Overview
Adviser IQ's governance framework ensures the platform is built, operated, and evolved with appropriate oversight. This page summarises board structure, committees, policies, and the cadence at which risk and change are reviewed.
Board & leadership
Adviser IQ Ltd is governed by its Board of Directors, including the Managing Director, Chief Technology Officer, and independent non-executive directors. The board meets monthly to review performance, risk, and strategy.
Committees
Product Safety Committee: monthly; reviews customer-facing risks, Consumer Duty-relevant features, AI outputs.
Risk & Compliance Committee: quarterly; reviews enterprise risk register, regulatory horizon-scanning, incidents.
Security Committee: monthly; reviews security posture, incidents, pen-test findings, vendor security.
Risk management
Enterprise risk register maintained, reviewed quarterly. Risks categorised: technical, regulatory, commercial, operational, reputational. Each with named owner, mitigation plan, residual-risk score. See Risk Map for the customer-facing summary.
Change control
All production changes pass through code review, CI test suite, automated security scanning, and staged rollout. High-risk changes require explicit CTO sign-off. Customer-facing breaking changes communicated 30 days in advance where possible.
Vendor management
All sub-processors onboarded via a documented due-diligence process: security review, DPA, SLA, financial health. Reviewed annually. List at /sub-processors.
Policy framework
Internal policies: information security, access control, data classification, acceptable use, incident response, business continuity, vendor management, recruitment, confidentiality, whistleblowing. All reviewed annually.
Training & awareness
All staff complete annual information security, data protection, and Consumer Duty-awareness training. Engineering staff complete secure development training. Records retained.
Whistleblowing
Protected disclosure channels available to staff, contractors, and customers. Email whistleblowing@adviseriq.co.uk or write to the Managing Director. Anonymous disclosure option provided.
Framework review
This framework is reviewed annually and after any material change to the business or regulatory environment. Next scheduled review: April 2027.