Subodh KCSubodh KC/systems
let's talk →
FAQ

Frequently Asked
Questions

Answers to common questions about AI governance, compliance, architecture, regulations, and working with Subodh KC.

AI Governance

AI Governance Questions

What is AI governance and why does it matter?

AI governance is the framework of policies, processes, and controls that ensure AI systems operate safely, fairly, and in compliance with regulations. It matters because unchecked AI can introduce bias, drift, security vulnerabilities, and regulatory violations that result in fines, reputational damage, or harm to users. Without governance, organizations face legal exposure under the EU AI Act, NIST AI RMF, ISO 42001, and NYC Local Law 144.

What frameworks should my organization follow for AI compliance?

The primary frameworks are EU AI Act (for any organization touching EU users), NIST AI RMF (US federal and enterprise standard), ISO 42001 (international AI management system), NYC Local Law 144 (for automated employment decision tools), and Texas TRAIGA / HB 149 (for AI systems with a Texas nexus). Your applicable framework depends on your industry, geography, and use case. Subodh KC offers readiness and applicability assessments and has written detailed compliance guides for the EU AI Act, NYC LL144, and Texas AI law.

What is the Texas AI law (TRAIGA / HB 149)?

The Texas Responsible AI Governance Act (TRAIGA), enacted as House Bill 149, is a comprehensive state law regulating AI systems in Texas. It takes effect January 1, 2026, and covers Chapters 551-554 of the Texas Business and Commerce Code. The Texas Attorney General has exclusive enforcement authority, with penalties ranging from $10K-$12K for curable violations to $80K-$200K for uncurable violations of prohibited practices. Read the complete Texas AI law compliance guide for details.

How do I prepare for an AI audit?

Start by documenting your AI inventory, data lineage, model training processes, and decision-making workflows. Implement evidence architecture that generates audit-grade documentation automatically. Run bias testing and drift detection. Map each system to applicable regulatory requirements. Subodh KC's Modular Audit Engine framework automates much of this process, reducing audit preparation time from months to weeks.
AI Architecture

AI Architecture Questions

What is RAG and how does it work?

Retrieval-Augmented Generation (RAG) combines a retrieval system (usually vector database + embeddings) with an LLM. Instead of relying on the model's training data, RAG retrieves relevant documents from your knowledge base and feeds them as context to the LLM. This grounds responses in your data, reduces hallucinations, and enables enterprise knowledge systems that are accurate and verifiable.

How do I monitor my LLM application in production?

Use runtime health monitors like llmverify (available on npm and PyPI) to track drift, hallucination risk, latency, and output quality. Set up automated alerts for anomaly detection. Implement CI/CD quality gates that fail builds on policy drift. Subodh KC's Precision Drift Detector framework provides numerical anomaly detection for model performance, identifying drift patterns before they impact business outcomes.

What are agentic AI systems?

Agentic AI systems are multi-agent architectures where AI agents orchestrate tool use, make autonomous decisions, and execute workflows with guardrails. Unlike single-model chatbots, agentic systems decompose complex tasks across specialized agents that collaborate, escalate, and self-correct. They require careful architecture for orchestration, context management, human escalation, and safety guardrails.

What is MCP (Model Context Protocol)?

Model Context Protocol (MCP) is a standard for connecting AI models to external data sources and tools. MCP servers act as secure data connectors that let AI systems access databases, APIs, and enterprise knowledge without exposing raw credentials. This enables production AI integrations that are secure, auditable, and maintainable.
AI for Small Business

AI for Small Business Questions

Do small businesses need to comply with AI regulations?

Yes. If your small business uses AI for customer-facing decisions, automated screening, or processes data from EU residents, you are subject to AI regulations. The EU AI Act applies extraterritorially — any company offering AI systems to EU users must comply. NYC Local Law 144 applies to automated employment decision tools. Start with an AI inventory and applicability assessment to understand your specific obligations.

How can small businesses afford AI compliance?

Start with a readiness assessment to identify only the regulations that apply to you. Use open-source tools like HAIEC Action (GitHub Action for CI compliance scanning) and llmverify (runtime monitoring for LLM apps). Prioritize documentation and evidence architecture early — it is cheaper to build compliance in than retrofit it. Subodh KC offers a free monthly webinar on AI laws for small businesses to help you get started.

What AI policies should my small business have?

At minimum, you need an AI usage policy for employees (what AI tools are approved, what data can be shared), a data governance policy (how AI systems handle customer data), and a risk assessment process for new AI tools. Subodh KC's monthly webinar covers practical policy templates and frameworks designed specifically for small businesses.
About Subodh KC

About Subodh KC Questions

Who is Subodh KC?

Subodh KC is an AI Systems Architect and Governance Expert with 16+ years of experience. He currently serves as Sr. Program Manager — AI Implementation & Governance at HP Inc. (Fortune 50). He is the founder of KestrelVoice (AI voice operations platform) and co-founder of HAIEC (AI compliance platform). He holds 5 patent-pending frameworks in AI compliance and drift detection, and holds M.Sc. and B.S. degrees from Louisiana Tech University.

What services does Subodh KC offer?

Three pillars: (1) AI Architecture & Integration — agentic systems, RAG, MCP integrations, workflow architecture; (2) AI Operations & Deployment — voice agents, monitoring, production hardening; (3) AI Governance & Assurance — compliance implementation (EU AI Act, NIST AI RMF, ISO 42001, NYC LL 144), evidence architecture, drift controls. Engagement models include project-based ($25K-$150K), retainer, and fractional executive ($10K-$25K/month).

How do I hire Subodh KC?

Use the contact form at subodhkc.com/contact or email subodh.kc@haiec.com directly. Subodh offers project-based engagements (3-6 months, $25K-$150K), retainers (6-12 months), and fractional executive roles (12+ months, $10K-$25K/month). Consulting rate is $300-$500/hour with project minimums. He is also open to full-time Director/VP roles at Fortune 500, Series B+ startups, and AI-first companies.

Does Subodh KC offer training or courses?

Yes. Subodh KC teaches a live AI Governance & Compliance Masterclass on the 1st and 3rd Thursday of every month at 8 PM CST. He also hosts a free monthly webinar on AI Laws and Policies for Small Business on the 2nd Monday of every month. Both are conducted online. Visit subodhkc.com/course or subodhkc.com/webinar/ai-laws-small-business for details.

Still Have Questions?

If you didn't find what you were looking for, reach out directly. Subodh KC responds personally to inquiries about AI governance, compliance, architecture, and engagement opportunities.

Let's Talk →