Tools & Assessments

Know where you stand
in under ten minutes.

Three scored online assessments. Each surfaces your organization's specific exposure with finding-level regulatory citations and prioritized actions. Results are immediate. No email required to see your score — a detailed report is sent to your inbox on request.

Online Assessments

Free. Scored. Referenced to primary sources.

Each assessment is aligned to the governance framework in the corresponding research paper. Completing the assessment before reading the paper surfaces the specific findings most relevant to your organization.

10 questions · ~7 minutes
PQC Governance Readiness Assessment

Evaluate your post-quantum cryptography governance posture against NIST IR 8547 deprecation milestones, NSA CNSA 2.0 timelines, and Australia's ASD LATICE framework. Covers inventory, HNDL exposure, vendor readiness, and board engagement.

What it covers
  • Cryptographic inventory (CBOM) status
  • HNDL exposure by data category and retention horizon
  • Vendor PQC readiness and dependency mapping
  • Board engagement and executive ownership gaps
  • Migration timeline against NIST IR 8547 and CNSA 2.0
Begin Assessment →
10 questions · ~7 minutes
AI Privacy Compliance Assessment

Assess your AI governance posture against GDPR Article 22, Article 32, EU AI Act Annex III, CPRA automated decision-making provisions, and HIPAA minimum necessary requirements. Designed for compliance, legal, and technical leads.

What it covers
  • Article 22 explainability mechanism adequacy
  • Training data purpose compatibility (Art. 5(1)(b))
  • DPIA adequacy for AI deployments
  • EU AI Act Annex III classification status
  • Article 32 / HNDL exposure for long-lived personal data
Begin Assessment →
10 questions · ~6 minutes
Space Dependency Risk Assessment

Identify your commercial space dependencies and evaluate whether they're governed as vendor risk. Designed for risk managers, CISOs, and business continuity leads in organizations that depend on GPS, satellite imagery, or satellite communications.

What it covers
  • GPS timing and navigation dependency mapping
  • Satellite data product and communications dependencies
  • Ground segment vendor assessment status (NIST IR 8401)
  • Business continuity coverage for space disruption
  • KA-SAT incident awareness and implications
Begin Assessment →
How Assessments Work

Scored findings. Regulatory citations.
No generic recommendations.

1. Answer 10 questions

Each question targets a specific governance dimension aligned to primary regulatory sources. Questions use the language of the frameworks they reference — not simplified summaries.

2. Get a scored risk profile

Immediate scored result with a risk classification. Each finding is cited to the specific regulatory provision or standard that makes it relevant — not a generic "this is important" framing.

3. Request the full report

Enter your work email after seeing your results to receive a detailed PDF report — findings, citations, and a prioritized action roadmap. No email required to see your score.

Note on assessment results: Scored findings are a starting point, not a compliance determination. The results identify likely governance gaps based on your answers and flag the specific regulatory provisions that apply — they do not constitute legal advice or a formal compliance assessment. The discovery call is where we go from scored findings to what that means specifically for your organization.

Assessment surfaced
something specific?

A 30-minute call turns scored findings into an understanding of what those gaps mean for your organization — and what it would take to close them.

Book a Discovery Call Send an Email