For CTOs · Agent Startup Founders
Running a trading desk instead? →Your AI agents need Article 14 oversight by Aug 2, 2026. I build the kill-switch, policy engine, and audit log that pass. First gap analysis in 7 days.
EU AI Act Article 14 mandates human oversight controls for high-risk AI systems. August 2, 2026 is the enforcement date. That's not long when you're building the policy enforcement layer from scratch.
I built a TEE policy enforcement platform that runs at 42µs. I know what the technical bar looks like. Let me help you meet it.
Why me.
Only one who's shipped it
I've built a TEE signing platform at 42µs
Most fractional CTOs advise on infrastructure. I've built it. ZeroCopy's AWS Nitro enclave is the reference implementation you'd otherwise hire a 3-month consulting firm to scope and design.
Both sides of the latency gap
Akuna Capital + Gemini Exchange
Prop shop crypto infra at Akuna. Exchange-scale SRE at Gemini. I know what institutional-grade signing looks like because I built and ran it. Not because I read the whitepaper.
Production AI orchestration
Letta and BAML agents in the loop
I run a production AI orchestration system for tasks where AI does well: code review against my checklists, test generation from spec, dependency scanning, documentation. AI handles parallel scope work; I own architecture, security-critical paths, and anything where the cost of being wrong is high.
What agent teams get wrong.
No deterministic kill switch
If your agent can't be stopped deterministically under load, you don't have oversight. You have the illusion of it. Article 14 requires it. Most stacks don't have it.
Signing without attestation
Signing agent outputs with a software key means nothing. The adversary model for agentic systems is compromised compute, not compromised humans. Hardware attestation is the gap.
Policy as code comments
Mission.yaml with hardcoded thresholds is not a policy engine. It doesn't audit, doesn't version, doesn't alert on drift. Regulators ask for evidence of control. Comments don't count.
Audit logs as an afterthought
Tamper-evident logging requires SHA-256 chaining or equivalent before you write a single production event. Retrofitting this into a live system is a multi-week project at exactly the wrong moment.
I built these controls into ZeroCopy from scratch. The TEE enclave runs at 42µs. The kill switch is wired at every layer. The audit log is SHA-256 chained from day one. I know where the bodies are because I've dug them up in my own systems first.
What you get.
Article 14 gap analysis
Written assessment against EU AI Act human oversight requirements. Specific to your agent architecture.
Kill switch architecture
Multi-layer halt state machine: heartbeat, circuit breaker, SIGTERM drain, NATS bus coordination. Tested under load.
TEE signing PoC
If you need hardware-attested outputs, I can build the Nitro enclave PoC in week one. Reference: ZeroCopy 42µs.
Policy engine design
BDI mission file + rule evaluation + drift detection. The architecture that lets you tell regulators "here's the control."
Audit log design
SHA-256 chained append-only log. Evidence-grade. Can withstand a discovery request.
Production AI orchestration
Letta and BAML agents for code review, test generation, security audit, documentation — under explicit guardrails, with humans on every critical path.
How to engage.
Start where the risk is. Most Article 14 engagements start at Fractional for the 60-day run-up to Aug 2.
Advisory
$5K / mo
- . Weekly 90-min architecture review
- . Async Slack channel for questions
- . Infra risk register + remediation roadmap
- . TEE / signing system audit
- . 30-day rolling, cancel anytime
Fractional CTO
$15K / mo
- . Everything in Advisory
- . Up to 20 hours active engineering per month
- . Attend your engineering standups
- . Hiring bar-setting + technical interviews
- . Represent you in investor / customer technical calls
- . Production AI orchestration: Letta and BAML agents for code review, test generation, dependency analysis, and documentation — under explicit guardrails, with humans on every critical path
Embedded
$30–40K / mo
- . Everything in Fractional
- . Dedicated primary focus (one client at a time)
- . Hands-on production engineering ownership
- . Full team leadership including vendor management
- . Custom SLA and escalation path
- . Engagement typically 3–6 months
Compare tiers side-by-side 8 features × 3 tiers
| Advisory | Fractional CTO Popular | Embedded | |
|---|---|---|---|
| Price | $5K / mo | $15K / mo | $30–40K / mo |
| Included hours / mo | . | 20 | Dedicated |
| Engineering standups | . | ✓ | ✓ |
| Hiring interviews | . | ✓ | ✓ |
| Investor / customer calls | . | ✓ | ✓ |
| Production ownership | . | . | ✓ |
| Dedicated focus | . | . | ✓ |
| Minimum term | 30 days | 30 days | 3 months |
Advisory
- Price
- $5K / mo
- Included hours / mo
- .
- Engineering standups
- .
- Hiring interviews
- .
- Investor / customer calls
- .
- Production ownership
- .
- Dedicated focus
- .
- Minimum term
- 30 days
Fractional CTO Popular
- Price
- $15K / mo
- Included hours / mo
- 20
- Engineering standups
- ✓
- Hiring interviews
- ✓
- Investor / customer calls
- ✓
- Production ownership
- .
- Dedicated focus
- .
- Minimum term
- 30 days
Embedded
- Price
- $30–40K / mo
- Included hours / mo
- Dedicated
- Engineering standups
- ✓
- Hiring interviews
- ✓
- Investor / customer calls
- ✓
- Production ownership
- ✓
- Dedicated focus
- ✓
- Minimum term
- 3 months
Free · No call required
The Article 14 Readiness Checklist. My working document from ZeroCopy's own conformity work
- . Deterministic kill switch design (per Annex III, Article 14)
- . Policy engine architecture for runtime constraint enforcement
- . Audit log schema that satisfies Article 12 traceability requirements
- . Hardware attestation integration for high-risk system boundaries
Check your email. Or open it now:
Open the checklist →Tip: print it (⌘+P / Ctrl+P) to save a PDF copy for your team.
Tell me what you're building.
Three questions. Reply within 24 hours if there's a fit. Or book directly: calendar.app.google/W1CEqo8GsoGtjJX49