Defender for Cloud Apps, Purview DLP, Sensitivity Labels, Conditional Access — all already in your M365 license. But activated? Rarely. Configured? Almost never. The result: your employees send customer data to ChatGPT while you assume everything is secure.

"We had no idea that 14 different AI tools were connected to our Microsoft accounts."

IT Manager, Fiduciary firm, Eastern Switzerland

Services

What we do for you

Shadow AI Audit

We examine your Entra ID app registrations, analyze Defender logs, and conduct an employee survey. You receive a complete inventory of all AI tools in use — including unauthorized ones.

1–2 daysfrom CHF 1,500

Copilot Governance Setup

Clean up SharePoint permissions, configure Sensitivity Labels, create DLP rules, enable audit logging. Copilot then runs FADP-compliantly — without oversharing risk.

3–5 daysfrom CHF 2,500

AI Policy & Training

A practical AI usage policy with a traffic light system (green/yellow/red) plus employee training. Your staff will know what's permitted — and use AI more productively.

1 dayfrom CHF 1,800

Swiss-hosted AI for critical data

For sensitive processes (fiduciary, healthcare, legal) we evaluate and implement Swiss-hosted AI solutions. Data never leaves Switzerland. 100% FADP-compliant.

1–3 weekson request

Our Approach

Microsoft for productivity. Swiss-hosted for sovereignty. Governance for both.

We don't force you to switch away from Microsoft. Most Swiss SMEs have M365 — and that's fine. We help you run it securely and add Swiss-hosted solutions where it truly matters.

Microsoft Stack (use what you have)

Entra ID — App registration audit
Defender for Cloud Apps — Shadow AI monitoring
Microsoft Purview — DLP & Sensitivity Labels
Conditional Access — Access control
Copilot — FADP-compliant configuration

Swiss-hosted (for critical data)

Infomaniak-hosted AI models
n8n on Swiss servers
Data never leaves Switzerland
Full control & transparency
FADP-compliant from day one

Roadmap

4 weeks: from 'no idea' to 'under control'

Week 1

Inventory

Entra ID app audit + employee survey. Result: complete picture of all AI tools in use and data flows.

Week 2

Policy

Create and communicate AI usage policy with traffic light system. Clear, understandable, no blanket bans.

Week 3

Technical controls

Configure Defender, DLP rules, Conditional Access. The guardrails that prevent mistakes — even without perfect employees.

Week 4

Approved alternatives

Set up Copilot FADP-compliantly, evaluate Swiss-hosted solution for critical data, train the team.

FAQ

Frequently asked questions

Do we need to switch away from Microsoft?

No. We help you run your existing M365 infrastructure securely. We only add Swiss-hosted solutions where it makes data protection sense — e.g. for particularly sensitive data in fiduciary, healthcare or legal contexts.

What does a shadow AI audit cost?

A basic shadow AI audit (Entra ID app check, employee survey, initial policy) starts at CHF 1,500. A complete AI governance setup including Copilot configuration and training typically costs CHF 4,000–8,000 depending on size and existing infrastructure.

How long until everything is under control?

Our 4-week sprint brings SMEs from 'no idea' to 'under control'. This isn't a large project — it's a focused sprint with measurable results every week.

Do I need a DPIA for Microsoft Copilot?

In most cases, yes. The FADP requires a Data Protection Impact Assessment when AI accesses emails, files and chats. We create the DPIA documentation as part of our Copilot Governance Setup.