Compliance AI Shield Limited
Terms of Service
WE GOVERN AI EXECUTION.™
Effective Date: 28 April 2026
Entity: Compliance AI Shield Limited (Registered in England and Wales)
1. Acceptance of Terms
These Terms of Service (“Terms”) constitute a legally binding agreement between Compliance AI Shield Limited (“CAIS”, “we”, “us”, or “our”) and the corporate entity, regulated organisation, professional institution, or authorised representative (“Client”, “Organisation”, “you”) accessing our website, requesting deployment consultation, integrating our governance infrastructure, or utilising any CAIS runtime enforcement services.
By accessing our systems, submitting information through our website, requesting deployment, or integrating CAIS infrastructure into your operational environment, you acknowledge that you have read, understood, and agree to be bound by these Terms.
2.Scope of Service: Inline Runtime Governance Infrastructure
Compliance AI Shield (“CAIS”) provides enterprise AI governance infrastructure designed to operate as an inline runtime enforcement layer between enterprise users and external AI systems.
The platform is engineered to:
intercept AI prompts and outputs prior to execution,
apply deterministic policy validation,
sanitise sensitive information,
generate governance telemetry,
and create cryptographically verifiable audit provenance.
CAIS is intended for regulated operational environments including, but not limited to:
legal practices,
independent financial advisers (IFAs),
healthcare providers,
NHS clinics,
insurance firms,
accountancy practices,
and compliance-sensitive enterprises.
The platform functions as a governance enforcement infrastructure layer and not as a substitute for legal, compliance, regulatory, or professional advice.
3. Deterministic Runtime Enforcement Architecture
CAIS utilises a multi-layer runtime governance architecture designed to enforce operational compliance controls prior to external AI model execution.
The infrastructure may include:
Inline Runtime Interception,
Zero-Trust Sanitisation Pipelines,
Named Entity Recognition (NER),
PII detection and tokenisation,
policy enforcement logic,
governance telemetry generation,
cryptographically verifiable audit provenance,
and Human-in-the-Loop (“HITL”) escalation controls.
CAIS reserves the right to modify, improve, expand, or refine enforcement logic and governance infrastructure without prior notice where required for operational security, regulatory alignment, or infrastructure optimisation.
4. Allocation of Responsibility & Human Oversight
While CAIS provides deterministic governance enforcement infrastructure designed to reduce operational and regulatory risk, ultimate legal, regulatory, and operational accountability remains solely with the Client.
Clients remain fully responsible for:
internal governance policies,
regulatory compliance,
operational decision-making,
employee conduct,
AI usage oversight,
and review of all AI-generated outputs.
CAIS functions as a technical governance safeguard and enforcement infrastructure layer only.
Clients must maintain appropriate Human-in-the-Loop (“HITL”) oversight procedures for any operationally sensitive, regulated, or high-risk AI usage scenarios.
5. Prohibited Use
Clients may not use CAIS infrastructure:
in violation of applicable laws or regulations,
for unlawful surveillance activities,
for prohibited AI practices under applicable AI legislation,
for deceptive, manipulative, or fraudulent conduct,
or for activities reasonably likely to cause harm to individuals, organisations, or public infrastructure.
Without limitation, prohibited activities include:
unlawful biometric surveillance,
social scoring systems,
malicious prompt injection activities,
attempts to circumvent governance enforcement controls,
exploitation of vulnerable individuals,
or deployment of AI systems intended to unlawfully manipulate human behaviour.
CAIS reserves the right to suspend or terminate services immediately where prohibited use is identified or reasonably suspected.
6. Regulatory Alignment
CAIS infrastructure is designed to support operational governance alignment with regulatory and industry frameworks including, where applicable:
UK GDPR,
EU GDPR,
EU AI Act,
UK AI Safety Institute guidance,
NIST AI Risk Management Framework,
FCA operational expectations,
and other emerging AI governance standards.
However, CAIS does not guarantee:
regulatory approval,
legal compliance,
supervisory acceptance,
or immunity from enforcement action.
Clients remain independently responsible for ensuring their operational activities comply with all applicable laws and regulatory obligations.
7. Governance Telemetry & Audit Provenance
7.1. Cryptographically Verifiable Audit Records
CAIS may generate tamper-resistant governance telemetry and audit provenance records for governed AI interactions.
These records may include:
execution timestamps,
policy validation events,
governance enforcement decisions,
runtime telemetry,
and cryptographic integrity verification using SHA-256 hashing methodologies.
These records are designed to support operational auditability and governance traceability.
7.2 Infrastructure Limitations
CAIS does not guarantee:
uninterrupted service availability,
zero-latency operation,
absolute threat prevention,
or complete elimination of operational or regulatory risk.
AI systems remain probabilistic technologies, and governance infrastructure cannot eliminate all possible operational failures, hallucinations, misuse scenarios, or regulatory exposure.
8. Limitation of Liability
To the fullest extent permitted by applicable law:
CAIS shall not be liable for indirect, incidental, consequential, punitive, or special damages,
including regulatory penalties, reputational damage, business interruption, lost profits, or loss of data.
CAIS’s aggregate liability arising from or related to these Terms shall not exceed the total fees paid by the Client to CAIS during the twelve (12) months preceding the event giving rise to the claim.
CAIS shall not be liable for:
inaccurate client-provided data,
third-party AI model behaviour,
external API failures,
regulatory interpretation changes,
or operational misuse of AI systems by the Client.
9. Deployment & Infrastructure Provisioning
9.1 Digital Infrastructure Services
CAIS provides digital-only enterprise governance infrastructure services and does not supply physical goods.
Provisioning may include:
API access,
governance routing infrastructure,
deployment consultation,
runtime enforcement configuration,
onboarding support,
governance telemetry systems,
and secure administrative credentials.
9.2 Deployment Timelines
Deployment timelines vary depending on:
infrastructure complexity,
integration requirements,
governance configuration scope,
and deployment architecture.
Estimated deployment schedules provided by CAIS are indicative only and do not constitute guaranteed delivery deadlines.
9.3 Infrastructure Access
Access credentials, API keys, deployment materials, and governance configuration information will be securely delivered to authorised Client representatives using approved communication methods.
Clients are solely responsible for maintaining the confidentiality and security of all access credential
10. Subscription Terms & Cancellation
10.1 Governance Infrastructure Agreements
CAIS services are provided exclusively under:
Annual Infrastructure Agreements (payable annually, quarterly, or monthly as agreed),
Enterprise Deployment Contracts,
Custom Institutional Licensing Arrangements.
CAIS does not offer rolling monthly, cancel-anytime SaaS subscriptions. Specific commercial terms, billing frequencies, and deployment scopes will be governed by a separate Order Form or Enterprise Agreement.
10.2 Contractual Term & Cancellation
Cancellation requests must be submitted in writing to: support@complianceaishield.co.uk
Unless otherwise agreed in writing in an active Order Form:
Annual Infrastructure Agreements remain legally binding for the full duration of the agreed twelve (12) month term, regardless of the agreed payment schedule (e.g., monthly billing).
Clients must provide a minimum of sixty (60) days’ written notice prior to the end of their current annual term if they do not wish to renew.
10.3 Access Revocation & Data Handling
Upon termination or cancellation:
Infrastructure access may be revoked immediately,
Governance routing rules may be disabled,
Client-specific cached operational data will be securely purged in accordance with applicable data protection obligations.
11. Refund Policy
11.1 Infrastructure & Deployment Fees
Cancellation requests for any monthly compute tier must be submitted in writing to sales@complianceaishield.co.uk. We require a standard thirty (30) day notice period prior to your next billing cycle to cancel your subscription without incurring the next month's charge.
11.2 Subscription Fees
Unless otherwise required by law or expressly agreed in writing:
subscription payments are non-refundable,
unused service periods are not eligible for cash refunds,
and unused infrastructure allocations do not roll over between billing periods..
11.3 SLA Considerations
Where applicable enterprise Service Level Agreements (“SLAs”) exist, remedies for service disruptions may be limited to service credits as defined within the applicable agreement.
Service credits are not redeemable for cash.
12. Intellectual Property
All rights, title, and interest in:
the CAIS platform,
runtime governance infrastructure,
enforcement methodologies,
governance architectures,
software systems,
trademarks,
deployment frameworks,
and associated intellectual property
remain the exclusive property of Compliance AI Shield Limited.
Clients are granted a limited, non-exclusive, non-transferable licence to access and utilise CAIS services solely for authorised business purposes during the term of their active agreement.
13. Confidentiality
Clients agree not to disclose:
proprietary deployment methodologies,
governance logic structures,
infrastructure architecture,
technical documentation,
or non-public operational information
without prior written consent from CAIS.
CAIS similarly agrees to maintain reasonable safeguards regarding confidential client information in accordance with applicable data protection obligations.
14. Governing Law & Jurisdiction
These Terms shall be governed by and construed in accordance with the laws of England and Wales.
Any disputes arising out of or relating to these Terms or CAIS infrastructure services shall be subject to the exclusive jurisdiction of the courts of England and Wales.
Compliance AI Shield Limited
Company Registration Number: 17303702
Registered Office:
71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
Compliance AI Shield Limited
Terms of Service
WE GOVERN AI EXECUTION.™
Effective Date: 28 April 2026
Entity: Compliance AI Shield Limited (Registered in England and Wales)
1. Acceptance of Terms
These Terms of Service (“Terms”) constitute a legally binding agreement between Compliance AI Shield Limited (“CAIS”, “we”, “us”, or “our”) and the corporate entity, regulated organisation, professional institution, or authorised representative (“Client”, “Organisation”, “you”) accessing our website, requesting deployment consultation, integrating our governance infrastructure, or utilising any CAIS runtime enforcement services.
By accessing our systems, submitting information through our website, requesting deployment, or integrating CAIS infrastructure into your operational environment, you acknowledge that you have read, understood, and agree to be bound by these Terms.
2.Scope of Service: Inline Runtime Governance Infrastructure
Compliance AI Shield (“CAIS”) provides enterprise AI governance infrastructure designed to operate as an inline runtime enforcement layer between enterprise users and external AI systems.
The platform is engineered to:
intercept AI prompts and outputs prior to execution,
apply deterministic policy validation,
sanitise sensitive information,
generate governance telemetry,
and create cryptographically verifiable audit provenance.
CAIS is intended for regulated operational environments including, but not limited to:
legal practices,
independent financial advisers (IFAs),
healthcare providers,
NHS clinics,
insurance firms,
accountancy practices,
and compliance-sensitive enterprises.
The platform functions as a governance enforcement infrastructure layer and not as a substitute for legal, compliance, regulatory, or professional advice.
3. Deterministic Runtime Enforcement Architecture
CAIS utilises a multi-layer runtime governance architecture designed to enforce operational compliance controls prior to external AI model execution.
The infrastructure may include:
Inline Runtime Interception,
Zero-Trust Sanitisation Pipelines,
Named Entity Recognition (NER),
PII detection and tokenisation,
policy enforcement logic,
governance telemetry generation,
cryptographically verifiable audit provenance,
and Human-in-the-Loop (“HITL”) escalation controls.
CAIS reserves the right to modify, improve, expand, or refine enforcement logic and governance infrastructure without prior notice where required for operational security, regulatory alignment, or infrastructure optimisation.
4. Allocation of Responsibility & Human Oversight
While CAIS provides deterministic governance enforcement infrastructure designed to reduce operational and regulatory risk, ultimate legal, regulatory, and operational accountability remains solely with the Client.
Clients remain fully responsible for:
internal governance policies,
regulatory compliance,
operational decision-making,
employee conduct,
AI usage oversight,
and review of all AI-generated outputs.
CAIS functions as a technical governance safeguard and enforcement infrastructure layer only.
Clients must maintain appropriate Human-in-the-Loop (“HITL”) oversight procedures for any operationally sensitive, regulated, or high-risk AI usage scenarios.
5. Prohibited Use
Clients may not use CAIS infrastructure:
in violation of applicable laws or regulations,
for unlawful surveillance activities,
for prohibited AI practices under applicable AI legislation,
for deceptive, manipulative, or fraudulent conduct,
or for activities reasonably likely to cause harm to individuals, organisations, or public infrastructure.
Without limitation, prohibited activities include:
unlawful biometric surveillance,
social scoring systems,
malicious prompt injection activities,
attempts to circumvent governance enforcement controls,
exploitation of vulnerable individuals,
or deployment of AI systems intended to unlawfully manipulate human behaviour.
CAIS reserves the right to suspend or terminate services immediately where prohibited use is identified or reasonably suspected.
6. Regulatory Alignment
CAIS infrastructure is designed to support operational governance alignment with regulatory and industry frameworks including, where applicable:
UK GDPR,
EU GDPR,
EU AI Act,
UK AI Safety Institute guidance,
NIST AI Risk Management Framework,
FCA operational expectations,
and other emerging AI governance standards.
However, CAIS does not guarantee:
regulatory approval,
legal compliance,
supervisory acceptance,
or immunity from enforcement action.
Clients remain independently responsible for ensuring their operational activities comply with all applicable laws and regulatory obligations.
7. Governance Telemetry & Audit Provenance
7.1. Cryptographically Verifiable Audit Records
CAIS may generate tamper-resistant governance telemetry and audit provenance records for governed AI interactions.
These records may include:
execution timestamps,
policy validation events,
governance enforcement decisions,
runtime telemetry,
and cryptographic integrity verification using SHA-256 hashing methodologies.
These records are designed to support operational auditability and governance traceability.
7.2 Infrastructure Limitations
CAIS does not guarantee:
uninterrupted service availability,
zero-latency operation,
absolute threat prevention,
or complete elimination of operational or regulatory risk.
AI systems remain probabilistic technologies, and governance infrastructure cannot eliminate all possible operational failures, hallucinations, misuse scenarios, or regulatory exposure.
8. Limitation of Liability
To the fullest extent permitted by applicable law:
CAIS shall not be liable for indirect, incidental, consequential, punitive, or special damages,
including regulatory penalties, reputational damage, business interruption, lost profits, or loss of data.
CAIS’s aggregate liability arising from or related to these Terms shall not exceed the total fees paid by the Client to CAIS during the twelve (12) months preceding the event giving rise to the claim.
CAIS shall not be liable for:
inaccurate client-provided data,
third-party AI model behaviour,
external API failures,
regulatory interpretation changes,
or operational misuse of AI systems by the Client.
9. Deployment & Infrastructure Provisioning
9.1 Digital Infrastructure Services
CAIS provides digital-only enterprise governance infrastructure services and does not supply physical goods.
Provisioning may include:
API access,
governance routing infrastructure,
deployment consultation,
runtime enforcement configuration,
onboarding support,
governance telemetry systems,
and secure administrative credentials.
9.2 Deployment Timelines
Deployment timelines vary depending on:
infrastructure complexity,
integration requirements,
governance configuration scope,
and deployment architecture.
Estimated deployment schedules provided by CAIS are indicative only and do not constitute guaranteed delivery deadlines.
9.3 Infrastructure Access
Access credentials, API keys, deployment materials, and governance configuration information will be securely delivered to authorised Client representatives using approved communication methods.
Clients are solely responsible for maintaining the confidentiality and security of all access credential
10. Subscription Terms & Cancellation
10.1 Governance Infrastructure Agreements
CAIS services are provided exclusively under:
Annual Infrastructure Agreements (payable annually, quarterly, or monthly as agreed),
Enterprise Deployment Contracts,
Custom Institutional Licensing Arrangements.
CAIS does not offer rolling monthly, cancel-anytime SaaS subscriptions. Specific commercial terms, billing frequencies, and deployment scopes will be governed by a separate Order Form or Enterprise Agreement.
10.2 Contractual Term & Cancellation
Cancellation requests must be submitted in writing to: support@complianceaishield.co.uk
Unless otherwise agreed in writing in an active Order Form:
Annual Infrastructure Agreements remain legally binding for the full duration of the agreed twelve (12) month term, regardless of the agreed payment schedule (e.g., monthly billing).
Clients must provide a minimum of sixty (60) days’ written notice prior to the end of their current annual term if they do not wish to renew.
10.3 Access Revocation & Data Handling
Upon termination or cancellation:
Infrastructure access may be revoked immediately,
Governance routing rules may be disabled,
Client-specific cached operational data will be securely purged in accordance with applicable data protection obligations.
11. Refund Policy
11.1 Infrastructure & Deployment Fees
Cancellation requests for any monthly compute tier must be submitted in writing to sales@complianceaishield.co.uk. We require a standard thirty (30) day notice period prior to your next billing cycle to cancel your subscription without incurring the next month's charge.
11.2 Subscription Fees
Unless otherwise required by law or expressly agreed in writing:
subscription payments are non-refundable,
unused service periods are not eligible for cash refunds,
and unused infrastructure allocations do not roll over between billing periods..
11.3 SLA Considerations
Where applicable enterprise Service Level Agreements (“SLAs”) exist, remedies for service disruptions may be limited to service credits as defined within the applicable agreement.
Service credits are not redeemable for cash.
12. Intellectual Property
All rights, title, and interest in:
the CAIS platform,
runtime governance infrastructure,
enforcement methodologies,
governance architectures,
software systems,
trademarks,
deployment frameworks,
and associated intellectual property
remain the exclusive property of Compliance AI Shield Limited.
Clients are granted a limited, non-exclusive, non-transferable licence to access and utilise CAIS services solely for authorised business purposes during the term of their active agreement.
13. Confidentiality
Clients agree not to disclose:
proprietary deployment methodologies,
governance logic structures,
infrastructure architecture,
technical documentation,
or non-public operational information
without prior written consent from CAIS.
CAIS similarly agrees to maintain reasonable safeguards regarding confidential client information in accordance with applicable data protection obligations.
14. Governing Law & Jurisdiction
These Terms shall be governed by and construed in accordance with the laws of England and Wales.
Any disputes arising out of or relating to these Terms or CAIS infrastructure services shall be subject to the exclusive jurisdiction of the courts of England and Wales.
Compliance AI Shield Limited
Company Registration Number: 17303702
Registered Office:
71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom