Hael
Sign inRequest a demo
PRODUCT · REGISTRY

Every AI system and agent, on one record.

The registry is where each AI system and agent your organisation builds or buys is captured once — owner, purpose, data, third parties, lifecycle. Classification, documentation, questionnaire answers and your trust page all derive from it.

hael.app / registry / SYS-0148
Registry record
One source. Everything downstream derives from this record.
System ID
SYS-0148
Name
Underwriting decision model
Type
ML model · production
Owner
Priya Shah — Head of Underwriting
Risk tier
High-risk (EU AI Act, Annex III §5)
Data assets
Applicant PII · Bureau data · Internal claims
Third parties
Foundation model — provider Acme AI
Lifecycle
Live · v3.2 · last reviewed 14 May 2026
Derived from this record
Classification decisionAnnex IV technical fileModel cardQuestionnaire answersTrust page entry
THE PROBLEM

You can't govern what isn't on the record.

Most organisations cannot answer a simple question from their board, their auditor or an enterprise buyer: which AI systems are we actually running, who owns each one, what data do they touch, and which laws apply to them. The answers live in spreadsheets, ticketing systems, security reviews and individual engineers' heads. When a regulator asks, or a deal stalls on the AI questionnaire, the work begins from zero.

A checkbox in a GRC tool is not a control. A line in a spreadsheet is not a register. Governance owned operationally — by the people building and running each system — begins with a single, accurate record of what exists.

HOW IT WORKS

Capture each system once. Keep it current operationally.

A registry is only useful if it stays true. Hael's registry is structured so the people who build and run each AI system can keep it accurate as part of normal work — not as a quarterly compliance exercise.

01
Register the system or agent
Capture purpose, type, owner, business unit, lifecycle stage and jurisdictional scope. Models, RAG systems, traditional ML, vendor-bought AI and autonomous agents are all first-class records.
02
Attach what it touches
Link data assets, third-party providers and foundation models, sub-processors, and the business processes the system informs or automates. Each link is a control surface, not metadata.
03
Assign accountable owners
Each record carries a named system owner and reviewers. Role-based access governs who can edit, who must approve and who can attest. Changes are logged with actor, timestamp and rationale.
04
Keep it current
Material changes — new data, new use, new vendor, new jurisdiction — surface review tasks to the right owner. Periodic attestation cycles confirm the record still matches reality.
THE SYSTEM-OF-RECORD SPINE

The registry is the source. Everything else derives from it.

The registry is the source. Everything else — classification, documents, questionnaire answers, your trust page — is derived from it, and stays consistent because it shares that source.

Classification
Risk tier and applicable obligations are determined from the registry record — not re-asserted in a separate tool.
Documentation
Annex IV technical files, model cards, risk-management files and FRIAs are generated from the system's real configuration.
Questionnaire answers
Buyer and procurement questionnaires are answered from the registry, with citations to the record that proves each answer.
Trust page
Your public AI trust page is assembled from the same source — buyers see what the registry actually says.
Monitoring & incidents
Post-market monitoring and serious-incident reporting attach to the registered system, not to an out-of-band ticket.
Agent governance
Autonomous agents are registered alongside systems — purpose, tools, scope, owner — so their behaviour can be governed, not just observed.
CAPTURE ONCE, COMPLY MANY

Register a system once. Every framework it touches is mapped from that one record.

The same record satisfies overlapping obligations across the EU AI Act, ISO/IEC 42001, NIST AI RMF and the US state laws — map it once, and Hael reuses it everywhere it recurs.

SYS-0148 · Registry record
EU AI Act
ISO/IEC 42001
NIST AI RMF
GDPR Art. 22
Colorado AI Act
NYC LL144
Texas TRAIGA
California ADMT
Mapped from one record
REGISTRY

Start with the record. The rest follows.

Bring one live AI system to the call. We'll register it with you and show what Hael derives from it — classification, the Annex IV file, the buyer-questionnaire answers, the trust-page entry.