THE EVIDENCE LAYER FOR AUSTRALIAN AI
Your business already runs on AI.
When the board asks you to prove it,
what will you show?
Australia has assigned accountability for AI faster than anyone can prove it's being met. Guard sees every AI call it's given, checks it against the Australian rules that apply, and proves it with an independent, tamper-evident record.
If Guard hasn't delivered in 60 days, every dollar back.
THE GAP
Your policy says you control AI.
Can you prove it?
Your business has deployed AI through claims triage, support assistants, credit decisioning, document review, or features inside your own products. Ask for the compliance record of any one of those calls and today, there isn't one.
Nobody can see it
Staff and systems call AI providers directly. The network records that a connection happened. It can't say what crossed it, or whether it was allowed.
The clock is short
A material incident gives you 72 hours to notify APRA. A data breach gives you 30 days under the Privacy Act. Without records, both windows are guesswork.
Silence accumulates
Every week without evidence is a week you can't retroactively prove. Auditors mark what was evidenced, not what was intended.
40° South is the evidence layer.
A DIFFERENT WAY TO THINK ABOUT IT
You can't stop every incident.
You can stop being the one who can't explain it.
Think of it the way you think about insurance. You can't prevent every storm. What you can do is make sure that whatever happens, you can show your controls were working. That is the difference between a managed risk and a front-page problem.
Guard is the premium you pay for that proof.
Evidence is permission.
The brake on AI in a regulated business isn't the technology. It's that the risk function can't say yes defensibly, because there's nothing to review. Guard changes the answer from "no, we can't see it" to "yes, and here's the proof." More AI in production, sooner, because each use ships with its own evidence.
THE AI ASSURANCE CERTIFICATE
This is what the board sees.
Every quarter, Guard produces an AI Assurance Certificate. One page. It states what your AI touched, what was checked, what was found, and that the record is intact. It arrives the way an audit opinion does, and it reads like one.
AI Assurance Certificate
- AI calls evidenced
- 2,841,062
- Checks performed
- personal information hidden instructions offshore disclosure
- Findings
- 312 flagged 12 blocked record intact
Every number on it traces back to a signed record of a real AI call. Change one character in the record and the signature breaks.
Verify a signed record yourself →WHAT GUARD DOES
Sees it. Checks it. Proves it.
Sees it.
Every AI call your business makes. The systems you build, and the platforms you buy.
Checks it.
Against the rules that apply in Australia. Personal information, hidden instructions, data leaving the country.
Proves it.
Signs every record so nobody can quietly change it. Not even us.
THE PATTERN
You already carry this kind of cover.
No law says "get a SOC 2." Your enterprise customers require it anyway.
SOC 2
No law says "get a SOC 2." Your enterprise customers require it anyway.
Penetration testing
No statute names it. Your insurer and your auditor expect it.
Cyber insurance
Nobody was ever fined for not carrying it. Every serious firm does.
AI assurance
The same three forces are forming around AI right now: insurers, auditors, courts.
AI assurance is where cyber security was a decade ago. Nobody mandated it by name. It became non-negotiable anyway.
WHY NOW
The regulator has stopped asking nicely.
ASIC
ASIC commissioned the DFCRC to survey the ground. Its May 2026 review found the deployment of AI decision systems has outpaced the governance around it, and named accountability for automated decisions a national priority. An independent diagnosis, on the record.
APRA
On 30 April 2026, APRA published its first AI-specific expectations for boards. Its finding: AI governance isn't keeping pace with adoption. Its position: enforcement is in reserve for entities that don't manage the risk.
$5.8M
Australia's first Privacy Act civil penalty, against Australian Clinical Labs in October 2025. Most of it for one thing: failing to take reasonable steps to protect the data.
December 2026
From 10 December 2026, automated decisions that significantly affect people must be disclosed. The record you'll need starts accumulating now, not the week before.
WHO IT'S FOR
Built for regulated Australia.
Super funds. Banks and non-bank lenders. Insurers. Health and aged care. Government. Whether nobody owns this problem yet or a whole team does, the obligation is the same, and so is the evidence that answers it.
Already have an AI governance team? Guard doesn't replace them. It hands them the per-call evidence they're currently reconstructing by hand.
SOVEREIGNTY
The data stays on the ground.
Guard runs on Google Cloud in Sydney, with failover in Melbourne. Processing, storage, evidence: all of it in Australia, under Australian law. Built for Australia, on Australian infrastructure. The proof stays with you.
Architecture and security detail →PRICING
One price. Everything included.
Assurance
For most regulated mid-market businesses.
An annual premium, banded by your monthly AI call volume. Everything included.
Board Assurance
Enterprise scale, custom terms.
Custom commercial terms, dedicated onboarding, and support through your security review.
Sixty days on your own traffic. If Guard hasn't delivered, every dollar back. The risk is ours, not yours.
Less than one compliance hire. About a third of one external CPS 234 engagement.
Advise regulated clients on AI risk? We partner with advisers, MSPs and integrators.
Partner with us →COMMON QUESTIONS
Answers to the questions we hear most.
GET STARTED
The next time the board asks,
the answer is a certificate.
Book a 30-minute conversation, or start with the guarantee. We'll show you exactly what Guard covers for your sector and what the first 60 days look like.
If Guard hasn't delivered in 60 days, every dollar back.
We'll respond within one business day. No sales pressure.
Australian company · Your data stays under Australian law · No spam