Legal & trust

Governance Framework

Last updated: 18 April 2026

Overview

Adviser IQ's governance framework ensures the platform is built, operated, and evolved with appropriate oversight. This page summarises board structure, committees, policies, and the cadence at which risk and change are reviewed.

Board & leadership

Adviser IQ Ltd is governed by its Board of Directors, including the Managing Director, Chief Technology Officer, and independent non-executive directors. The board meets monthly to review performance, risk, and strategy.

Committees

Product Safety Committee: monthly; reviews customer-facing risks, Consumer Duty-relevant features, AI outputs.

Risk & Compliance Committee: quarterly; reviews enterprise risk register, regulatory horizon-scanning, incidents.

Security Committee: monthly; reviews security posture, incidents, pen-test findings, vendor security.

Risk management

Enterprise risk register maintained, reviewed quarterly. Risks categorised: technical, regulatory, commercial, operational, reputational. Each with named owner, mitigation plan, residual-risk score. See Risk Map for the customer-facing summary.

Change control

All production changes pass through code review, CI test suite, automated security scanning, and staged rollout. High-risk changes require explicit CTO sign-off. Customer-facing breaking changes communicated 30 days in advance where possible.

Vendor management

All sub-processors onboarded via a documented due-diligence process: security review, DPA, SLA, financial health. Reviewed annually. List at /sub-processors.

Policy framework

Internal policies: information security, access control, data classification, acceptable use, incident response, business continuity, vendor management, recruitment, confidentiality, whistleblowing. All reviewed annually.

Training & awareness

All staff complete annual information security, data protection, and Consumer Duty-awareness training. Engineering staff complete secure development training. Records retained.

Whistleblowing

Protected disclosure channels available to staff, contractors, and customers. Email whistleblowing@adviseriq.co.uk or write to the Managing Director. Anonymous disclosure option provided.

Framework review

This framework is reviewed annually and after any material change to the business or regulatory environment. Next scheduled review: April 2027.