Each number and statement links to the source document and page — so a regulator’s request is answered, not improvised.

Liability is capped at 12 months’ fees.§ 11.2
Termination for convenience on 90 days’ notice.§ 9.1
DPA omits an EU SCC module for transfers.DPA § 4
Auto-renewal runs 24 months.§ 3.3
THE OUTPUT

A DORA report that stands up to audit.

Diana assembles the report from your registers and logs, with every assertion linked to the evidence behind it.

Document
dora-ict-risk-report.docx Editable Download
DORA REPORT
DORA ICT Risk Report
Risk & Compliance · annual · evidenced
ICT risk profile

Critical systems were assessed against the DORA risk taxonomy.

Register · CR-01
Incident reporting

Two major incidents were reported within the 24-hour window.

Log · INC-204
Third-party risk

All critical providers carry an exit plan and SLA evidence.

TPRM · tab 3
Ask Diana about this document — select a line to cite or redline…
WHAT YOU’LL RUN

The work you hand to Diana.

Assemble the DORA ICT risk reportPDF
Draft an underwriting summary from the fileDOCX
Compile a KYC pack from your recordsPDF
Build a stress-test model from the dataXLSX
0
figures that can’t be traced to a source
24h
incident-reporting window, met with evidence
100%
on your infrastructure or sovereign EU cloud
STRAIGHT ANSWERS

What the desk asks.

Where does client data live?
On your own infrastructure or a sovereign EU cloud — never sent out.
Is the reporting evidence-grade?
Yes — every figure and statement links to the source document and page.
Can we evidence it for the regulator?
Yes — built to be audited against DORA, MiFID II and the AI Act.
How does Diana get our documents?
You attach files or point it at a project folder — nothing is uploaded to a third party. It reads them in place, inside your environment.
How do we get started?
Request a deployment and we install Diana on your own infrastructure or a sovereign EU cloud, with your templates and sources connected.
WHAT YOU’LL SHIP

What you’ll produce.

Formatted, sourced, in your environment.

DRAFTS
DORA_ICT_Risk_Report.pdfPDF
Underwriting_Summary.docxDOCX
KYC_Pack.pdfPDF
Stress_Test_Model.xlsxXLSX
Runs on your infrastructure. Zero data egress. Never used to train a model.

Sovereign AI,
on your terms.

Give Financial Services a workspace that turns your own sources into finished work — entirely inside your walls.

See the architecture