Notes on governed AI, systems, and shipping real work.
A weekly essay on what's actually working inside Robossist: shadow AI, compliance, private infrastructure, positioning, and the systems behind real client work.
If you're evaluating fit right now, start with the proof or case studies. Writing is the deeper operating layer.
Subscribe on SubstackThe EU AI Act Deadline Your APAC Firm Is Quietly Ignoring
August 2, 2026 is 60 days away. If your AI system output touches the EU, you are in scope. Most APAC regulated firms have not started.
How to Build an AI Compliance Gradient for Regulated Firms
TL;DR: Regulated firms in Asia Pacific cannot govern AI with a simple approved or unapproved list.
The AI Vendor DDQ: 3 Questions Your SaaS Security Form Misses
Most firms are auditing the wrong thing.
The AI Vendor DDQ: 3 Questions Your SaaS Security Form Misses
Most regulated firms evaluate AI vendors using standard SaaS security forms.
Why Your AI Policy Fails the HKMA Shadow AI Test (And How to Fix It)
The gap between your written controls and what regulators actually audit
The boring AI your risk committee can approve
I’ve been watching risk committee reviews at regulated firms in Hong Kong and Singapore this quarter, and the same pattern keeps playing out in nearly every one.
The Shadow AI Playbook
In the 1980s and 90s, employees brought personal laptops and dial-up modems inside corporate networks without going through IT.
The Shadow AI Playbook
In the 1980s and 90s, employees brought personal laptops and dial-up modems inside corporate networks without going through IT.
Article 26 asks for a name. You wrote a committee. Here's what to actually do:
Article 26 of the EU AI Act uses two words that break most compliance documentation.
The auditor's first question. 93 days to get it right.
The question isn’t whether you use AI.
93 days to comply: what the EU AI Act means for Asian firms
The enforcement deadline is August 2, 2026. Most firms in HK and Singapore haven't started. Here's the minimum viable compliance path.
Your team is making AI decisions without you
The gap between approved policy and actual adoption is wider than most compliance teams realize. Here's how to close it in 90 days.
The 1-page register and policy-pack templates
The 1-page shadow-AI register + policy-pack one-pager from every HK$40,000 audit
The shadow-AI register HKMA expects and most HK banks haven't built
Last November was the six-year anniversary of a quiet piece of paperwork that almost nobody at Hong Kong's mid-cap banks has actually built.
The Autonomous Dev Tool Wars
Yesterday afternoon, Anthropic shipped Opus 4.7 with a 1 million token context window in beta.
Two weeks of optimising the wrong thing
What two weeks of being busy taught me about the question I was avoiding
The 30-Minute Watch
Why most AI pilots fail before the first tool gets installed, and the operations habit that fixes it.
The Model They Won't Ship
Anthropic is holding back a frontier Claude model because it's too powerful. Here's what Project Glasswing tells us about the next 12 months of agentic coding.
Why Most Companies Fail at AI (And the 30-Minute Fix)
One Big Idea — Monday, April 6, 2026
The week I learned to stop watching metrics
How four hours of dashboard-staring taught me where my process actually breaks
Request an AI Readiness Review
For CTOs, operators, department heads, and compliance leaders who need a practical path from scattered AI usage to governed adoption.
Opens Cal.com to select your slot
Calendar loading near viewport
The booking calendar will appear here as you reach this section.
Need context first? Read the proof, case studies or subscribe to the weekly essay.
Find the shadow-AI risk before it becomes policy debt.
In 20 minutes, we'll identify the department to review first, the AI usage surface you can't see yet, and whether a readiness audit, workshop, or private AI pilot is the right next step.
Best fit: CTOs, operators, and compliance leads who need a governed first AI use case.
Review output
Your first governed AI use case
First department to review
Where AI usage is already creating leverage, risk, or hidden process drift.
Shadow-AI exposure surface
The workflows, data paths, and approval gaps leadership cannot currently see.
Approval-worthy next step
A readiness audit, workshop, or private pilot scoped for governance first.