Agent Catalogue · The trust layer for enterprise AI

Governed AI agents for enterprise operations,
with the controls to run them safely.

ColleagueAI helps finance, operations, risk, compliance, legal, procurement, HR and service teams deploy AI agent packages with clear ownership, risk classification, ROI evidence and audit trails.

36
Production-grade agents
5
Functional pillars
L2-L4
Live CAI tiers
In one line

ColleagueAI helps enterprises deploy AI agents with governance built in. Each agent is classified with the CAI Score, supported by documented controls, and delivered with evidence you can review. Agents run in your own environment; ColleagueAI provides the governance control plane.

Enterprise architecture

Designed to run in your tenant, not in a shared AI data lake.

ColleagueAI packages are designed for deployment inside the customer Microsoft and cloud boundary. Customer business data stays in the customer-controlled data plane; ColleagueAI provides the agent blueprint, CAI Score governance pattern, deployment guidance and versioning support.

Customer data plane

The runtime, identity checks, retrieval and audit evidence are deployed against the customer environment.

Entra ID / Active Directory
User identity, groups, conditional access and permissions.
M365, SharePoint, Teams, Outlook
Business content remains under customer tenant controls.
Azure OpenAI or approved model endpoint
Inference path selected by the customer deployment model.

ColleagueAI package layer

We package the repeatable agent design and governance controls so teams do not start from a blank prompt, workflow or audit model.

Deployable blueprint
Workflow, prompts, controls and implementation pattern.
CAI Score classification
Autonomy tier, human oversight model and risk notes.
No customer data by default
Package delivery does not require ColleagueAI to process customer business content.

Permission-aware retrieval

RAG patterns should inherit the user’s existing Entra ID and M365 permissions. The agent should only retrieve or summarize content the user is already authorized to access.

Human oversight by tier

L3 and L4 packages are designed with review, approval, escalation and audit evidence patterns.

Use-case dependent risk

AI Act and regulated-use classification depends on customer process, data and deployment context. This is governance evidence, not a legal compliance guarantee.

Internal build from scratch

  • Discovery, prompt design and controls start from zero.
  • Security review repeats for each use case.
  • Audit logs and oversight are often added late.
  • Maintenance remains fully internal.

ColleagueAI package

  • Deployable blueprint and governance model are structured up front.
  • CAI Score defines autonomy, oversight and risk posture.
  • Designed for pilot deployment in weeks, subject to environment readiness.
  • Evidence and handover materials are part of the package design.
What you're buying

What every agent package includes.

Each package combines a deployable agent blueprint, implementation guidance, ROI support, governance evidence, and a CAI Token Economy Monitor.

01 The solution

A deployable agent package for your process.

Each ColleagueAI agent package includes a deployable blueprint, CAI Score classification, implementation guidance, ROI support, audit evidence, and token-economy indicators for your Microsoft/Azure environment.

02 Proof & ROI

Proof before production.

Validate the agent on your own cases before go-live. The business case is built from practical inputs: time saved, effort reduced, FTE capacity released, and estimated payback.

03 Compliance & risk

Governance evidence from the start.

Each package includes a CAI Score risk tier, a named human accountability model, and audit evidence designed to support risk, compliance, and procurement review.

The philosophy

Most AI projects fail on governance, not capability. So we put the blueprint first.

The hard part of enterprise AI isn’t building an agent that works in a demo, it’s governing the sprawl once dozens of them are live: knowing where each one is allowed to act, who’s accountable when it does, and being able to prove it to an auditor. Colleague AI gives you that framework first (the governance blueprint) then fits certified agents into it at the right tier.

01

Blueprint before bots

The blueprint comes first: every step of your process gets the CAI tier it's allowed to operate at, and each slot is filled only by an agent certified at or below that tier. Agents fill slots in a governed design, they don't get bolted onto a process and hope for the best.

02

Safe by tier, not by promise

An agent's CAI tier is a hard contract about its autonomy. Low-tier agents only draft and suggest. High-tier agents assist a named human who stays accountable. Safety is structural, not a marketing claim.

03

It runs in your house

Agents run inside your own Microsoft and cloud environment. Colleague AI hosts the control plane, governance metadata, configuration, scores, audit trail, entitlements, and partner-registration records. In production deployments, customer operational data is designed to remain inside the customer tenancy. Public website demos, forms, partner registrations, and other submitted website inputs are separate ColleagueAI-hosted flows and should not be used for confidential production data.

Why trust us

Trust should be demonstrated, not requested.

We prefer evidence over claims: defined tiers, named accountability, operating controls, and audit records that can be reviewed.

01

Built by operators, not just model-builders

Colleague AI is built by people who have run regulated finance, insurance and SAP operations, and sat through the audits that follow. The CAI Score encodes how those functions actually reason about risk and control, not how a demo looks.

02

A documented method, not a black box

The CAI Score is an open framework: defined tiers, named human roles, logging and review periods. You can see exactly how every agent is classified, and push back if you disagree. A methodology that holds up to scrutiny is one you can actually stand behind.

03

Verify the evidence

Agents run in your tenant; we do not process your customer data. Actions are logged and attributable, and the evidence is designed to support governance and compliance review.

The CAI Score

Five levels of autonomy. Clear accountability at each level.

The higher the tier, the more an agent can do. The controls also increase: human oversight, logging, review points, and named accountability.

L1

Assist

Informs and answers. Takes no action and changes no record. The human does the work; the agent just makes it faster to find and understand.

Human role
Does everything
L2

Draft

Produces a work product (a document, a query, a report, an outreach message) for a human to review and approve. Nothing the agent makes is used until a person signs off.

Human role
Reviews & approves
L3

Operate

Executes routine, low-risk actions inside a bounded workflow, classify, route, fulfil, log. Exceptions and anything unusual are handed to a human. Every action is time-stamped.

Human role
Owns exceptions
L4

Decide (supervised)

Supports decisions and controls in higher-stakes processes, compliance, contracts, security, four-eyes. A named human remains accountable for the call; the agent assists and evidences it. Built for high-risk-process scrutiny.

Human role
Stays accountable
L5

Autonomous

Acts independently within hard, pre-approved guardrails. Reserved for the highest level of certification, and not used by any agent in this catalogue today.

Human role
Sets the rails

// This catalogue ships at L2-L4. L4 agents require senior sign-off before go-live.

The catalogue

36 governed agent packages for enterprise workflows.

Filter by function and autonomy tier. Open any package to review the workflow fit, value case, KPI impact, oversight model, and risk & compliance posture.

Pillar
Tier
How they fit

Agents create more value when they work as part of a controlled process.

A single agent can remove friction. A governed sequence can improve an end-to-end process, with each agent operating at the right tier and humans owning the high-stakes steps.

Month-end financial close

Finance · Operations

From unexplained reconciliation breaks to a board-ready report, with dual control on the numbers that matter.

L3
RCA Agent
Investigates each break and explains the root cause.
L4
Four-Eyes Control
Second-reviews the adjustments; a human signs off.
L2
Monthly Reporting
Assembles the period report from the cleared data.
L3
Leadership Reporting
Rolls it up into a consistent executive view.

Incident to service review

Service Delivery

An escalation arrives and ends up, weeks later, as a clean line in the monthly client pack, without a manager living in the ticket queue.

L3
Escalation Triage
Classifies severity and drafts the first response.
L3
SMT Support
Works the routine fulfilment inside the tool.
L3
SDM Copilot
Surfaces the at-risk account to the manager daily.
L2
Service Review Pack
Builds the monthly review pack to review-and-approve.

Contract lifecycle

Legal · Procurement

A vendor MSA goes from inbox to signature with the obligations understood and the risks flagged, legal time spent on judgement, not reading.

L4
Contract Summarisation
Extracts key risks and obligations into a summary.
L4
Obligations Review
Checks commitments against how operations run.
L3
Signing Summary
Gives signatories the key points before execution.

Risk & compliance cycle

Risk · Compliance

A risk event is captured cleanly, oversight stays continuous, and the audit deadline never sneaks up, with a live dashboard instead of a spreadsheet scramble.

L3
Risk Event Capture
Walks the user through logging the event completely.
L4
Risk Control Oversight
Keeps continuous visibility across the control set.
L4
Compliance & Audit Tracker
Tracks evidence and deadlines on a live dashboard.
Build your business case

Estimate the return before you deploy.

Choose an agent, enter your own assumptions, and estimate annual savings, hours released, FTE equivalent, ROI, and payback. Your figures stay in your browser.

Your inputs

// editable estimates — not a quote
30%
60%

Estimated annual return

// based on your inputs above
Money saved / year
€0
Net of investment: €0
Time freed / year
0 hrs
FTE equivalent
0
Return on investment
0%
Payback period
-

Estimate only. Figures are generated from your inputs and editable default assumptions (annual full-time hours taken as 1,840). They illustrate potential value and are not a guarantee, a quote, or financial advice.

Deployment & safety

Your environment. Your data. Clear governance around the agent.

Agents run where your business data already lives. ColleagueAI holds the governance metadata, scoring, audit evidence, and token-economy indicators around them.

// architecture
Client-hosted by design

Agents run inside your Microsoft Copilot Studio, Power Automate and Azure estate. Colleague AI hosts only the control plane, scores, policies, audit metadata. No customer data ever touches our side. Your data stays in your walls.

// accountability
A human is always named

The CAI tier defines exactly where a person stays accountable. L4 agents never decide alone, they assist, evidence, and hand the call to a named human. Oversight isn't a setting you can switch off; it's built into the tier.

// audit
Evidence by default

Every agent action is logged, time-stamped and attributable. When an auditor or regulator asks what happened and who approved it, the answer is already a record, not something you piece together after the fact.

// regulation
Built for the EU AI Act

Risk classification, human oversight, logging, and transparency are core to the CAI Score. The framework is designed to support EU AI Act, DORA, and ISO/IEC 42001 evidence work, subject to client implementation and legal review.

Platform & integration layer

The connectors the agents run on.

Microsoft Copilot Studio Power Automate · AI Builder Azure DevOps GitHub JIRA Confluence Power BI ServiceNow ticket integration Teams app (Dev · Sandbox · Prod) API tools & connectors
Free check · nothing leaves your browser

How audit-ready is your AI, really?

Six questions. Get your organisation's AI governance maturity level, and the specific gaps to close before a regulator or auditor asks. Built on the same CAI methodology we certify agents with.

Indicative self-assessment. Your answers stay in your browser, nothing is sent or stored.

Questions, answered

What buyers and AI assistants ask about Colleague AI.

Direct answers on the CAI Score, deployment, EU AI Act alignment, and how the trust layer differs from an agent management platform.

What is Colleague AI?

Colleague AI is the trust layer for enterprise AI. It certifies AI agents against the CAI Score, a five-tier risk classification (L1-L5), documenting each agent’s controls and producing an audit trail. Agents run inside your own environment; Colleague AI hosts only the governance control plane, so enterprises can deploy AI they can defend.

What is the CAI Score?

The CAI Score is a certification framework for AI agents, described as “the FICO of AI.” It classifies each agent by risk on a five-tier scale, from L1 (Assist) to L5 (Autonomous), defining exactly how much the agent does on its own and where a named human stays accountable, then evidences it for audit.

What are the CAI Score risk tiers, L1 to L5?

L1 Assist: informs only, takes no action. L2 Draft: produces work for a human to approve. L3 Operate: executes routine actions inside a bounded workflow. L4 Decide (supervised): supports high-stakes decisions with a named accountable human. L5 Autonomous: acts within hard, pre-approved guardrails. The higher the tier, the more oversight and logging the framework requires.

Where do Colleague AI agents run, and is my data safe?

Agents run inside your own Microsoft Copilot Studio, Power Automate and Azure environment. Colleague AI hosts only the control plane, scores, policies and audit metadata. No customer data is ever processed on our side. Your data stays in your tenant.

Does Colleague AI help with EU AI Act compliance?

Yes. Risk classification, human oversight, logging and transparency are the core of the CAI Score, and they track directly to the EU AI Act’s obligations for high-risk AI. General-purpose AI obligations apply from August 2025 with high-risk rules close behind, every agent ships already aligned, so adoption doesn’t outpace compliance.

How is Colleague AI different from an AI agent management platform or other AI governance vendors?

Most platforms observe and orchestrate agents (the control plane) or audit models after the fact. Colleague AI adds the missing layer: a portable risk score and certification for every agent (the CAI Score) plus production-grade agents that ship pre-certified. It is governance you can act on, not just another dashboard.

What is agent sprawl, and how does certification help?

Agent sprawl is what happens when AI agents multiply across an enterprise faster than anyone is tracking them, different vendors, frameworks and clouds, each with its own risk profile and no shared audit trail. Giving each agent a CAI Score certification means every one has a known tier and an evidence record, so you always know what you’ve got running and who owns it.

How many AI agents does Colleague AI offer, and in which areas?

The catalogue includes 36 production-grade AI agents across five functional pillars: Operations & Service Delivery, Risk, Security & Compliance, Data & Infrastructure, Sales & Marketing, and Corporate (HR, Legal, Procurement, Reporting). They run at CAI tiers L2 to L4, with L4 agents requiring senior sign-off before go-live.

First-party interactive proof

See how a governed finance agent turns a reconciliation issue into reviewable evidence.

This static walkthrough uses a fictional finance case to show the operating model behind ColleagueAI packages: permission-aware retrieval, root-cause analysis, human oversight, and an evidence trail suitable for review.

No third-party demo platform, no free-text input, no personal data capture, and no session replay. The example is deterministic and sanitized by design.
Sample case
ERP invoice INV-2026-0148 · payment PAY-88421 · variance €18,420 · fictional counterparty
CAI L3 · Human approval

Evidence generated
    What happens next

    A simple path from interest to controlled evaluation.

    1. Confirm the use caseWe identify the process, business owner, expected output, and risk context.
    2. Map data and accessWe clarify systems, RBAC assumptions, sensitive fields, and integration constraints.
    3. Review governanceWe align factsheet controls, human oversight, audit needs, and approval gates.
    4. Propose blueprintWe outline the deployment approach, delivery steps, and the approval path to go live.
    Who this is for

    Built for buyers who need controlled business outcomes, not another generic agent sandbox.

    Best-fit teams
    • CFO, finance transformation, and shared services teams.
    • Legal entity, compliance, and regulatory reporting teams.
    • Data governance, data quality, and master data teams.
    • SAP, ERP, and enterprise architecture teams.
    • AI governance, risk, and internal audit stakeholders.
    What makes ColleagueAI different
    • Packaged agent blueprints instead of a blank build-your-own canvas.
    • Governance factsheets before purchase or deployment.
    • Tenant-aware deployment thinking with RBAC and data-access boundaries.
    • Clear separation between demo readiness and paid commercial launch.
    • Business-value and governance language readable by non-technical buyers.

    This positioning is intentionally cautious: ColleagueAI describes governance support and deployment readiness, not a blanket legal compliance guarantee.

    Buyer guide

    Governed AI agent packages for enterprise teams.

    Use this page to choose a business use case, understand the governance profile, review the agent factsheet, and request a demo. Production access is released through a guided demo and commercial setup.

    1. Choose a business problemStart from finance operations, legal entity data, compliance, reporting, procurement, or customer operations.
    2. Review the agent packageEach package is positioned by outcome, data needs, governance complexity, and delivery path.
    3. Check the factsheetLook at human oversight, audit evidence, limitations, and customer-use-case dependencies.
    4. Request the next stepBook a demo or register partner interest. Your team evaluates the agent on your own cases before any commitment.
    Partner program

    Adopt an agent. Promote it. Earn from it.

    Bring our certified agents to your network or your clients and earn a share of what you bring in, refer, resell or deploy, with brand-safe assets and tracked attribution. We sell direct too; partners extend the reach.

    Become a partner →

    Find the agent package that fits your process.

    Runs in your tenant No customer data processed by us EU AI Act · DORA · ISO/IEC 42001 aligned Audit-ready by design

    CAI Token Economy Monitor

    Understand and optimise the token cost behind every agent.

    Every ColleagueAI agent package can include token-level usage intelligence that runs inside the client environment. It helps customers see token consumption, estimated cost, retries, oversized context, model choices, and optimisation opportunities, without ColleagueAI seeing prompts, outputs, documents, or business content.

    Token visibility See input and output token consumption by agent, workflow, team, or user according to the client’s own policy.
    Cost control Track estimated model/API cost, budget pressure, and high-cost workflows before AI spend scales uncontrolled.
    Waste detection Identify repeated retries, oversized context, expensive model choices, and prompts that consume too many tokens.
    Optimisation guidance Give users practical recommendations: simplify context, reuse summaries, change model tier, or improve prompt patterns.

    This is not employee surveillance. It is client-owned AI cost intelligence: metadata that helps users, finance, operations, and leadership reduce token waste and scale the agents that deliver value.

    CAI Score guide

    Understand implementation complexity before the demo.

    The CAI Score is a practical estimate of implementation and governance complexity. It is not a legal compliance rating and does not replace customer-specific risk review.

    Low complexityClear inputs, narrow workflow, low operational risk, simple review path.
    Medium complexityMultiple systems, structured approvals, defined exception handling, stronger audit needs.
    High complexityRegulated processes, sensitive data, cross-functional ownership, stronger human oversight.
    Customer dependentFinal risk depends on the use case, data access, jurisdiction, integration design, and internal controls.
    Plain English: CAI Score helps buyers understand the delivery and governance effort before committing time, data access, or budget.