soma Live · Home Q1 '26 · 02 Slots NIST AI RMF
Independent · Third-Party · Q1 2026

Govern the AI you didn't build.

Soma produces the documentation, controls, and institutional accountability you need to govern AI vendors — for procurement, regulators, and underwriters.

Request diagnostic → Run assessment
3AI tools mapped
36%Liability surface
$1ME&O coverage
Audit view — critical dependencies
Sample firm1 / 8 mapped
Liability surface20%
Section01

The gap between using AI
and governing it.

01 / Shadow stack

The tools you don't know are running.

Marketing runs ChatGPT. CS deployed a chatbot in October. Finance turned on fraud scoring. None of it crossed your desk; all of it touches customer data.

7Avg unsanctioned tools / firm
02 / Liability

Their model. Your regulator.

Vendor TOS disclaim every harm — bias, hallucination, IP, downtime. The party answering the regulator's letter is you, with documents you don't have.

14%TOS reviewed by counsel
03 / Procurement

Deals stall in legal.

Enterprise buyers demand AI governance attestations before signature. No paper, no contract — and the better-papered competitor takes the seat.

78%RFPs requiring AI docs
Section02

Plot your position.
Four questions, ninety seconds.

● Live · 4 questions

Where do you sit on the governance plane?

Each answer plots your position on the quadrant. Or drag the dot to simulate "what would it take to move us." The full assessment runs 28 capabilities against the NIST AI RMF.
Question 01 / 04

● Live plot — drag to simulate
0/4Answered
0%Governance score
Run full 28-question audit →
Section03

Two engagements.
Fixed price. Fixed clock.

A · Diagnostic

AI Dependency Assessment

$12,000
14 daysDiscovery → Brief

Baseline audit for organizations starting to formalize. We discover, classify, and hand you a 90-day roadmap.

  • Shadow-AI inventory across all teams
  • NIST AI RMF risk classification
  • Gap analysis vs. governance functions
  • 90-day implementation roadmap
  • Executive briefing deck
Book discovery →
B · Implementation

Governance Implementation

$30,000
30 daysAudit + Folder

Full infrastructure. Produces the Soma Compliance Folder — sufficient for enterprise procurement, insurance underwriting, and regulator review.

  • Everything in Engagement A
  • Vendor Oversight Framework playbook
  • Third-Party AI Risk Register
  • Human-in-the-Loop Protocol Design
  • Incident Response Playbook
  • Board reporting + Charter
Book discovery →